CGNAT does not rely on seq number
Closed, ResolvedPublicBUG
Actions

Assigned To

Authored By

	Viacheslav
	May 28 2024, 9:30 AM

Description

CGNAt does not rely on seq number but should

set nat cgnat pool external ext-01 external-port-range '1024-65535'
set nat cgnat pool external ext-01 per-user-limit port '8000'
set nat cgnat pool external ext-01 range 192.168.122.222/32 seq '10'
set nat cgnat pool external ext-01 range 192.168.122.223/32 seq '2'
set nat cgnat pool internal int-01 range '100.64.0.0/28'
set nat cgnat rule 10 source pool 'int-01'
set nat cgnat rule 10 translation pool 'ext-01'

The expected allocation for the external address should start with seq 2 i.e 192.168.122.223
But it doesn't work:

vyos@r4# run show nat cgnat allocation 
Internal IP    External IP      Port range
-------------  ---------------  ------------
100.64.0.0     192.168.122.222  1024-9023
100.64.0.1     192.168.122.222  9024-17023
100.64.0.2     192.168.122.222  17024-25023
100.64.0.3     192.168.122.222  25024-33023
100.64.0.4     192.168.122.222  33024-41023
100.64.0.5     192.168.122.222  41024-49023
100.64.0.6     192.168.122.222  49024-57023
100.64.0.7     192.168.122.222  57024-65023
100.64.0.8     192.168.122.223  1024-9023
100.64.0.9     192.168.122.223  9024-17023
100.64.0.10    192.168.122.223  17024-25023
100.64.0.11    192.168.122.223  25024-33023
100.64.0.12    192.168.122.223  33024-41023
100.64.0.13    192.168.122.223  41024-49023
100.64.0.14    192.168.122.223  49024-57023
100.64.0.15    192.168.122.223  57024-65023
[edit]
vyos@r4#