11-16-2005 05:11 PM - edited 02-21-2020 12:31 AM
I copied the old config and pasted to the new firewall. Saved it and replaced. For some reason that I cannot figue, no traffic flows through the pix. I can reach the pix from the inside.
Is there some difference in command structure between 6.2 and 6.3 that may cause this?
11-16-2005 05:55 PM
there is no particular difference, the basic commands are the same. try to compare the configs now.
may be some config is not copied.
thanks
Nadeem
11-16-2005 07:04 PM
There is one or two commands that are not any more supported but the rest of the config should be the same.
Basic settings are:
IP Address, global, nat and a default route.
Have you done a " clear xlate ".
Post your config but replace the public IP with x.x.x.x ...
sincerely
Patrick
11-16-2005 08:25 PM
one quick comment.
just wondering if you did a "wri erase" on the unlimited 501 before copying the config over, as this will shutdown all interfaces.
e.g. to do a "no-shut"
interface ethernet0 auto
interface ethernet1 100full
11-17-2005 05:36 AM
I did do a write erase on the new pix. However when it is in place and i do sho interface, both report as up and up. Any suggestions?
11-17-2005 05:41 AM
I have also done a clear xlate and no dice. This is a slightly complex environment with a cisco router between the firewall and the local network. Should I clear the arpcache on the router?
11-17-2005 04:43 PM
please post the config with all public info masked.
11-18-2005 05:15 AM
Figured it out. Cleared the arpcache on the various routers.
Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide