×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Cannot clear dynamic translation even though its not in use

Unanswered Question
Jan 14th, 2014
User Badges:

Hello Guys,


One of my customers wants to configure static NAT instead using dynamic. All traffic from source which need static NAT assigned has been stopped, but I cannot clear dynamic NAT translation anyway ( please see below ). IP accounting output confirmed that there is no traffic at all for the internal host.


Do you guys have any experience with that ?


Thanks


router#show ip nat translations | i 10.60.218.185

--- 10.60.218.185         10.47.1.18            ---                   ---

router#clear ip nat tra

router#clear ip nat translation in

router#clear ip nat translation inside 10.60.218.185 10.47.1.18

%Translation in use, cannot remove

router#

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Edison Ortiz Tue, 01/14/2014 - 11:36
User Badges:
  • Super Bronze, 10000 points or more
  • Hall of Fame,

    Founding Member

I've seen situations where the translation remains 'stuck' and the only solution is to reload the device.

Rejohn Ronald Cuares Tue, 01/14/2014 - 11:43
User Badges:
  • Bronze, 100 points or more

Before reloading the router, you can try removing IP NAT INSIDE and/or IP NAT OUTSIDE on the interfaces that participated in the NAT process. Then perform a CLEAR IP NAT TRANS *.


Another thing to try is use the FORCED switch to delete dynamic translation forcefully.


E.g. clear ip nat translation inside 10.60.218.185 10.47.1.18 forced



Please rate replies and mark question as "answered" if applicable.

rhgtyink Thu, 06/11/2015 - 04:25
User Badges:

Sorry to bump an old thread but I had the same issue.

In certain cases you seem to need to remove every entry by using the following commands:

first list all the entries in the table

 

show ip nat trans | inc 10.47.1.18

 

that will output something like

tcp 10.60.218.185:46574   10.47.1.18:46574   <IP>:<PORT    <IP>:<PORT
tcp 10.60.218.185:46713   10.47.1.18:46713   <IP>:<PORT    <IP>:<PORT
--- 10.60.218.185         10.47.1.18         ---                   ---

 

Next up you need to clear them line by line by using

 

clear ip nat translation tcp inside 10.60.218.185 46574 10.47.1.18 46574

etc

 

Once that's done you can clear the NAT with

clear ip nat translation inside 10.60.218.185 10.47.1.18

 

(at least on my setup).

Actions

This Discussion