Chapter 16: Network Address Translation Configuration Guide222 SmartSwitch Router User Reference ManualManaging Dynamic BindingsAs mentioned previously, dynamic address bindings expire only after a period of non-useor when they are manually deleted. The default timeout for dynamic address bindings is1440 minutes (24 hours). You can manually delete dynamic address bindings for a specificaddress pool or delete all dynamic address bindings.To set the timeout for dynamic address bindings, enter the following command inConfigure mode.To flush dynamic address bindings, enter the following command in Enable mode.NAT and DNSNAT can translate an address that appears in a Domain Name System (DNS) response to aname or inverse lookup. For example, if an outside host sends a name lookup to an insideDNS server, the inside DNS server can respond with a local IP address, which NATtranslates to a global address.You create NAT dynamic bindings for DNS by entering the following command inConfigure mode.DNS packets that contain addresses that match the ACL specified by outside-local-acl-pool are translated using local addresses allocated from inside-global-pool.Set timeout for dynamic addressbindings.nat set dynamic-binding-timeout |disableFlush all dynamic addressbindings.nat flush-dynamic-binding allFlush dynamic address bindingsbased on local and global ACLpools.nat flush-dynamic-binding pool-specifiedlocal-acl-pool global-poolmask>Flush dynamic address bindingsbased on binding type.nat flush-dynamic-binding type-specifieddynamic|overloaded-dynamicFlush dynamic address bindingsbased on application.nat flush-dynamic-binding owner-specifieddns|ftp-control|ftp-dataEnable NAT with dynamicaddress binding for DNSquery/reply.nat create dynamic local-acl-pool local-acl> global-pool range/ip-addr-list/ip-addr-mask>