Update load-balancer-outbound-connections.md

thisisanniefang · web-flow · commit 50804513a6af · 2023-08-23T14:58:15.000-04:00
Add details on default port allocation only permitting up to 1024 ports per VM
diff --git a/articles/load-balancer/load-balancer-outbound-connections.md b/articles/load-balancer/load-balancer-outbound-connections.md
@@ -121,9 +121,15 @@ If using SNAT without outbound rules via a public load balancer, SNAT ports are
 
 ## <a name="preallocatedports"></a> Default port allocation table
 
-The following <a name="snatporttable"></a>table shows the SNAT port preallocations for backend pool sizes:
+When load balancing rules are selected to use default port allocation, or outbound rules are configured with "Use the default number of outbound ports", SNAT ports are allocated by default based on the backend pool size. Backends will receive the number of ports defined by the table, per frontend IP, up to a maximum of 1024 ports.
 
-| Pool size (VM instances) | Default SNAT ports per IP configuration |
+As an example, with 100 VMs in a backend pool and only one frontend IP, each VM will receive 512 ports. If a second frontend IP is added, each VM will receive an additional 512 ports. This means each VM is allocated a total of 1024 ports. As a result, adding a third frontend IP will NOT increase the number of allocated SNAT ports beyond 1024 ports.
+
+As a rule of thumb, the number of SNAT ports provided when default port allocation is leveraged can be computed as: MIN(# of default SNAT ports provided based on pool size * number of frontend IPs associated with the pool, 1024)
+
+The following <a name="snatporttable"></a>table shows the SNAT port preallocations for a single frontend IP, depending on the backend pool size:
+
+| Pool size (VM instances) | Default SNAT ports |
 | --- | --- |
 | 1-50 | 1,024 |
 | 51-100 | 512 |
@@ -132,6 +138,7 @@ The following <a name="snatporttable"></a>table shows the SNAT port preallocatio
 | 401-800 | 64 |
 | 801-1,000 | 32 | 
 
+
 ## Port exhaustion
 
 Every connection to the same destination IP and destination port uses a SNAT port. This connection maintains a distinct **traffic flow** from the backend instance or **client** to a **server**. This process gives the server a distinct port on which to address traffic. Without this process, the client machine is unaware of which flow a packet is part of.
