03-28-2008 02:14 PM - edited 03-11-2019 05:24 AM
I have a Pix 515e w/ ver 6.3
I just finished configuring a object-group, the access-list, and the access-group command the hard way "CLI".
do I have to issue the "Pix1#clear xlate " command for the change to take effect ?.
Thanks
Solved! Go to Solution.
03-28-2008 03:29 PM
Cisco recommendeds doing a 'clear xlate' after any ACL or NAT configuration change. However, if the ACL change you had made doesn't affect any existing xlate entry then clearing xlate mayn't be required.
Are you concerned about any disruption in traffic by the 'clear xlate' command. There should be a very brief disruption and the xlate entries would be quickly recreated.
HTH
Sundar
03-28-2008 03:29 PM
Cisco recommendeds doing a 'clear xlate' after any ACL or NAT configuration change. However, if the ACL change you had made doesn't affect any existing xlate entry then clearing xlate mayn't be required.
Are you concerned about any disruption in traffic by the 'clear xlate' command. There should be a very brief disruption and the xlate entries would be quickly recreated.
HTH
Sundar
03-28-2008 04:45 PM
I agree with Sundar, but my advise would be, "If in doubt do a clear xlate". It seems to clear all sorts and just makes the changes work.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: