Cisco IOS XR Carrier Grade NAT Command Reference for the ......Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.x First Published: 2013-09-01Last

Cisco IOS XR Carrier Grade NAT Command Reference for the CiscoCRS Router, Release 5.1.xFirst Published: 2013-09-01

Last Modified: 2014-04-01

Americas HeadquartersCisco Systems, Inc.170 West Tasman DriveSan Jose, CA 95134-1706USAhttp://www.cisco.comTel: 408 526-4000 800 553-NETS (6387)Fax: 408 527-0883

THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS,INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND,EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.

THE SOFTWARE LICENSE AND LIMITEDWARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITHTHE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY,CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.

The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB's public domain versionof the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.

NOTWITHSTANDINGANYOTHERWARRANTYHEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS"WITH ALL FAULTS.CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OFMERCHANTABILITY, FITNESS FORA PARTICULAR PURPOSEANDNONINFRINGEMENTORARISING FROMACOURSEOFDEALING, USAGE, OR TRADE PRACTICE.

IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUTLIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERSHAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be actual addresses and phone numbers. Any examples, command display output, networktopology diagrams, and other figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses or phone numbers in illustrative content is unintentionaland coincidental.

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: http://www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnershiprelationship between Cisco and any other company. (1110R)

© 2014 Cisco Systems, Inc. All rights reserved.

http://www.cisco.com/go/trademarkshttp://www.cisco.com/go/trademarks

C O N T E N T S

P r e f a c e Preface ix

Obtaining Documentation and Submitting a Service Request ix

C H A P T E R 1 Carrier Grade NAT Commands on Cisco IOS XR Software 1

address (DS-LITE Netflow9) 7

address (NAT44 NetflowV9) 9

address static-forward (NAT44) 11

address (Stateful NAT64 Netflow Version 9) 13

address-family (6rd) 15

address-family ipv4 (Stateless NAT64) 17

address-family IPv6 (DS-LITE) 19

address-family ipv6 (Stateless NAT64) 21

address-family (MAP-E) 23

address-family (MAP-T) 25

address-family (Stateful NAT64) 27

aftr-endpoint-address (MAP-E) 30

aftr-tunnel-endpoint-address (DS-LITE) 32

alg ActiveFTP (NAT44) 33

alg ftp (DS-LITE) 34

alg pptpalg (NAT44) 35

alg rtsp (DS-LITE) 36

alg rtsp (NAT44) 38

alg rtsp (Stateful NAT64) 39

attach port-set 41

br (6rd) 42

br-endpoint-address (MAP-E) 44

bulk-port-alloc (NAT44) 45

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.x iii

bulk-port-alloc (DS-LITE) 47

clear cgn ds-lite 48

clear cgn ds-lite ipaddress 49

clear cgn ds-lite port 50

clear cgn ds-lite protocol 51

clear cgn ds-lite statistics 52

clear cgn map-e statistics 53

clear cgn map-t statistics 56

clear cgn nat44 59

clear cgn nat44 inside-vrf counters 61

clear cgn nat44 inside-vrf 62

clear cgn nat44 ipaddress 64

clear cgn nat44 port 66

clear cgn nat44 pptpCounters 68

clear cgn nat44 protocol 69

clear cgn nat64 stateful 71

clear cgn nat64 stateful counters 73

clear cgn nat64 stateful ipaddress 75

clear cgn nat64 stateful port 77

clear cgn nat64 stateful protocol 79

clear cgn nat64 stateful statistics 81

clear cgn tunnel v6rd statistics 83

clear cgv6 map-e statistics 85

contiguous-ports (MAP-E) 86

contiguous-ports (MAP-T) 88

cpe-domain (MAP-E) 90

cpe-domain (MAP-T) 92

datapath-test 94

df-override (CGN) 96

dynamic-port-range (Stateful NAT64) 98

dynamic port range start 100

external-domain (MAP-T) 101

external-logging (DS-LITE Netflow9) 103

external-logging (DS-LITE Syslog) 104

external-logging (NAT44 Netflow) 105

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.xiv

Contents

external-logging (NAT44 Syslog) 106

external-logging (Stateful NAT64 Netflow) 108

filter-policy 110

filter-policy (Stateful NAT64) 111

firewall 112

fragment-timeout (Stateful NAT64) 113

hw-module service cgn location 114

inside-vrf (NAT44) 116

interface ServiceApp 118

interface ServiceInfra 120

ipv4 prefix (6rd) 121

ipv4 suffix (6rd) 123

ipv4 (Stateful NAT64) 125

ipv6-prefix (6rd) 127

ipv6-prefix (Stateful NAT64) 129

map (NAT44) 131

map (DS-LITE) 133

mirror-packets 134

mss (DS-LITE) 136

mss (NAT44) 137

nat-mode 138

path-mtu (6rd) 140

path-mtu (DS-LITE) 141

path-mtu (DS-LITE Netflow9) 142

path-mtu (MAP-E) 144

path-mtu (NAT44 Netflow Version 9) 146

path-mtu (Stateful NAT64 Netflow Version 9) 148

pcp-server (DS-LITE) 150

pcp-server (NAT44) 151

port-limit (DS-LITE) 153

portlimit (NAT44) 154

portlimit (NAT44_Inside-VRF) 155

portlimit (Stateful NAT64) 157

port-set 159

private-pool 160

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.x v

Contents

protocol (CGN) 161

protocol (External Logging) 163

protocol (port-preservation) 165

protocol (DS-LITE) 167

protocol (NAT44) 169

protocol (Stateful NAT64) 171

protocol icmp reset-mtu (CGN) 174

reassembly-enable (6rd) 176

refresh-direction (NAT44) 177

refresh-direction (Stateful NAT64) 179

refresh-rate (NAT44 Netflow Version 9) 181

refresh rate (DS-LITE Netflow9) 183

refresh rate (Stateful NAT64 Netflow Version 9) 185

reset-df-bit (6rd) 187

sequence-check 188

server (NAT44) 190

service cgn 192

service-location (CGN) 193

service-location (interface) 195

service redundancy failover service-type 196

service redundancy revert service-type 197

service-type ds-lite 198

service-type map-e 200

service-type map-t 202

service-type nat44 204

service-type nat64 (Stateful NAT64) 205

service-type nat64 (Stateless) 207

service-type tunnel v6rd 209

session (NAT44) 211

session (DS-LITE) 213

session-logging (DS-LITE Netflow9) 215

session-logging (NAT44 Netflow Version 9) 216

session-logging (Stateful NAT64 Netflow Version 9) 217

sharing-ratio (MAP-E) 219

sharing-ratio (MAP-T) 221

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.xvi

Contents

show cgn ds-lite inside-translation 223

show cgn ds-lite outside-translation 226

show cgn ds-lite pool utilization 228

show cgn ds-lite session 230

show cgn ds-lite statistics 232

show cgn map-e statistics 234

show cgn map-t statistics 239

show cgn nat44 inside-vrf counters 243

show cgn nat44 greEntries 246

show cgn nat44 inside-translation 248

show cgn nat44 mapping 252

show cgn nat44 outside-translation 254

show cgn nat44 pool-utilization 258

show cgn nat44 pptpCounters 261

show cgn nat44 session 263

show cgn nat44 statistics 266

show cgn nat64 stateful counters 269

show cgn nat64 stateful inside-translation 272

show cgn nat64 stateful outside-translation 275

show cgn nat64 stateful pool-utilization 278

show cgn nat64 stateful session 280

show cgn nat64 stateful statistics 282

show cgn nat44 static-map 284

show cgn pcpcounters 286

show cgn tunnel v6rd statistics 288

show cgn utilization throughput 292

show cgv6 map-e statistics 294

show services redundancy 295

show virtual-service 297

source-address (6rd) 300

static-forward inside 302

static-mapping-file direction 303

tcp mss (CGN) 304

tcp-policy (Stateful NAT64) 306

timeout (DS-LITE) 308

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.x vii

Contents

timeout (DS-LITE Netflow9) 309

timeout (NAT44) 311

timeout (NAT44 Netflow Version 9) 313

timeout (Stateful NAT64 Netflow Version 9) 315

tos (6rd) 317

traceroute (CGN) 318

traceroute (MAP-T) 320

traffic-class (CGN) 322

ttl (6rd) 324

ubit-reserved (CGN) 326

ubit-reserved (Stateful NAT64) 328

unicast address (6rd) 330

virtual-service 332

vrf (cgn) 334

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.xviii

Contents

Preface

TheCisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router preface contains thesesections:

• Obtaining Documentation and Submitting a Service Request, page ix

Obtaining Documentation and Submitting a Service RequestFor information on obtaining documentation, using the Cisco Bug Search Tool (BST), submitting a servicerequest, and gathering additional information, see What's New in Cisco Product Documentation.

To receive new and revised Cisco technical content directly to your desktop, you can subscribe to the What'sNew in Cisco Product Documentation RSS feed. RSS feeds are a free service.

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.x ix

http://www.cisco.com/c/en/us/td/docs/general/whatsnew/whatsnew.htmlhttp://www.cisco.com/assets/cdc_content_elements/rss/whats_new/whatsnew_rss_feed.xmlhttp://www.cisco.com/assets/cdc_content_elements/rss/whats_new/whatsnew_rss_feed.xml

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.xx

PrefaceObtaining Documentation and Submitting a Service Request

Carrier Grade NAT Commands on Cisco IOS XRSoftware

This chapter describes the commands used to configure and use the Carrier Grade NAT (CGN) .

To use commands of this module, you must be in a user group associated with a task group that includesappropriate task IDs. If the user group assignment is preventing you from using any command, contact yourAAA administrator for assistance.

For detailed information about CGN concepts, configuration tasks, and examples, see Cisco IOSXR SoftwareCarrier Grade NAT Configuration Guide for the Cisco CRS Router .

• address (DS-LITE Netflow9), page 7

• address (NAT44 NetflowV9), page 9

• address static-forward (NAT44), page 11

• address (Stateful NAT64 Netflow Version 9), page 13

• address-family (6rd), page 15

• address-family ipv4 (Stateless NAT64), page 17

• address-family IPv6 (DS-LITE), page 19

• address-family ipv6 (Stateless NAT64), page 21

• address-family (MAP-E), page 23

• address-family (MAP-T), page 25

• address-family (Stateful NAT64), page 27

• aftr-endpoint-address (MAP-E), page 30

• aftr-tunnel-endpoint-address (DS-LITE), page 32

• alg ActiveFTP (NAT44), page 33

• alg ftp (DS-LITE), page 34

• alg pptpalg (NAT44), page 35

• alg rtsp (DS-LITE), page 36

• alg rtsp (NAT44), page 38

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.x 1

• alg rtsp (Stateful NAT64), page 39

• attach port-set, page 41

• br (6rd), page 42

• br-endpoint-address (MAP-E), page 44

• bulk-port-alloc (NAT44), page 45

• bulk-port-alloc (DS-LITE), page 47

• clear cgn ds-lite, page 48

• clear cgn ds-lite ipaddress, page 49

• clear cgn ds-lite port, page 50

• clear cgn ds-lite protocol, page 51

• clear cgn ds-lite statistics, page 52

• clear cgn map-e statistics, page 53

• clear cgn map-t statistics, page 56

• clear cgn nat44, page 59

• clear cgn nat44 inside-vrf counters, page 61

• clear cgn nat44 inside-vrf , page 62

• clear cgn nat44 ipaddress, page 64

• clear cgn nat44 port, page 66

• clear cgn nat44 pptpCounters, page 68

• clear cgn nat44 protocol, page 69

• clear cgn nat64 stateful, page 71

• clear cgn nat64 stateful counters, page 73

• clear cgn nat64 stateful ipaddress, page 75

• clear cgn nat64 stateful port, page 77

• clear cgn nat64 stateful protocol, page 79

• clear cgn nat64 stateful statistics, page 81

• clear cgn tunnel v6rd statistics, page 83

• clear cgv6 map-e statistics , page 85

• contiguous-ports (MAP-E), page 86

• contiguous-ports (MAP-T), page 88

• cpe-domain (MAP-E), page 90

• cpe-domain (MAP-T), page 92

• datapath-test, page 94

Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.x2

Carrier Grade NAT Commands on Cisco IOS XR Software

• df-override (CGN), page 96

• dynamic-port-range (Stateful NAT64), page 98

• dynamic port range start, page 100

• external-domain (MAP-T), page 101

• external-logging (DS-LITE Netflow9), page 103

• external-logging (DS-LITE Syslog), page 104

• external-logging (NAT44 Netflow), page 105

• external-logging (NAT44 Syslog), page 106

• external-logging (Stateful NAT64 Netflow), page 108

• filter-policy, page 110

• filter-policy (Stateful NAT64), page 111

• firewall, page 112

• fragment-timeout (Stateful NAT64), page 113

• hw-module service cgn location, page 114

• inside-vrf (NAT44), page 116

• interface ServiceApp, page 118

• interface ServiceInfra, page 120

• ipv4 prefix (6rd), page 121

• ipv4 suffix (6rd), page 123

• ipv4 (Stateful NAT64), page 125

• ipv6-prefix (6rd), page 127

• ipv6-prefix (Stateful NAT64), page 129

• map (NAT44), page 131

• map (DS-LITE), page 133

• mirror-packets, page 134

• mss (DS-LITE), page 136

• mss (NAT44), page 137

• nat-mode, page 138

• path-mtu (6rd), page 140

• path-mtu (DS-LITE), page 141

• path-mtu (DS-LITE Netflow9), page 142

• path-mtu (MAP-E), page 144

• path-mtu (NAT44 Netflow Version 9), page 146



• path-mtu (Stateful NAT64 Netflow Version 9), page 148

• pcp-server (DS-LITE), page 150

• pcp-server (NAT44), page 151

• port-limit (DS-LITE), page 153

• portlimit (NAT44), page 154

• portlimit (NAT44_Inside-VRF), page 155

• portlimit (Stateful NAT64), page 157

• port-set, page 159

• private-pool, page 160

• protocol (CGN), page 161

• protocol (External Logging), page 163

• protocol (port-preservation), page 165

• protocol (DS-LITE), page 167

• protocol (NAT44), page 169

• protocol (Stateful NAT64), page 171

• protocol icmp reset-mtu (CGN), page 174

• reassembly-enable (6rd), page 176

• refresh-direction (NAT44), page 177

• refresh-direction (Stateful NAT64), page 179

• refresh-rate (NAT44 Netflow Version 9), page 181

• refresh rate (DS-LITE Netflow9), page 183

• refresh rate (Stateful NAT64 Netflow Version 9), page 185

• reset-df-bit (6rd), page 187

• sequence-check, page 188

• server (NAT44), page 190

• service cgn, page 192

• service-location (CGN), page 193

• service-location (interface), page 195

• service redundancy failover service-type, page 196

• service redundancy revert service-type, page 197

• service-type ds-lite, page 198

• service-type map-e, page 200

• service-type map-t, page 202



• service-type nat44, page 204

• service-type nat64 (Stateful NAT64), page 205

• service-type nat64 (Stateless), page 207

• service-type tunnel v6rd, page 209

• session (NAT44), page 211

• session (DS-LITE), page 213

• session-logging (DS-LITE Netflow9), page 215

• session-logging (NAT44 Netflow Version 9), page 216

• session-logging (Stateful NAT64 Netflow Version 9), page 217

• sharing-ratio (MAP-E), page 219

• sharing-ratio (MAP-T), page 221

• show cgn ds-lite inside-translation, page 223

• show cgn ds-lite outside-translation, page 226

• show cgn ds-lite pool utilization, page 228

• show cgn ds-lite session, page 230

• show cgn ds-lite statistics, page 232

• show cgn map-e statistics, page 234

• show cgn map-t statistics, page 239

• show cgn nat44 inside-vrf counters, page 243

• show cgn nat44 greEntries, page 246

• show cgn nat44 inside-translation, page 248

• show cgn nat44 mapping, page 252

• show cgn nat44 outside-translation, page 254

• show cgn nat44 pool-utilization, page 258

• show cgn nat44 pptpCounters, page 261

• show cgn nat44 session, page 263

• show cgn nat44 statistics, page 266

• show cgn nat64 stateful counters, page 269

• show cgn nat64 stateful inside-translation, page 272

• show cgn nat64 stateful outside-translation, page 275

• show cgn nat64 stateful pool-utilization, page 278

• show cgn nat64 stateful session, page 280

• show cgn nat64 stateful statistics, page 282



• show cgn nat44 static-map, page 284

• show cgn pcpcounters, page 286

• show cgn tunnel v6rd statistics, page 288

• show cgn utilization throughput, page 292

• show cgv6 map-e statistics, page 294

• show services redundancy, page 295

• show virtual-service, page 297

• source-address (6rd), page 300

• static-forward inside, page 302

• static-mapping-file direction, page 303

• tcp mss (CGN), page 304

• tcp-policy (Stateful NAT64), page 306

• timeout (DS-LITE), page 308

• timeout (DS-LITE Netflow9), page 309

• timeout (NAT44), page 311

• timeout (NAT44 Netflow Version 9), page 313

• timeout (Stateful NAT64 Netflow Version 9), page 315

• tos (6rd), page 317

• traceroute (CGN), page 318

• traceroute (MAP-T), page 320

• traffic-class (CGN), page 322

• ttl (6rd), page 324

• ubit-reserved (CGN), page 326

• ubit-reserved (Stateful NAT64), page 328

• unicast address (6rd), page 330

• virtual-service , page 332

• vrf (cgn), page 334



address (DS-LITE Netflow9)To enable the IPv4 address of the server that is used for logging the entries for a DS-Lite instance, use theaddress command in CGN DS-Lite external logging server configuration mode. To disable the Netflowserver configuration, use the no form of this command.

address address port number

Syntax Description IPv4 address of the server.address

Configures the port that is used for logging. The address corresponds to the IPv4address of the NetflowV9 logging server port, which corresponds to the UDP portnumber in which the NetflowV9 logging server listens for the Netflow logs.

port

Port number. Range is from 1 to 65535.number

Command Default If the address command is not configured, NetflowV9 logging is disabled.

Command Modes CGN DS-Lite external logging server configuration

Command History ModificationRelease

This command was introduced.Release 4.2.1

Usage Guidelines No specific guidelines impact the use of this command.

Task ID OperationsTask ID

read, writecgn

Examples The following example shows how to configure the IPv4 address and port number 45 for a DS-Lite instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type ds-lite ds-lite1RP/0/RP0/CPU0:router(config-cgn-ds-lite)# external-logging netflow9RP/0/RP0/CPU0:router(config-cgn-ds-lite-extlog)# serverRP/0/RP0/CPU0:router(config-cgn-ds-lite-extlog-server)# address 2.3.4.5 port 45


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress (DS-LITE Netflow9)

Related Commands DescriptionCommand

Sets the Maximum Transmission Unit (MTU) of the path tolog NetFlow-based external logging information.

path-mtu (DS-LITE Netflow9), on page 142

refresh rate (DS-LITENetflow9), on page 183

Configures the frequency at which the netflow9 template isrefreshed or resent to the netflow9 server for a DS-Liteinstance.

timeout (DS-LITE Netflow9), on page 309


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress (DS-LITE Netflow9)

address (NAT44 NetflowV9)To enable the IPv4 address of the server that is used for logging the entries for the Network Address Translation(NAT) table, use the address command in CGN inside VRF external logging server configuration mode.To disable the Netflow server configuration, use the no form of this command.



Configures the port that is used for logging. The address corresponds to the IPv4address of the NetflowV9 logging server port, which corresponds to the UDP portnumber in which the NetflowV9 logging server listens for the Netflow logs.

port


Command Default If the address command is not configured, NAT44 NetflowV9 logging is disabled.

Command Modes CGN inside VRF external logging server configuration



The usage guidelines was updated.Release 4.1.0

Usage Guidelines The CGN NetflowV9-based translation entry is used to create and delete the logs. This NAT44 specificcommand will configure the ipv4 address and port number for the netflowV9 external logging facility. Theaddress corresponds to the IPv4 address of the NetflowV9 logging server port, which in turn corresponds tothe UDP port number in which the NetflowV9 logging server listens for the Netflow logs. The configurationsfor path-mtu, refresh-rate and timeout is applicable only when the ipv4 address and port number for thelogging server has been configured.


read, writecgn


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress (NAT44 NetflowV9)

Examples The following example shows how to configure the IPv4 address and port number 45 for NetFlow loggingof the NAT table entries:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type nat44 nat1RP/0/RP0/CPU0:router(config-cgn-nat44)# inside-vrf insidevrf1RP/0/RP0/CPU0:router(config-cgn-invrf)# external-logging netflow version 9RP/0/RP0/CPU0:router(config-cgn-invrf-af-extlog)# serverRP/0/RP0/CPU0:router(config-cgn-invrf-af-extlog-server)# address 2.3.4.5 port 45


Enables external logging of a NAT44 instance.external-logging (NAT44Netflow), on page105

Enters inside VRF configuration mode for a NAT44 instance.inside-vrf (NAT44), on page 116

Enables the logging server information for the IPv4 address andport for the server that is used for the netflowv9-basedexternal-logging facility.

server (NAT44), on page 190

Enables an instance for the CGN application.service cgn, on page 192


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress (NAT44 NetflowV9)

address static-forward (NAT44)To enable the inside IPv4 address and port number for static forwarding for a NAT44 instance, use the addresscommand in NAT44 inside VRF static port inside configuration mode. To disable this feature, use the noform of this command.


no address address port number

Syntax Description IPv4 address of an inside host server.address

Configures the inside port for static forwarding. The port keyword allows aspecific UDP, TCP, or ICMP port on a global address to be translated to a specificport on a local address.

port

Inside port number. For TCP and UDP, range is from 1 to 65535. For ICMP, rangeis from and 0 to 65535.

number

Command Default None

Command Modes NAT44 inside VRF static port inside configuration



The usage guidelines section was updated.Release 4.1.0

Usage Guidelines This NAT44 command configures the static port forwarding for an inside-ipv4 address and inside-port numbercombination. With this configuration, packets received inside with the configured inside-ipv4 address andinside-port number are forwarded using the displayed outside-ipv4address and outside-port number.

CGN can dynamically allocate one free public IP address and port number from the configured outside addresspool for an inside address and port.


read, writecgn


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress static-forward (NAT44)

Examples This example shows how to configure the inside IPv4 address and port for static forwarding. CGN candynamically allocate one free public IP address and port number from the configured outside address poolfor an inside address and port.

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type nat44 nat1RP/0/RP0/CPU0:router(config-cgn-nat44)# inside-vrf v1RP/0/RP0/CPU0:router(config-cgn-invrf)# protocol tcpRP/0/RP0/CPU0:router(config-cgn-invrf-proto)# static-forward insideRP/0/RP0/CPU0:router(config-cgn-invrf-sport-inside)# address 10.20.30.10 port 1000


protocol (NAT44)

Enters ICMP, TCP, and UDP protocol configuration mode fora given CGN instance.

protocol (CGN), on page 161


Displays the translation table entries for an inside-address tooutside-address for a specified NAT44 CGN instance.

show cgn nat44 inside-translation, on page248


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress static-forward (NAT44)

address (Stateful NAT64 Netflow Version 9)To enable the IPv4 address of the server that is used for logging the entries for a NAT64 stateful instance,use the address command in NAT64 Stateful configurationmode. To disable the Netflow server configuration,use the no form of this command.



Configures the port that is used for logging. The address corresponds to the IPv4address of the netflow version 9 logging server port, which corresponds to theUDP port number in which the netflow version 9 logging server listens for theNetflow logs.

port


Command Default If the address command is not configured, Netflow logging is disabled.

Command Modes NAT64 Stateful configuration mode





read, writecgn

Examples The following example shows how to configure the IPv4 address and port number 45:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type nat64 stateful nat64-instRP/0/RP0/CPU0:router(config-cgn-nat64-stateful)# external-logging netflow version 9RP/0/RP0/CPU0:router(config-cgn-nat64-stateful)# serverRP/0/RP0/CPU0:router(config-cgn-nat64-extlog-server)# address 2.3.4.5 port 45


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress (Stateful NAT64 Netflow Version 9)


Sets the Maximum Transmission Unit (MTU) of the pathto log NetFlow-based external logging information.

path-mtu (Stateful NAT64 Netflow Version 9),on page 148

Configures the refresh rate to log NetFlow-based externallogging information.

refresh rate (Stateful NAT64 Netflow Version9), on page 185

Enables session logging for a NAT64 Stateful instance.session-logging (Stateful NAT64 NetflowVersion 9), on page 217

Configures the frequency at which the netflow-v9 templateis refreshed or resent to the netflow-v9 server.

timeout (Stateful NAT64 Netflow Version 9),on page 315


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress (Stateful NAT64 Netflow Version 9)

address-family (6rd)To bind an ipv4 or ipv6 ServiceApp interface to a 6rd instance, use the address-family command in 6RDconfiguration mode. To unbind the ServiceApp interface, use the no form of this command.

address-family {ipv4| ipv6} interface ServiceApp value

Syntax Description Specifies the IPv4 address family.ipv4

Specifies the IPv6 address family.ipv6

Specifies the ServiceApp interface to be used.interface

Specifies the SVI interface.ServiceApp

Interface value. The range is from 1 to 2000.value


Command Modes 6RD configuration




Task ID OperationTask ID

read, writecgn

Examples This example shows how to bind ipv4 ServiceApp interface to a 6RD instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type tunnel v6rd 6rd1RP/0/RP0/CPU0:router(config-cgn-tunnel-6rd)# address-family ipv4RP/0/RP0/CPU0:router(config-cgn-6rd-afi)#interface ServiceApp 100


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family (6rd)

Examples This example shows how to bind ipv6 ServiceApp interface to a 6RD instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type tunnel v6rd 6rd1RP/0/RP0/CPU0:router(config-cgn-tunnel-6rd)# address-family ipv6RP/0/RP0/CPU0:router(config-cgn-6rd-afi)#interface ServiceApp 120


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family (6rd)

address-family ipv4 (Stateless NAT64)To enter the IPv4 address family configuration mode while configuring the Carrier Grade NAT (CGN), usethe address-family ipv4 command in an appropriate configuration mode. To disable support for an addressfamily, use the no form of this command.

address-family ipv4{interface ServiceApp| tcp mss| tos}

Syntax Description Specifies the ServiceApp interface to be used.interface

Specifies the SEAPP SVI interface. The number of service application interfacesto be configured ranges from 1 to 2000.

ServiceApp

Specifies the TCP protocol.tcp

Specifies the maximum segment size for TCP in bytes. The value of maximumsegment size ranges from 28 to 1500.

mss

Type of service to be set when translating IPv6 to IPv4. The value of type ofservice ranges from 0 to 255.

tos


Command Modes CGN-NAT64



Updated the Syntax and Usage Guidelines sections.Release 4.1.0

Usage Guidelines This command configures the ipv4 address family for NAT64 stateless XLAT.


read, writecgn


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family ipv4 (Stateless NAT64)

Examples This example shows the tcp mss for the ipv4 address family:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type nat64 stateless xlatRP/0/RP0/CPU0:router(config-cgn-nat64-stateless)# address-family ipv4RP/0/RP0/CPU0:router(config-cgn-nat64-stateless-afi)# tcp mss 200



address-family IPv6 (DS-LITE)To enter the IPv6 address family configuration mode for a DS-Lite instance, use the address-family ipv6command. To disable support for an address family, use the no form of this command.

address-family IPv6 interface ServiceApp

Syntax Description Indicates the ServiceApp interface to be used.interface

SEAPP SVI Interface.ServiceApp

Number of service application interfaces to be configured. Range is from1 to 244.


Command Modes CGN-DS-Lite configuration mode





read, writecgn

Examples This example shows how to enter the IPv6 address family configuration mode for a DS-Lite instance:RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type ds-lite ds-lite1RP/0/RP0/CPU0:router(config-cgn-ds-lite)# address-family ipv6RP/0/RP0/CPU0:router(config-cgn-ds-lite-afi)# interface serviceApp 200RP/0/RP0/CPU0:router(config-cgn-ds-lite-afi)#


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family IPv6 (DS-LITE)


Enters the IPv4 address family configuration mode.address-family ipv4 (Stateless NAT64), on page 17

Configures IPv4 or IPv6 address on a NAT64 instance.address-family (Stateful NAT64), on page 27


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family IPv6 (DS-LITE)

address-family ipv6 (Stateless NAT64)To enter the IPv6 address family configuration mode, use the address-family ipv6 command. To disablesupport for an address family, use the no form of this command.

address-family ipv6{interface ServiceApp }{df override}{protocol| {icmp| reset-mtu}}tcpmsstraffic-class

Syntax Description Indicates the ServiceApp interface to be used.interface

SEAPP SVI Interface.ServiceApp

Number of service application interfaces to be configured. Range is from1 to 2000.

Override DF bit.df-override

Select a protocol.protocol

(Optional) ICMP protocol.icmp

(Optional) Reset maximum transmission unit when packet is too big.reset-mtu

TCP protocol.tcp

Maximum segment size for TCP in bytes.mss

Maximum segment size to be used in bytes.

Traffic class to be set when translating from IPv4 to IPv6.traffic-class


Command Modes CGN-NAT64



Usage Guidelines This command configures the ipv6 address family for NAT64 stateless XLAT.




read, writecgn

Examples This example shows the traffic-class setting for the ipv6 address family:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type nat64 stateless xlat1RP/0/RP0/CPU0:router(config-cgn-nat64-stateless)# address-family ipv6RP/0/RP0/CPU0:router(config-cgn-nat64-stless-afi)# traffic-class 25


Sets the do not fragment bitdf-override (CGN), on page 96

Resets the received packet size.protocol icmp reset-mtu (CGN), on page 174


Configures the traffic class value to be used whentranslating a packet from IPv4 to IPv6

traffic-class (CGN), on page 322



address-family (MAP-E)To configure an IPv4 or IPv6 address for a MAP-E stateful instance, use the address-family command inMAP-E configuration mode. To undo the address configuration, use the no form of this command.

address-family{ipv4| ipv6}{interface | {ServiceApp value}| tcp | {mss size}}





Specifies the Interface value. The range is from 1 to2000.

value


Specifies the Maximum Segment Size (MSS) forTCP in bytes.

mss

Size of the segment in bytes. The range is from 28to 1500.

size


Command Modes MAP-E configuration





read, writecgn


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family (MAP-E)

Examples This example shows how to configure ipv4 address for a MAP-E instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type map-e map-e-instRP/0/RP0/CPU0:router(config-cgn-map_e)# address-family ipv4RP/0/RP0/CPU0:router(config-cgn-map_e-afi)#interface serviceApp 65

Examples This example shows how to configure ipv6 address for a MAP-E instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type map-e map-e-instRP/0/RP0/CPU0:router(config-cgn-map_e)# address-family ipv6RP/0/RP0/CPU0:router(config-cgn-map_e-afi)#interface serviceApp 66


Configures the IPv6 address of Address Family TransitionRouter (AFTR).

aftr-endpoint-address (MAP-E), on page 30

Configures the number of contiguous ports for a MAP-Einstance.

contiguous-ports (MAP-E), on page 86

Configures the Customer Premises Equipment (CPE ) domainparameters.

cpe-domain (MAP-E), on page 90

Configures the path Maximum Transmission Unit (MTU) ofthe tunnel.

path-mtu (MAP-E), on page 144

Configures the port sharing ratio.sharing-ratio (MAP-E), on page 219


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family (MAP-E)

address-family (MAP-T)To configure an IPv4 or IPv6 address for a MAP-T instance, use the address-family command in the MAP-Tconfiguration mode. To undo the address configuration, use the no form of this command.

address-family{ipv4| ipv6}{df-override| interface | {ServiceApp value}| tcp | {mss size}| traffic-class |{value}| tos}



Specifies the 'df' override bit.df-override




value



mss


size

Specifies the traffic class value to be set whentranslating from IPv4 to IPv6.

traffic-class

Value of the traffic-class. The range is from 0 to 255.value

Specifies the type of service value to be set whentranslating from IPv6 to IPv4. The range is from 0to 255.

tos


Command Modes MAP-T configuration


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family (MAP-T)



Usage Guidelines Unlike NAT64, ISM is used for only control plane and exception traffic, not for the bulk of the traffic. Formore information on Mapping of Address and Port (MAP), please refer to the Technical Guide to Mappingof Address and Port (MAP).


read, writecgn

Examples This example shows how to configure ipv4 address for a MAP-T instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type map-t map-t-instRP/0/RP0/CPU0:router(config-cgn-mapt)# address-family ipv4RP/0/RP0/CPU0:router(config-cgn-mapt-afi)#tcp mss 565

Examples This example shows how to configure ipv6 address for a MAP-T instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type map-t map-t-instRP/0/RP0/CPU0:router(config-cgn-mapt)# address-family ipv6RP/0/RP0/CPU0:router(config-cgn-mapt-afi)#traffic-class 65


Clears the statistics of a MAP-T instance.clear cgn map-t statistics, on page 56

Configures the number of contiguous ports for a MAP-Tinstance.

contiguous-ports (MAP-T), on page 88

Configures the Customer Premises Equipment (CPE )domain parameters.

cpe-domain (MAP-T), on page 92

Configures the external domain's IPv6 prefix to convert IPv4addresses into IPv6 addresses and vice versa.

external-domain (MAP-T), on page 101

Configures the port sharing ratio.sharing-ratio (MAP-T), on page 221

Displays the MAP-T instance statistics.show cgn map-t statistics, on page 239

Configures traceroute translation algorithms.traceroute (MAP-T), on page 320


Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family (MAP-T)

http://www.cisco.com/c/en/us/solutions/collateral/ios-nx-os-software/enterprise-ipv6-solution/whitepaper_C11-729800.htmlhttp://www.cisco.com/c/en/us/solutions/collateral/ios-nx-os-software/enterprise-ipv6-solution/whitepaper_C11-729800.html

address-family (Stateful NAT64)To configure an IPv4 or IPv6 address for a NAT64 stateful instance, use the address-family command inNAT64 stateful configuration mode. To undo the address configuration, use the no form of this command.

address-family{ipv4| ipv6}[df-override| interface| protocol| tcp| traffic-class| tos]



Specifies the 'df' override bit.df-override




value

Specifies the protocol.protocol

ICMP protocol.icmp

Resets the maximum transmission unit of the packet.reset-mtu

TCP protocol.tcp


mss


size

Specifies the traffic class value to be set whentranslating from IPv4 to IPv6.

traffic-class

Value of the traffic-class. The range is from 0 to 255.value

Specifies the type of service value to be set whentranslating from IPv6 to IPv4. The range is from 0to 255.

tos



Carrier Grade NAT Commands on Cisco IOS XR Softwareaddress-family (Stateful NAT64)

Command Modes NAT64 stateful configuration





read, writecgn

Examples This example shows how to configure ipv4 address on a NAT64 instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type nat64 stateful nat64-instRP/0/RP0/CPU0:router(config-cgn-nat64-stateful)# address-family ipv4RP/0/RP0/CPU0:router(config-cgn-nat64-stateful-afi)#tcp mss 565

Examples This example shows how to configure ipv6 address on a NAT64 instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type nat64 stateful nat64-instRP/0/RP0/CPU0:router(config-cgn-nat64-stateful)# address-family ipv6RP/0/RP0/CPU0:router(config-cgn-nat64-stateful-afi)#traffic-class 65


Configures ports dynamically.dynamic-port-range (Stateful NAT64), on page 98

Enables external logging of a NAT64 Stateful instance.external-logging (Stateful NAT64 Netflow), on page108

Specifies time interval to store packet fragments.fragment-timeout (Stateful NAT64), on page 113

Assigns ipv4 address pool.ipv4 (Stateful NAT64), on page 125

Converts an IPv6 address to an IPv4 address.ipv6-prefix (Stateful NAT64), on page 129

Restricts the number of ports used by an IPv6 address.portlimit (Stateful NAT64), on page 157



DescriptionCommand

Enters the ICMP, TCP, and UDP protocol configurationmode.

protocol (Stateful NAT64), on page 171

Specifies the outbound refresh direction.refresh-direction (Stateful NAT64), on page 179

Creates a NAT64 stateful instance.service-type nat64 (Stateful NAT64), on page 205

Enables TCP policy that allows IPv4 initiated TCPsessions.

tcp-policy (Stateful NAT64), on page 306

Enables reserving ubits in an IPv6 address.ubit-reserved (Stateful NAT64), on page 328



aftr-endpoint-address (MAP-E)To configure the IPv6 address of Address Family Transition Router (AFTR), use the aftr-endpoint-addresscommand in MAP-E configuration mode. To undo the configuration, use the no form of this command.

aftr-endpoint-address address

Syntax Description Specifies the IPv6 address of the AFTR.address







read, writecgn

Examples This example shows how to configure the AFTR address for a MAP-E instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn-instRP/0/RP0/CPU0:router(config-cgn)# service-type map-e map-e-instRP/0/RP0/CPU0:router(config-cgn-map_e)# aftr-endpoint-address 2001:db8:100::40


Configures IPv4 or IPv6 address for a MAP-E instance.address-family (MAP-E), on page 23

Configures the number of contiguous ports for a MAP-Einstance.

contiguous-ports (MAP-E), on page 86


Carrier Grade NAT Commands on Cisco IOS XR Softwareaftr-endpoint-address (MAP-E)

DescriptionCommand


cpe-domain (MAP-E), on page 90

Configures the path Maximum Transmission Unit (MTU) ofthe tunnel.

path-mtu (MAP-E), on page 144

Configures the port sharing ratio.sharing-ratio (MAP-E), on page 219


Carrier Grade NAT Commands on Cisco IOS XR Softwareaftr-endpoint-address (MAP-E)

aftr-tunnel-endpoint-address (DS-LITE)To assign an IPv6 tunnel endpoint address for a DS-lite instance, use the aftr-tunnel-endpoint-address inDS-Lite configuration mode. To unassign the address for the ds-lite instance, use the no form of this command.

aftr-tunnel-endpoint-address IPv6 address

Syntax Description Specifies the IPv6 address of the tunnel endpoint.IPv6 address


Command Modes DS-Lite configuration





read, writecgn

Examples This example shows how to assign an IPv6 tunnel endpoint address for a ds-lite instance:

RP/0/RP0/CPU0:router# configRP/0/RP0/CPU0:router(config)#service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)#service-type ds-lite ds-lite1RP/0/RP0/CPU0:router(config-cgn-ds-lite)#aftr-tunnel-endpoint-address 10:10::2RP/0/RP0/CPU0:router(config-cgn-ds-lite)


Carrier Grade NAT Commands on Cisco IOS XR Softwareaftr-tunnel-endpoint-address (DS-LITE)

alg ActiveFTP (NAT44)To enable the Application-Level Gateway (ALG) of Active FTP for a NAT44 instance, use the alg ActiveFTPcommand in NAT44 configuration mode. To disable the support of ALG for the Active FTP, use the noform of this command.

alg ActiveFTP

Syntax Description This command has no arguments or keywords.

Command Default By default, ActiveFTP ALG is disabled.

Command Modes NAT44 Configuration



The Usage Guidelines section was updated.Release 4.1.0



read, writecgn

Examples The following example shows how to configure ALG for the active FTP connection for the NAT44 instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type nat44 nat1RP/0/RP0/CPU0:router(config-cgn-nat44)# alg ActiveFTP


Carrier Grade NAT Commands on Cisco IOS XR Softwarealg ActiveFTP (NAT44)

alg ftp (DS-LITE)To enable the support for FTPApplication-Level Gateway (ALG) for a DS-Lite instance, use the alg commandin DS-Lite configuration mode. To disable, use the no form of this command.

alg ftp

Syntax Description Enables the FTP ALG.ftp


Command Modes DS-Lite configuration mode





read, writecgn

Examples This example shows how to enable support for FTP ALG:

RP/0/RP0/CPU0:router# configRP/0/RP0/CPU0:router(config)#service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)#service-type ds-lite ds-lite1RP/0/RP0/CPU0:router(config-cgn-ds-lite)#alg ftpRP/0/RP0/CPU0:router(config-cgn-ds-lite)#


Carrier Grade NAT Commands on Cisco IOS XR Softwarealg ftp (DS-LITE)

alg pptpalg (NAT44)To configure Point-to-Point Tunneling Protocol (PPTP) as the Application-Level Gateway (ALG) for a NAT44instance, use the alg pptpalg command in NAT44 configuration mode. To undo the configuration, use theno form of this command.

alg pptpalg

Syntax Description This command has no arguments or keywords.

Command Default By default, PPTP ALG is disabled.

Command Modes NAT44 configuration mode





read, writecgn

Examples This example shows how to configure ALG for the PPTP connection on NAT44 instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type nat44 nat441RP/0/RP0/CPU0:router(config-cgn-nat44)# alg pptpalg


Enables the Application-Level Gateway (ALG) of Active FTP fora NAT44 instance.

alg ActiveFTP (NAT44), on page 33

Enables the support for Application-Level Gateway (ALG) RealTime Streaming Protocol (RTSP).

alg rtsp (NAT44), on page 38


Carrier Grade NAT Commands on Cisco IOS XR Softwarealg pptpalg (NAT44)

alg rtsp (DS-LITE)To enable support for the Application-Level Gateway (ALG) Real Time Streaming Protocol (RTSP), use thealg rtsp command in the DS-Lite configurationmode. To disable the support, use the no form of this command.

alg rtsp

Syntax Description Specifies the real time streaming protocol.rtsp

Specifies the port to be used for RTSP. The range is from 1 to 65535.Thedefault port is 554.

server-port

Command Default By default, the alg rtsp is disabled.

Command Modes DS-Lite Configuration



Usage Guidelines The application has to be directed to identify RTSP packets. The alg rtsp configuration command allowsenabling of RTSP scan.


read, writecgn

Examples This example shows how to configure the alg rtsp command for a DS-Lite instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type ds-lite ds-lite1RP/0/RP0/CPU0:router(config-cgn-ds-lite)# alg rtsp


Enters the IPv4 address family configuration mode.address-family ipv4 (Stateless NAT64), onpage 17


Carrier Grade NAT Commands on Cisco IOS XR Softwarealg rtsp (DS-LITE)

DescriptionCommand

Enables the Application-Level Gateway (ALG) of Active FTPfor a NAT44 instance.


Enters inside VRF configuration mode for a NAT44 instance.inside-vrf (NAT44), on page 116

Limits the number of translation entries per source address.portlimit (NAT44), on page 154

protocol (NAT44)


Enables a NAT44 instance for the CGN application.service-type nat44, on page 204

Configures the Network Address Translation (NAT) mappingrefresh direction for the specified CGN instance.

refresh-direction (NAT44), on page 177


Carrier Grade NAT Commands on Cisco IOS XR Softwarealg rtsp (DS-LITE)

alg rtsp (NAT44)To configure Real Time Streaming Protocol (RTSP) as the Application-Level Gateway (ALG), use the algrtsp command in the NAT44 configurationmode. To undo the configuration, use the no form of this command.

alg rtsp server-port value

Syntax Description Specifies the port to be used for RTSP.server-port

Specifies the port number. The default port is 554. The range is from 1 to65535

value


Command Modes NAT44 Configuration



Usage Guidelines The application has to be directed to identify RTSP packets. The alg rtsp configuration command allowsenabling of RTSP scan.


read, writecgn

Examples This example shows how to configure the alg rtsp command for the CGN instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type nat44 nat1RP/0/RP0/CPU0:router(config-cgn-nat44)# alg rtsp server-port 666


Enables the Application-Level Gateway (ALG) of Active FTPfor a NAT44 instance.



Carrier Grade NAT Commands on Cisco IOS XR Softwarealg rtsp (NAT44)

alg rtsp (Stateful NAT64)To configure Real Time Streaming Protocol (RTSP) as the Application-Level Gateway (ALG), use the algrtsp command in Stateful NAT64 configuration mode. To undo the configuration, use the no form of thiscommand.

alg rtsp server-port value

Syntax Description Specifies the port to be used for RTSP.server-port

Port number. The default port is 554. The range is from 1 to 65535.value


Command Modes Stateful NAT64



Usage Guidelines The application must be directed to identify RTSP packets. The alg rtsp configuration command enablesRTSP scan.


read, writecgn

Examples This example shows how to configure the alg rtsp command for the CGN instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type nat64 stateful nat1RP/0/RP0/CPU0:router(config-cgn-nat64-stateful)# alg rtsp server-port 666


Configures IPv4 or IPv6 address on a NAT64 instance.address-family (Stateful NAT64), on page 27


Carrier Grade NAT Commands on Cisco IOS XR Softwarealg rtsp (Stateful NAT64)

DescriptionCommand

Configures ports dynamically.dynamic-port-range (Stateful NAT64), on page 98

Enables external logging of a NAT64 Stateful instance.external-logging (Stateful NAT64 Netflow), on page108

Specifies time interval to store packet fragments.fragment-timeout (Stateful NAT64), on page 113

Assigns ipv4 address pool.ipv4 (Stateful NAT64), on page 125

Converts an IPv6 address to an IPv4 address.ipv6-prefix (Stateful NAT64), on page 129

Restricts the number of ports used by an IPv6 address.portlimit (Stateful NAT64), on page 157

Enters the ICMP, TCP, and UDP protocol configurationmode.

protocol (Stateful NAT64), on page 171

Specifies the outbound refresh direction.refresh-direction (Stateful NAT64), on page 179

Enables TCP policy that allows IPv4 initiated TCPsessions.

tcp-policy (Stateful NAT64), on page 306

Enables reserving ubits in an IPv6 address.ubit-reserved (Stateful NAT64), on page 328


Carrier Grade NAT Commands on Cisco IOS XR Softwarealg rtsp (Stateful NAT64)

attach port-setTo attach the port-set to the NAT inside-vrf instance, use the attach port-set command in the CGN insideVRF configurationmode. To remove the port-set from the inside-vrf instance, use the no form of this command.

attach port-set name

Syntax Description Specifies the port-set created.name


Command Modes CGN inside VRF configuration mode.



Usage Guidelines A port-set is attached to the VRF instance that handles packets from the subscriber network (inside-VRF).Users can attach only one port-set to the NAT inside-vrf instance. If multiple port-sets are attached to theinside-vrf instance, then only the last attached port-set is considered for the NAPT operation. However, aport-set can be attached to multiple inside-vrf instances. If a port-set is in use by one or more NAT inside-vrfinstances, users cannot delete that port-set until the associations with all NAT inside-vrf instances are removed.However, the user can modify the contents of port-set while they are in use and have the modifications takeeffect immediately.


read, writecgn

Examples The following example shows how to attach the port-set to an inside VRF instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)# service-type nat44 nat1RP/0/RP0/CPU0:router(config-cgn-nat44)# inside-vrf insidevrf1RP/0/RP0/CPU0:router(config-cgn-invrf)#map-address pool 100.1.1.0/24RP/0/RP0/CPU0:router(config-cgn-invrf-afi)#attach port-set set1


Carrier Grade NAT Commands on Cisco IOS XR Softwareattach port-set

br (6rd)To enable the Border Relay(BR) configuration, use the br command in 6RD configuration mode. To disablethis feature, use the no form of this command.

br {ipv4| ipv6-prefix| source-address| unicast}

Syntax Description Specifies the IPv4 related configuration.ipv4

Specifies the IPv6 prefix.ipv6-prefix

Specifies the source address for the tunnel.source-address

Specifies the IPv6 unicast address.unicast


Command Modes 6RD configuration





read, writecgn

Examples This example shows how to configure the unicast address using the br configuration level commands :

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router#(config)# service cgn cgn1RP/0/RP0/CPU0:router#(config-cgn)service-type tunnel v6rd 6rd1RP/0/RP0/CPU0:router(config-cgn-tunnel-6rd)# brRP/0/RP0/CPU0:router(config-cgn-tunnel-6rd)# ipv6-prefix 2001:db8::/32RP/0/RP0/CPU0:router(config-cgn-tunnel-6rd)# source-address 10.2.2.2RP/0/RP0/CPU0:router(config-cgn-tunnel-6rd)# ipv4 prefix length 0RP/0/RP0/CPU0:router(config-cgn-tunnel-6rd)# ipv4 suffix length 0RP/0/RP0/CPU0:router(config-cgn-tunnel-6rd-br)# unicast address 2001:db8:a02:202::1


Carrier Grade NAT Commands on Cisco IOS XR Softwarebr (6rd)


Assigns a value for the ipv4-prefix length to be used as part of bothends of tunnel.

ipv4 prefix (6rd), on page 121

Assigns a value for the ipv4-suffix length to be used as part of bothends of a tunnel.

ipv4 suffix (6rd), on page 123

Generates the delegated ipv6 prefix for a IPv6 Rapid Deployment(6RD) application.

ipv6-prefix (6rd), on page 127

Assigns an ipv4 address as the tunnel source address.source-address (6rd), on page 300

Assigns an IPv6 address to be used for a IPv6 Rapid Deployment(6RD) Border Relay (BR) unicast configuration.

unicast address (6rd), on page 330


Carrier Grade NAT Commands on Cisco IOS XR Softwarebr (6rd)

br-endpoint-address (MAP-E)To configure the IPv6 address of BR, use the br-endpoint-address command in MAP-E configuration mode.To undo the configuration, use the no form of this command.

br-endpoint-address address

Syntax Description Specifies the IPv6 address of the BR.address







read, writecgv6

Examples This example shows how to configure the BR address for a MAP-E instance:

RP/0/RP0/CPU0:router# configureRP/0/RP0/CPU0:router(config)# service cgv6 cgv6-1RP/0/RP0/CPU0:router(config-cgv6)# Service-inline interface TenGigE0/0/0/0RP/0/RP0/CPU0:router(config-cgv6)# service-type-map_e map1RP/0/RP0/CPU0:router(config-cgv6-map-e)# cpe-domain ipv4 Prefix 120.2.1.0/24RP/0/RP0/CPU0:router(config-cgv6-map-e)# cpe-domain ipv6 prefix 9020:da8:2::/48RP/0/RP0/CPU0:router(config-cgv6-map-e)# sharing-ratio 256RP/0/RP0/CPU0:router(config-cgv6-map-e)# contiguous-ports 16RP/0/RP0/CPU0:router(config-cgv6-map-e)# br-endpoint-address 9020:da8:2:ffff::1


Carrier Grade NAT Commands on Cisco IOS XR Softwarebr-endpoint-address (MAP-E)

bulk-port-alloc (NAT44)To pre-allocate a number of contiguous outside ports in bulk and to reduce Netflow/Syslog data volume, usethe bulk-port-alloc command in NAT44 configuration mode. To undo the bulk port allocation, use the noform of this command.

bulk-port-alloc size size-value

Syntax Description Specifies the port size for allocation. The value should be greater than or equal toone fourth of the port limit and less than twice the port limit. The allowed values are8, 16, 32, 64, 128, 256, 512, 1024, 2048, and 4096.

size size-value


Command Modes NAT44 Inside VRF configuration



The minimum size for bulk port allocation was reduced to 8.Release 5.2.0



read, writecgn

Examples This example shows how to allocate ports in bulk to reduce the syslog data volume:RP/0/RP0/CPU0:router# configRP/0/RP0/CPU0:router(config)#service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)#service-type nat44 nat441RP/0/RP0/CPU0:router(config-cgn)#inside-vrf vrf1RP/0/RP0/CPU0:router(config-cgn-ds-lite-invrf)#bulk-port-alloc size 64RP/0/RP0/CPU0:router(config-cgn-ds-lite-invrf)#


Carrier Grade NAT Commands on Cisco IOS XR Softwarebulk-port-alloc (NAT44)


Enables external logging of a NAT44 instance.external-logging (NAT44 Netflow), on page 105

protocol (NAT44)


Carrier Grade NAT Commands on Cisco IOS XR Softwarebulk-port-alloc (NAT44)

bulk-port-alloc (DS-LITE)To pre-allocate a number of contiguous outside ports in bulk and to reduce Netflow/Syslog data volume, usethe bulk-port-alloc command in DS-Lite configuration mode. To undo the bulk port allocation, use the noform of this command.

bulk-port-alloc size

Syntax Description Specifies the port size for allocation. The value should be greater than or equal to one fourthof the port limit and less than twice the port limit. The allowed values are 16, 32, 64, 128,256, 512, 1024, 2048, and 4096.

size


Command Modes DS-Lite configuration





read, writecgn

Examples This example shows how to allocate ports in bulk to reduce the syslog data volume:

RP/0/RP0/CPU0:router# configRP/0/RP0/CPU0:router(config)#service cgn cgn1RP/0/RP0/CPU0:router(config-cgn)#service-type ds-lite ds-lite1RP/0/RP0/CPU0:router(config-cgn-ds-lite)#bulk-port-alloc size 64RP/0/RP0/CPU0:router(config-cgn-ds-lite)#


protocol (NAT44)


Carrier Grade NAT Commands on Cisco IOS XR Softwarebulk-port-alloc (DS-LITE)

clear cgn ds-liteTo clear all translation database entries that are created dynamically for the specific DS-Lite instance, use theclear cgn ds-lite command in EXEC mode .

clear cgn ds-lite instance-name

Syntax Description Instance name for DS-Lite.instance-name


Command Modes EXEC



Usage Guidelines

Because the clear cgn ds-lite command clears all translation database entries and impacts the traffic onthose translation entries, use this command with caution.

Caution


readcgn


Carrier Grade NAT Commands on Cisco IOS XR Softwareclear cgn ds-lite

clear cgn ds-lite ipaddressTo clear translation database entries that are created dynamically for the specified IPv4 address, use the clearcgn ds-lite ipaddress command in EXEC mode.

clear cgn ds-lite instance-name ipaddress address


Specifies the IPv4 address for which the translation entries must becleared.

address


Command Modes EXEC



Usage Guidelines

Because the clear cgn ds-lite ipaddress command clears all translation database entries for the specifiedIPv4 address and impacts the traffic on those translation entries, use this command with caution.

Caution


readcgn


Carrier Grade NAT Commands on Cisco IOS XR Softwareclear cgn ds-lite ipaddress

clear cgn ds-lite portTo clear the translation database entries that are created dynamically for the specified port number, use theclear cgn ds-lite port command in EXEC mode.

clear cgn ds-lite instance-name port number




Command Modes EXEC



Usage Guidelines

Because the clear cgn ds-lite port command clears all translation database entries for the specified portand impacts the traffic on those translation entries, use this command with caution.

Caution


readcgn


Carrier Grade NAT Commands on Cisco IOS XR Softwareclear cgn ds-lite port

clear cgn ds-lite protocolTo clear translation database entries that are created dynamically for the specified protocol, use the clear cgnds-lite protocol command in EXEC mode.

clear cgn ds-lite instance-name protocol {udp| tcp| icmp}

Syntax Description Name for the DS-Lite CGN instance.instance-name

Specifies the protocol for which the translation entries must be cleared.protocol


Command Modes EXEC



Usage Guidelines

Because the clear cgn ds-lite protocol command clears all translation database entries for the specifiedprotocol and impacts the traffic on those translation entries, use this command with caution.

Caution


readcgn


Carrier Grade NAT Commands on Cisco IOS XR Softwareclear cgn ds-lite protocol

clear cgn ds-lite statisticsTo clear all the statistics for a ds-lite instance, use theclear cgn ds-lite statistics command in EXEC mode.

clear cgn ds-lite instance-name statistics

Syntax Description Specifies the name of the DS-Lite instance.instance-name

Specifies the DS-Lite statistics.statistics


Command Modes Exec



Usage Guidelines

Because the clear cgn ds-lite statistics command clears all statistics counters, use this command withcaution.

Caution


readcgn


Clears the translation database entries that are created dynamicallyfor the specified inside port number.

clear cgn nat44 port, on page 66

Clears translation database entries that are created dynamically forthe specified protocol.

clear cgn nat44 protocol, on page 69


Carrier Grade NAT Commands on Cisco IOS XR Softwareclear cgn ds-lite statistics

clear cgn map-e statisticsTo clear all statistics of a MAP-E instance, use the clear cgn map-e statistics command in EXEC mode.

clear cgn map-e instance-name statistics

Syntax Description Name of the map-e instance.instance-name

Specifies the map-e statistics.statistics


Command Modes Exec



Usage Guidelines

Because the clear cgn map-e statistics command clears all statistics counters, use this command withcaution.

Caution


readcgn

Examples This example shows how to clear the statistics entries for a MAP-E instance:

RP/0/RP0/CPU0:router# show cgn map-e m1 statistics

MAP-E IPv4 to IPv6 counters:======================================

Total Incoming Count : 0Total Drop Count : 0Total Output Count : 0

TCP Incoming Count : 0TCP Output Count : 0UDP Incoming Count : 0


Carrier Grade NAT Commands on Cisco IOS XR Softwareclear cgn map-e statistics

UDP Output Count : 0ICMPv4 Incoming Count : 0ICMPv4 Output Count : 0

Invalid UIDB Drop Count : 0NoDb Drop Count : 0TTL Expire Drop Count : 0Invalid IP Destination Drop Count : 0Packet Exceeding Path MTU Drop Count : 0Unsupported Protocol Drop Count : 0

ICMPv4 Generated for TTL Expire Count : 0ICMPv4 Generated for Error Count : 0ICMPv4 Packets Rate-Limited Count : 0

TCP MSS Changed Count : 0

MAP-E IPv6 to IPv4 counters:======================================

Total Incoming Count : 0Total Drop Count : 0Total Output Count : 0

TCP Incoming Count : 0TCP Output Count : 0UDP Incoming Count : 0UDP Output Count : 0ICMPv4 Incoming Count : 0ICMPv4 Output Count : 0Invalid UIDB Drop Count : 0NoDb Drop Count : 0TTL Expire Drop Count : 0Invalid IPv6 Destination Drop Count : 0Invalid Source Prefix Drop Count : 0Unsupported Protocol Drop Count : 0

ICMPv6 Input Count : 0ICMPv6 Invalid UIDB Drop Count : 0ICMPv6 NoDb Drop Count : 0ICMPv6 TTL Expire Drop Count : 0ICMPv6 Invalid IPv6 Destination Drop Count : 0ICMPv6 Unsupported Type Drop Count : 0ICMPv6 Invalid NxtHdr Drop Count: 0ICMPv6 Frag Drop Count : 0ICMPv6 Forus Count : 0ICMPv6 Echo Response Received Count : 0ICMPv6 Echo Replies Count : 0ICMPv6 Translated to ICMPV4 Output Count : 0

ICMPv6 Generated for TTL Expire Count : 0ICMPv6 Generated for Error Count : 0ICMPv6 Packets Rate-Limited Count : 0

TCP MSS Changed Count: 0

MAP-E IPv4 Frag counters received from V4 cloud:==================================================

Total Input Count: 0Total Drop Count: 0Reassembled Output Count : 0

TCP Input Count: 0UDP Input Count: 0ICMPv4 Input Count: 0

Invalid UIDB Drop Count : 0NoDb Drop Count : 0Unsupported Protocol Drop Count : 0Throttled Count : 0Timeout Drop Count: 0Duplicates Drop Count : 0



MAP-E Inner IPv4 Frag counters received from V6 cloud:====================================================

Total Input Count : 0Total Drop Count : 0Total Output Count : 0

TCP Input Count : 0UDP Input Count : 0ICMPv4 Input Count : 0

Invalid Source Prefix Drop Count : 0Unsupported Protocol Drop count : 0Throttled Count : 0Timeout Drop Count : 0Duplicates Drop Count : 0

ICMPv6 Generated for Error Count : 0ICMPv6 Packets Rate-Limited Count : 0

TCP MSS Changed Count : 0

The RP/0/RP0/CPU0:router# clear cgn map-e m1 statistics command clears the outputshown above.


Displays the MAP-E instance statistics.show cgn map-e statistics, on page 234



clear cgn map-t statisticsTo clear all the statistics of a MAP-T instance, use the clear cgn map-t statistics command in EXEC mode.

clear cgn map-t instance-name statistics

Syntax Description Specifies the name of the map-t instance.instance-name

Specifies the map-t statistics.statistics


Command Modes Exec



Usage Guidelines

Because the clear cgn map-t statistics command clears all statistics counters, use this command withcaution.

Caution


readcgn

Examples This example shows the statistics entries for a MAP-T instance:

RP/0/RP0/CPU0:router# show cgn map-t m1 statistics

MAP-T IPv6 to IPv4 counters:======================================

TCP Incoming Count: 0TCP NonTranslatable Drop Count: 0TCP Invalid NextHdr Drop Count: 0TCP NoDb Drop Count: 0TCP Translated Count: 0UDP Incoming Count: 0UDP NonTranslatable Drop Count: 0


Carrier Grade NAT Commands on Cisco IOS XR Softwareclear cgn map-t statistics

UDP Invalid Next Hdr Drop Count: 0UDP No Db Drop Count: 0UDP Translated Count: 0

ICMP Total Incoming Count: 0ICMP No DB Drop Count: 0ICMP Fragment drop count: 0ICMP Invalid NxtHdr Drop Count: 0ICMP Nontanslatable Drop Count: 0ICMP Nontanslatable Fwd Count: 0ICMP UnsupportedType Drop Count: 0ICMP Err Translated Count: 0ICMP Query Translated Count: 0

Subsequent Fragment Incoming Count: 0Subsequent Fragment NonTranslateable Drop Count: 0Invalid NextHdr Drop Count: 0Subsequent Fragment No Db Drop Count: 0Subsequent Fragment Translated Count: 0

Extensions/Options Incoming Count: 0Extensions/Options Drop Count: 0Extensions/Options Forward Count: 0

Extensions/Options No DB drop Count: 0Unsupported Protocol Count: 0

MAP-T IPv4 to IPv6 counters:======================================

TCP Incoming Count: 0TCP No Db Drop Count: 0TCP Translated Count: 0

UDP Incoming Count: 0UDP No Db Drop Count: 0UDP Translated Count: 0UDP FragmentCrc Zero Drop Count: 0UDP CrcZeroRecy Sent Count: 0UDP CrcZeroRecy Drop Count: 0

ICMP Total Incoming Count: 0ICMP No Db Drop Count: 0ICMP Fragment drop count: 0ICMP UnsupportedType Drop Count: 0ICMP Err Translated Count: 0ICMP Query Translated Count: 0

Subsequent Fragment Incoming Count: 0Subsequent Fragment No Db Drop Count: 0Subsequent Fragment Translated Count: 0

Options Incoming Count: 0Options Drop Count: 0Options Forward Count: 0Options No DB drop Count: 0Unsupported Protocol Count: 0

ICMP generated counters :=======================

IPv4 ICMP Messages generated count: 0IPv6 ICMP Messages generated count: 0

The RP/0/RP0/CPU0:router# clear cgn map-t m1 statistics command clears the outputshown above.


Configures IPv4 or IPv6 address for a MAP-T instance.address-family (MAP-T), on page 25



DescriptionCommand

Configures the number of contiguous ports for a MAP-Tinstance.

contiguous-ports (MAP-T), on page 88


cpe-domain (MAP-T), on page 92

Configures the external domain's IPv6 prefix to convert IPv4addresses into IPv6 addresses and vice versa.

external-domain (MAP-T), on page 101

Configures the port sharing ratio.sharing-ratio (MAP-T), on page 221

Displays the MAP-T instance statistics.show cgn map-t statistics, on page 239

Configures traceroute translation algorithms.traceroute (MAP-T), on page 320



clear cgn nat44To clear all translation database entries that are created dynamically for the specific CGN instance, use theclear cgn nat44 command in EXEC mode.

clear cgn nat44 instance-name

Syntax Description Instance name for NAT44.instance-name


Command Modes EXEC



NAT44 instance was included in the command syntax.Release 4.0.0

Usage Guidelines

Because the clear cgn nat44 command clears all translation database entries and impacts the traffic onthose translation entries, use this command with caution.

Caution


readcgn

Examples The following example shows how to clear all the translation entries for the cgn1 instance:

RP/0/RP0/CPU0:router# show cgn nat44 nat2 statistics

Statistics summary of NAT44 instance: 'nat2'Number of active translations: 45631Translations create rate: 5678Translations delete rate: 6755Inside to outside forward rate: 977Outside to inside forward rate: 456Inside to outside drops port limit exceeded: 0Inside to outside drops system limit reached: 0


Carrier Grade NAT Commands on Cisco IOS XR Softwareclear cgn nat44

Inside to outside drops resorce depletion: 0Outside to inside drops no translation entry: 0Pool address totally free: 195

RP/0/RP0/CPU0:router# clear cgn nat44 nat2

RP/0/RP0/CPU0:router# show cgn nat44 nat2 statistics

Statistics summary of NAT44 Instance: 'nat2'Number of active translations: 0

clear cgn nat44 inside-vrf countersTo clear the counters for sequence-check, use the clear cgn nat44 inside-vrf counters in EXEC mode.

clear cgn nat44 instance-name inside-vrf instance-name counters

Syntax Description Lists the counters for TCP sequence checkcounters


Command Modes EXEC





read, writecgn

Examples The following example clears the counters for TCP sequence check.RP/0/RP0/CPU0:router# clear cgn nat44 nat1 inside-vrf vrf1 counters


Carrier Grade NAT Commands on Cisco IOS XR Softwareclear cgn nat44 inside-vrf counters

clear cgn nat44 inside-vrfTo clear translation database entries that are created dynamically for the specified inside VRF, use the clearcgn nat44 inside-vrf command in EXEC mode.

clear cgn nat44 instance-name inside-vrf vrf-name

Syntax Description Instance name for NAT44.instance-name

Name for the inside VRF.vrf-name


Command Modes EXEC



NAT44 instance was included inthe command synta

Documents

Cisco IOS XR Carrier Grade NAT Command Reference for the ......Cisco IOS XR Carrier Grade NAT Command Reference for the Cisco CRS Router, Release 5.1.x First Published: 2013-09-01Last