Thank you! Can you please tell me more? I thought ARP is not cleared up, because of a bug. I honestly don't remember any mentions about ARP and hops when I read about how to set up NAT on a Cisco router. A few lines form my config:

interface GigabitEthernet0/0/1
 description ISP
 ip address dhcp
 ip nat outside
 ip access-group WAN in
 negotiation auto

interface Vlan1
 ip address 10.0.1.1 255.255.255.0
 ip nat inside

ip http server
ip http authentication local
ip http secure-server
ip forward-protocol nd
ip dns server
ip nat inside source list ACL-WAN-Connection interface GigabitEthernet0/0/1 overload
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0/1

ip access-list extended ACL-WAN-Connection
 10 permit ip 10.0.1.0 0.0.0.255 any
ip access-list extended WAN
 10 deny   tcp any any eq www
 20 deny   tcp any any eq 443
 30 deny   tcp any any eq 22
 40 deny   tcp any any eq domain
 90 permit ip any any

Interesting ...

I changed that and noticed the difference immediately:

Sat Dec 04 2021 15:57:34 GMT-0500 (EST)
===================================================================================
#show arp summary
Total number of entries in the ARP table: 35.
Total number of Dynamic ARP entries: 33.
Total number of Incomplete ARP entries: 0.
Total number of Interface ARP entries: 2.
Total number of Static ARP entries: 0.
Total number of Alias ARP entries: 0.
Total number of Simple Application ARP entries: 0.
Total number of Application Alias ARP entries: 0.
Total number of Application Timer ARP entries: 0.
Maximum limit of Learn ARP entry : 15360.
Maximum configured Learn ARP entry limit : 15360.
Learn ARP Entry Threshold is 12288 and Permit Threshold is 14592.
Total number of Learn ARP entries: 33.
Interface              Entry Count
GigabitEthernet0/0/1             2
Vlan1                           33

Total number is not getting bigger and bigger...

Is it how it is supposed to be?

Thank you again!

Unfortunately, now webui thinks the router is not properly configured

I was so close from the best router for my needs.

I am glad that changing the default route as I suggested did change the behavior. And yes I believe that this is now as it supposed to be.

I am puzzled about the other message. In looking at the screen shots I am surprised to notice that Gig0/0/1 is marked as LAN. If it connects to the ISP I would expect it to be marked as WAN. Was it this way before you changed the default route? 

---

@Richard Burts wrote:

I am puzzled about the other message. In looking at the screen shots I am surprised to notice that Gig0/0/1 is marked as LAN. If it connects to the ISP I would expect it to be marked as WAN. Was it this way before you changed the default route? 

---

When I change from GigabitEthernet0/0/1 to dhcp, the router changes WAN to LAN and shows wan as unsofigured  though everything is working as expected and nothing is changed in the config file.

0/0/1 goes directly to our ISP and gets dynamic IP.

Thanks for the additional information. I do not understand why changing the default route would change the characterization of the interface from WAN to LAN. And I am not sure that it matters. If things are working then I suggest that you not be concerned about that message in the GUI.

I am glad that you found this discussion. If you have configured your router with a static default route and the default route specifies the outbound interface (and not any next hop) then you are indeed encountering the same issue. Clearing the arp cache will resolve the immediate problem, but it will occur again.

To fix the problem you need to change the static default route. To minimize the impact of making the change I suggest that first you configure the new static default specifying dhcp and then remove the old static default route which specified only the outbound interface. Doing it this way should mean that traffic would continue to flow. If you remove the old static default route and then configure the new one, there will be a period of time when your router has no default route and traffic would be impacted.