cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3385
Views
6
Helpful
3
Replies

Cannot clear dynamic translation even though its not in use

Jimimimo17
Level 1
Level 1

Hello Guys,

One of my customers wants to configure static NAT instead using dynamic. All traffic from source which need static NAT assigned has been stopped, but I cannot clear dynamic NAT translation anyway ( please see below ). IP accounting output confirmed that there is no traffic at all for the internal host.

Do you guys have any experience with that ?

Thanks

router#show ip nat translations | i 10.60.218.185

--- 10.60.218.185         10.47.1.18            ---                   ---

router#clear ip nat tra

router#clear ip nat translation in

router#clear ip nat translation inside 10.60.218.185 10.47.1.18

%Translation in use, cannot remove

router#

3 Replies 3

Edison Ortiz
Hall of Fame
Hall of Fame

I've seen situations where the translation remains 'stuck' and the only solution is to reload the device.

Before reloading the router, you can try removing IP NAT INSIDE and/or IP NAT OUTSIDE on the interfaces that participated in the NAT process. Then perform a CLEAR IP NAT TRANS *.

Another thing to try is use the FORCED switch to delete dynamic translation forcefully.

E.g. clear ip nat translation inside 10.60.218.185 10.47.1.18 forced

Please rate replies and mark question as "answered" if applicable.

Please rate replies and mark question as "answered" if applicable.

rhgtyink
Level 1
Level 1

Sorry to bump an old thread but I had the same issue.

In certain cases you seem to need to remove every entry by using the following commands:

first list all the entries in the table

 

show ip nat trans | inc 10.47.1.18

 

that will output something like

tcp 10.60.218.185:46574   10.47.1.18:46574   <IP>:<PORT    <IP>:<PORT
tcp 10.60.218.185:46713   10.47.1.18:46713   <IP>:<PORT    <IP>:<PORT
--- 10.60.218.185         10.47.1.18         ---                   ---

 

Next up you need to clear them line by line by using

 

clear ip nat translation tcp inside 10.60.218.185 46574 10.47.1.18 46574

etc

 

Once that's done you can clear the NAT with

clear ip nat translation inside 10.60.218.185 10.47.1.18

 

(at least on my setup).

Review Cisco Networking for a $25 gift card