A reverse session refers to a session initiated from the IPv4 side to the IPv6 side. If individual users consume excessive session table resources, other users may fail to establish connections. To address this problem, set a limit on the maximum number of IPv4-to-IPv6 reverse NAT64 sessions that can be established for a specific user.
A NAT device checks whether the number of established Transmission Control Protocol (TCP), User Datagram Protocol (UDP), or Internet Control Message Protocol (ICMP) sessions or the total number of sessions involving the same source or destination IP address exceeds the configured threshold. Then the NAT device determines whether to restrict the initiation of new connections from the source or destination IP address. This prevents individual users from consuming excessive session table resources and causing the connection failure of other users.
The system view is displayed.
The NAT64 instance view is displayed.
The limitation on the number of NAT64 reverse sessions that can be established is enabled.
If this function is not enabled, run the nat64 reverse-session-limit enable command to enable it.
The maximum number of NAT64 sessions that can be established is set.
The configuration is committed.