10-20-2007 03:24 PM - edited 03-11-2019 04:28 AM
Upgraded a 5510 to 8.0 yesterday. At some point last night all access to inside services from the outside stopped. After several hours of complete frustration today trying to get it back up I found that a command had been added.
sysopt noproxyarp outside
Why would this have been added from the upgrade? Basically the outside router could not arp any of the addresses inside the firewall which prevented the outside services from functioning. I removed it and everything worked again. The reason it worked originally is because the arp was cached in the outside router for 4 hours. Wouldn't you think that would disabled by default?
10-20-2007 11:49 PM
Do you have the ASA boot-up output when you reloaded the ASA after the upgrade? This will show us what the upgrade script changed, and why.
10-22-2007 05:52 AM
No I don't sorry. I was too busy trying to get the clients services back up and running.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: