NAT logs record information about private network users' access to public networks and public network users' access to private networks. Without NAT logging, a NAT device cannot locate a private network user's operation because multiple private network users share the same public IP address. NAT logging enables the NAT device to record and trace information about user access, which improves network security.
NetEngine 8000 F supports flow logs.
Flow logs apply when a NAT device establishes flow tables and age flow tables. Flow logs contain the source IP address, source port number, destination IP address, NATed source IP address, NATed source port number, and protocol type. They are sent to a log server. Flow logs contain rich data, with data volume being large. Flow logs not only can be used for source tracing, but also be used for providing information about external networks accessed by users.
Flow logs support the binary formats and are transmitted through a configured UDP port.
Flow logs on the NetEngine 8000 F support syslog format, eLog format and NetStream format.