I've always been told that anytime a NAT or Static statement is added, removed, or changed, that we should follow up our config by the "clear xlate" command. I've seen Cisco docs that say to do this, and I've also seen Cisco docs saying that "clear xlate" is only for clearing dynamic translation, and that you should use the "clear local-host" command if you remove a static from the config. Cisco doc also says "Always clear xlates after you add, change, or remove the aaa-server, access-list, alias, global, nat, route, or static commands in your configuration", however, that seems to contrast when they say that clear xlate is only for dynamic translations. So I'm looking for opinions/knowledge on exactly what is needed and when.
First, if I remove a static translation from the config, what should I be doing to make sure its disappeared from the xlate table? Should I use the same command if I add or change a static, are there different requirements if I'm adding vs changing existing? If I'm adding a brand new static statement, I don't get what doing a "clear xlate" is buying me.
Second, when issuing the "clear xlate" on a global basis, does this drop all connections that are currently built, assuming they are all going through some type of NAT or PAT? For instance, if I have an FTP transfer going, and do a clear xlate, does that kill my session?
Third, why does Cisco also say when adding, changing or removing "aaa-server", "access-list" are also 2 other commands that would require a clear xlate? If I add an ACL or aaa-server for that matter, what is constituting their recommendation for me to do a clear xlate?
appreciate any input. I think the clear xlate has always been a misunderstood command to a point, and often overused, but I've seen so much conflicting info about it, I thought it might be a good discussion to bring on this forum.