FAQ-Can I Query the Matching Counts of NAT Server and the NAT Address Pool on the USG

Publication Date:  2015-07-01 Views:  134 Downloads:  0
Issue Description
Can I Query the Matching Counts of NAT Server and the NAT Address Pool on the USG?
Solution
Currently, no command is available for querying the counts that packets match NAT Server.
No command is available for querying the counts that packets match the NAT address pool as well. However, you can query the matching counts of the NAT policy or ACL to determine the matching count of the NAT address pool.

For example:


If the following NAT policy is configured, then:

[USG-nat-policy-interzone-trust-untrust-outbound-0]display this 
policy 0                                                                       
  action source-nat                                                             
  address-group 2
 

Display the matching count of the NAT policy. The value is also the matching count of the NAT address pool.

[USG]display nat-policy interzone trust untrust outbound   
nat-policy interzone trust untrust outbound                                     
policy 0 (122 times matched)                                                     
  action source-nat                                                             
  policy service service-set ip                                                 
  policy source any                                                             
  policy destination any                                                        
  address-group 2

END