I would like to discuss with you about some ways to prevent the scenario below:
'NAT Hide failure - there are currently no available ports for hide operation' log appears repeatedly in SmartView Tracker - SK69480
Well, I have here two security gateways running with SecureXL and CoreXL (only 2 cores) enabled and having more than 30K concurrent connection from my internal network (many different sources) to the same external IP address performing the same NAT and using a lot of my static or dynamic (I already tested it) NAT ports available and having the message above many times during the day, causing packet dropping and problems with the users.
I was reading the performance tunning for R77 - Admin Guide and other non-Check Point papers about the SecureXL NAT template and it seems to not be a good road to get to help me on this scenario....
What is the best way to increase the number of high ports to use on NAT scenarios?
Besides to set the NAT_limit to 0 (unlimited) sk36708 do we have another way to solve this?
Thank you guys!