Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Replacing Pix 501 10 user 6.2 with Pix 501 unlimited 6.3(5)

Unanswered Question
Nov 16th, 2005
User Badges:

I copied the old config and pasted to the new firewall. Saved it and replaced. For some reason that I cannot figue, no traffic flows through the pix. I can reach the pix from the inside.

Is there some difference in command structure between 6.2 and 6.3 that may cause this?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
nkhawaja Wed, 11/16/2005 - 17:55
User Badges:
  • Cisco Employee,

there is no particular difference, the basic commands are the same. try to compare the configs now.

may be some config is not copied.



Patrick Iseli Wed, 11/16/2005 - 19:04
User Badges:
  • Gold, 750 points or more

There is one or two commands that are not any more supported but the rest of the config should be the same.

Basic settings are:

IP Address, global, nat and a default route.

Have you done a " clear xlate ".

Post your config but replace the public IP with x.x.x.x ...



jackko Wed, 11/16/2005 - 20:25
User Badges:
  • Gold, 750 points or more

one quick comment.

just wondering if you did a "wri erase" on the unlimited 501 before copying the config over, as this will shutdown all interfaces.

e.g. to do a "no-shut"

interface ethernet0 auto

interface ethernet1 100full

glendrews Thu, 11/17/2005 - 05:36
User Badges:

I did do a write erase on the new pix. However when it is in place and i do sho interface, both report as up and up. Any suggestions?

glendrews Thu, 11/17/2005 - 05:41
User Badges:

I have also done a clear xlate and no dice. This is a slightly complex environment with a cisco router between the firewall and the local network. Should I clear the arpcache on the router?

jackko Thu, 11/17/2005 - 16:43
User Badges:
  • Gold, 750 points or more

please post the config with all public info masked.

glendrews Fri, 11/18/2005 - 05:15
User Badges:

Figured it out. Cleared the arpcache on the various routers.



This Discussion