Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
452
Views
3
Helpful
1
Replies

icmperr during NAT

mnlatif
Level 3
Level 3

‎04-23-2005 09:29 PM - edited ‎03-03-2019 09:22 AM

Hi,

I am trying to understand that under what conditions you can see this output

## show ip nat translations

Pro Inside global Inside local Outside local Outside global

icmperr x.x.x.x y.y.y.y --- ---

Where x.x.x.x is the address of the outside nat interface and y.y.y.y is the address for a Network Device on the inside NAT interface subnet.

The inside device is a Vonage Phone adapter and when this error appears i can no longer make phone calls and have to clear the IP nat translations table.

What does icmperr message actually means ?

\\ Naman

Labels:
0 Helpful
1 Reply 1

Georg Pauwen
VIP
VIP

‎04-24-2005 10:53 AM

Hello Naman,

I came across this explanantion for the ´icmperr´ issue:

'icmperr' entry was introduced from 12.1(10.1).

Prior to this version, if a NAT box with overload configured receives an ICMP error message, NAT tries to allocate an address (as opposed to address+port) and to create a simple entry.

This means that if:

- the box is configured with interface overload or

- all the addresses in the overloaded pool are used

the route drops the ICMP error packet...

Now:

Instead of dropping the packet the route just picks any address (from the pool, or from the interface) and it creates a simple entry with a special value in the protocol field (proto=icmperr). This simple entry is used ONLY to translate ICMP errors coming from that particular Inside host.

The entry times out in 1 minute.´

HTH,

GP

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card