Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
367
Views
0
Helpful
1
Replies

Swap interface names on pix (FWSM)

Go to solution
Ruterford
Level 1
Level 1

‎11-08-2011 09:21 AM - edited ‎03-11-2019 02:47 PM

Hi All,

I have a couple of interfaces on my FWSM module in 65 switch. I need to swap the nameifs on the interafces.

One of them is named "outside" and the other one is named "outside1". Outside1 is a new interface that is going to face new internet connection. I have a bunch of static and global NAT translations pointing out to "outside" interface, which is going to be swapped.

My question is if I go like this:

1.

interface Vlan 10

no nameif outside

2.

interface Vlan 11

no nameif outside1

3.

interface Vlan 10

nameif outside 1

4.

interface Vlan 11

nameif outside

Will PIX allow me to do that?

Will I need to recreate all NAT static and Global translations?

Will I need to recreate all ACLs?

Thanks!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎11-08-2011 10:54 AM

Hello Olbert,

1-Yes, it is going to be like that

2- You will need to recreate the nat translation as soon as you make the changes because they were created to be natted from specific source and destination zones, and this ones are going to be deleted eventhoug are just like 20 seconds.

3-No, what you are going to loose are the access-group so just match the access-list with the interface in the correct direction and you will be ready.

Please rate helpful post.

Have a great day,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎11-08-2011 10:54 AM

Hello Olbert,

1-Yes, it is going to be like that

2- You will need to recreate the nat translation as soon as you make the changes because they were created to be natted from specific source and destination zones, and this ones are going to be deleted eventhoug are just like 20 seconds.

3-No, what you are going to loose are the access-group so just match the access-list with the interface in the correct direction and you will be ready.

Please rate helpful post.

Have a great day,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card