857W Non riesco a cancellare un nat

[nekke]

Buoansera a tutti,
sono alle prime armi, volevo chiedervi come mai quando cerco di cancellare un nat mi restituisce un errore:

Posto la mia ormai misera config:

Codice: Seleziona tutto

Building configuration...

Current configuration : 4124 bytes
!
! Last configuration change at 19:07:13 PCTime Mon Jul 21 2008 by s.galletti
! NVRAM config last updated at 19:04:54 PCTime Mon Jul 21 2008 by s.galletti
!
version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname Hiro_Nakamura
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 debugging
logging console critical
enable secret 5 $1$W6HR$aVjVKWtuRQYOi3hH5Bg5W/
!
no aaa new-model
!
resource policy
!
clock timezone PCTime 1
clock summer-time PCTime date Mar 30 2003 2:00 Oct 26 2003 3:00
no ip source-route
!
!
ip cef
ip tcp synwait-time 10
no ip bootp server
ip name-server 213.156.56.80
ip name-server 213.156.56.81
ip ssh time-out 60
ip ssh authentication-retries 2
!
!
crypto pki trustpoint TP-self-signed-2596150405
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-2596150405
 revocation-check none
 rsakeypair TP-self-signed-2596150405
!
!
crypto pki certificate chain TP-self-signed-2596150405
 certificate self-signed 01
  30820245 308201AE A0030201 02020101 300D0609 2A864886 F70D0101 04050030 
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 32353936 31353034 3035301E 170D3038 30373231 31373336 
  32395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 35393631 
  35303430 3530819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 
  8100B850 E4BB0F27 E055DB02 C2906C07 07FACA2E 8C6181B3 B0AB6A1C F882737B 
  C6864B99 68BB6AD1 E96E71E9 8385574E 5E25BB5F 7BEFE251 6F9BDBB0 2EE53D6C 
  C1B45659 057EC365 2E71290C B6043F04 5CFBFC04 7DB619D2 65BE7533 90AC28BE 
  17EC953B B5993371 20C7D3D7 505308E1 75EA8292 ED1FB468 05AE6C90 56354EF6 
  68950203 010001A3 6D306B30 0F060355 1D130101 FF040530 030101FF 30180603 
  551D1104 11300F82 0D486972 6F5F4E61 6B616D75 7261301F 0603551D 23041830 
  168014AB 68572523 BB75DB0B A9277F1F 2F2A0518 35BD7B30 1D060355 1D0E0416 
  0414AB68 572523BB 75DB0BA9 277F1F2F 2A051835 BD7B300D 06092A86 4886F70D 
  01010405 00038181 0032BA4C A8B868D5 E7F103C0 E73F9E34 3C93C68E 91B75C07 
  22DB3A11 E45C4BAD C7FA6DCF D444FF38 1875CFB7 F79CD2AA 99D1BC28 9F95E47F 
  59AF6AE6 82291301 CCFC19EE 497E503F 956D327F 48B58274 9D47D2FA 19C7FF7A 
  75088C2B D332B0D8 614085CF 780BAE2C 1079ACA7 AD51D834 3B4A1B69 2638C2DC 
  0A48CE14 2D8595DD B6
  quit
username s.galletti privilege 15 secret 5 $1$Mls2$pivkLubwk5wtuG2G8qbeP1
!
! 
!
!
!
interface ATM0
 no ip address
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip route-cache flow
 shutdown
 no atm ilmi-keepalive
 dsl operating-mode auto 
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Dot11Radio0
 ip address 192.168.1.1 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip route-cache flow
 shutdown
 !
 encryption key 1 size 40bit 7 20892BAE587F transmit-key
 encryption mode wep mandatory 
 !
 ssid GENOA
    authentication open 
    guest-mode
 !
 speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
 station-role root
!
interface Vlan1
 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
 ip address 5.255.98.243 255.255.248.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip route-cache flow
 ip tcp adjust-mss 1452
!
!
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat source list 10 interface Vlan1 overload
!
logging trap debugging
!
control-plane
!
banner login ^CAuthorized access only!
 Disconnect IMMEDIATELY if you are not an authorized user!^C
!
line con 0
 login local
 no modem enable
 transport output telnet
line aux 0
 login local
 transport output telnet
line vty 0 4
 privilege level 15
 login local
 transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
end

Quando cerco di fare

conf t
no ip nat source list 10 interface Vlan1 overload

mi da il seguente errore

%Error: Dynamic mapping still in use, cannot remove

ho provato anche a fare

clear ip nat trans forced

ma invano...

[djdylan78]

metti in shutdown la vlan 1 e poi togli il comando.
Se prima vuoi fare un'ulteriore verifica dai uno show ip nat translation

[Wizard]

Scusa ma:

Codice: Seleziona tutto

interface Vlan1
 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
 ip address 5.255.98.243 255.255.248.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip route-cache flow
 ip tcp adjust-mss 1452 

A parte la description orrenda creata dal sdm...
Dove è il comando "ip nat inside (o outside)?

[nekke]

Ho cancellato tutte le nat...e arrivato a quella non me lo faceva fare...
Ho spento e riacceso il router e si è cancellata...

Il problema ora è un' altro...

Natta in uscita, la wireless 192.168.1.0
ma non la vedo in show ip nat trans...non ne vedo l'ombra
a meno che non faccio un debug ip nat trans e un term mon...

e vedo che lavora...

La config ora è questa

Codice: Seleziona tutto

Building configuration...

Current configuration : 4304 bytes
!
version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname Hiro_Nakamura
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 debugging
logging console critical
enable secret 5 $1$W6HR$aVjVKWtuRQYOi3hH5Bg5W/
!
no aaa new-model
!
resource policy
!
clock timezone PCTime 1
clock summer-time PCTime date Mar 30 2003 2:00 Oct 26 2003 3:00
no ip source-route
no ip dhcp use vrf connected
!
ip dhcp pool WIRELESS
   network 192.168.1.0 255.255.255.0
   default-router 192.168.1.1
   dns-server 213.156.56.80 213.156.56.81
!
!
ip cef
ip tcp synwait-time 10
no ip bootp server
ip name-server 213.156.56.80
ip name-server 213.156.56.81
ip ssh time-out 60
ip ssh authentication-retries 2
!
!
crypto pki trustpoint TP-self-signed-2596150405
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-2596150405
 revocation-check none
 rsakeypair TP-self-signed-2596150405
!
!
crypto pki certificate chain TP-self-signed-2596150405
 certificate self-signed 01
  30820245 308201AE A0030201 02020101 300D0609 2A864886 F70D0101 04050030
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
  69666963 6174652D 32353936 31353034 3035301E 170D3038 30373230 31383134
  33315A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 35393631
  35303430 3530819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
  8100B850 E4BB0F27 E055DB02 C2906C07 07FACA2E 8C6181B3 B0AB6A1C F882737B
  C6864B99 68BB6AD1 E96E71E9 8385574E 5E25BB5F 7BEFE251 6F9BDBB0 2EE53D6C
  C1B45659 057EC365 2E71290C B6043F04 5CFBFC04 7DB619D2 65BE7533 90AC28BE
  17EC953B B5993371 20C7D3D7 505308E1 75EA8292 ED1FB468 05AE6C90 56354EF6
  68950203 010001A3 6D306B30 0F060355 1D130101 FF040530 030101FF 30180603
  551D1104 11300F82 0D486972 6F5F4E61 6B616D75 7261301F 0603551D 23041830
  168014AB 68572523 BB75DB0B A9277F1F 2F2A0518 35BD7B30 1D060355 1D0E0416
  0414AB68 572523BB 75DB0BA9 277F1F2F 2A051835 BD7B300D 06092A86 4886F70D
  01010405 00038181 0020908B 066A6CDC 8C8C8180 1724637A 4697159C A6759005
  63F07381 594B370B 2C901FBD 75C9FF9B 745D7C89 13865503 E4EAD107 9024419A
  BB143E9D 2A5F04DA AD7E1246 48AE82AA 997BF8E7 46CD9CE8 79ACEEB4 64C9B018
  983EB90E 026C200C 5ED439CF 6B2BAB8A AB5E09A4 67B36714 ADD30BD4 48DDF0AD
  8C5C6EF3 D9AE9ACF 47
  quit
username s.galletti privilege 15 secret 5 $1$Mls2$pivkLubwk5wtuG2G8qbeP1
!
!
!
!
!
interface ATM0
 no ip address
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip route-cache flow
 shutdown
 no atm ilmi-keepalive
 dsl operating-mode auto
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Dot11Radio0
 ip address 192.168.1.1 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip nat inside
 ip nat enable
 ip virtual-reassembly
 ip route-cache flow
 !
 encryption key 1 size 40bit 7 20892BAE587F transmit-key
 encryption mode wep mandatory
 !
 ssid GENOA
    authentication open
    guest-mode
 !
 speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0
 54.0
 station-role root
!
interface Vlan1
 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
 ip address 5.255.98.243 255.255.248.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip nat outside
 ip nat enable
 ip virtual-reassembly
 ip route-cache flow
 ip tcp adjust-mss 1452
!
ip route 0.0.0.0 0.0.0.0 Vlan1
!
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat source list 10 interface Vlan1 overload
!
logging trap debugging
access-list 10 permit 192.168.1.0 0.0.0.255
!
control-plane
!
banner login ^CAuthorized access only!
 Disconnect IMMEDIATELY if you are not an authorized user!^C
!
line con 0
 login local
 no modem enable
 transport output telnet
line aux 0
 login local
 transport output telnet
line vty 0 4
 privilege level 15
 login local
 transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
end

Dove caspita sbaglio?!