Hi all,

Today I'm going to introduce you how to delete a public address pool section from a NAT instance.

For example, if the current configuration is as follows, the section field in the NAT instance needs to be deleted.

domain pppoe-nat

 authentication-scheme radius

 accounting-scheme radius

 ip-pool pool-nat-1

 dns primary-ip x.x.x.x

 dns second-ip x.x.x.x

 radius-server group pppoe

 user-group user-nat1 bind nat instance cgn-instance-1

nat instance cgn-instance-1 id 10

 port-range 4096

 service-instance-group cgn-group-1

 nat address-group address-group-1 group-id 10

   section 0 1.60.x.x mask 24

   section 1 1.60.x.x mask 24

 nat outbound 2800 address-group address-group-1

 nat alg all

 nat filter mode full-cone

The deletion method is as follows:

Method of deleting a public address pool section before V600R007+SPH068:

1. Enter the NAT user domain and block it:

 aaa

 domain pppoe-nat

  block

2. Cut off the users in the domain:

 aaa

  cut access-user domain pppoe-nat

3. Confirm that all users in the domain have gone offline:

   disp domain pppoe-nat

4. Delete outbound NAT in the NAT instance:

 nat instance cgn-instance-1

  undo nat outbound 2800

5. Delete the section:

 nat instance cgn-instance-1 id 10

  nat address-group address-group-1

   undo section 1

Method of deleting a public address pool section after V600R007+SPH068

1. Lock a section in the NAT public address pool view:

nat instance cgn-instance-1 id 10

 nat address-group address-group-1

 section 1 lock

2. Clear the user table in the section:

reset nat user nat-instance cgn-instance-1 address-group address-group-1 section 1

3. Confirm that no user exists in the section:

display nat user-information nat-instance cgn-instance-1 address-group address-group-1 section 1

4. Delete the section:

 nat instance cgn-instance-1 id 10

  nat address-group address-group-1

   undo section 1

Thanks!