Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
395
Views
1
Helpful
2
Replies

Pix and FWSM alias changes

hoffa2000
Level 3
Level 3

‎10-07-2007 02:10 AM - edited ‎03-11-2019 04:21 AM

Hi

I've been playing around with altering alias entries on our pix and FWSM. It seems to me there is some timeout in effect when I make changes, clear xlate doesn't help anything.

Example: On my windows network connected to FWSM I have set up one alias to redirect an external mail server IP to an internal one, it's been working fine from my windows PCs. I removed the alias a few days ago and now only get the external IP as ping reply. The problem is that after puting the alias back and doing clear xlate I still get the external IP as ping reply.

My windows PCs are Active Directory connected and use my DCs as DNS servers. Do I have to flush all DNSes after making alias changes?

Regards

//Fredrik

Labels:
0 Helpful
2 Replies 2

vkapoor5
Level 5
Level 5

‎10-12-2007 05:49 AM

After changing or removing the alias, access-list, global, nat, outbound, and static commands, enter the clear xlate command.

http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/command/reference/intro.html

hoffa2000
Level 3
Level 3
In response to vkapoor5

‎10-12-2007 09:51 AM

As I write in my first post I I've already done clear xlate. My question is if there is any additional cache clearing that has to be done on other systems to make all changes operational.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card