11-16-2005 05:11 PM - edited 02-21-2020 12:31 AM
I copied the old config and pasted to the new firewall. Saved it and replaced. For some reason that I cannot figue, no traffic flows through the pix. I can reach the pix from the inside.
Is there some difference in command structure between 6.2 and 6.3 that may cause this?
11-16-2005 05:55 PM
there is no particular difference, the basic commands are the same. try to compare the configs now.
may be some config is not copied.
thanks
Nadeem
11-16-2005 07:04 PM
There is one or two commands that are not any more supported but the rest of the config should be the same.
Basic settings are:
IP Address, global, nat and a default route.
Have you done a " clear xlate ".
Post your config but replace the public IP with x.x.x.x ...
sincerely
Patrick
11-16-2005 08:25 PM
one quick comment.
just wondering if you did a "wri erase" on the unlimited 501 before copying the config over, as this will shutdown all interfaces.
e.g. to do a "no-shut"
interface ethernet0 auto
interface ethernet1 100full
11-17-2005 05:36 AM
I did do a write erase on the new pix. However when it is in place and i do sho interface, both report as up and up. Any suggestions?
11-17-2005 05:41 AM
I have also done a clear xlate and no dice. This is a slightly complex environment with a cisco router between the firewall and the local network. Should I clear the arpcache on the router?
11-17-2005 04:43 PM
please post the config with all public info masked.
11-18-2005 05:15 AM
Figured it out. Cleared the arpcache on the various routers.
Thanks
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: