Solved

PIX Config change

Posted on 2007-11-28
9
190 Views
Last Modified: 2010-04-09
I have a PIX 515 running version 6.3(4) of the IOS.
I need to change the IP address of my mail server and there is a line in the config i need to change but can't.
The line is:

static (inside,outside) *external IP* *internal IP* netmask 255.255.255.255 0 0

I need to change the internal IP address but if i try to remove this line or add another it fails on the static word.

Any ideas on how i can edit this line?

Thanks.
0
Comment
Question by:nealerocks
9 Comments
 
LVL 36

Expert Comment

by:grblades
ID: 20368722
To remove the line copy and paste it back into the configuration but with the 'no ' keyword infront.
You can then enter the new command with the modifed IP address.
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20368736
Are you in config mode?  Your prompt should look like this:

pixfirewall(config)#

If you have the "#" prompt at the end and it says (config), then you should be able to issue the "no" form of the static command to remove it.  In other words,

no static (inside,outside) *external IP* *internal IP* netmask 255.255.255.255

and then type the static command back in with the new value(s).
0
 
LVL 25

Expert Comment

by:Cyclops3590
ID: 20368948
i have to agree with batry_boy.  typically when this happens to me, i'm in a hurry to make a simple change and sometimes forget to put myself in config mode first.
0
 
LVL 12

Author Comment

by:nealerocks
ID: 20369128
Thanks for your responses guys.
However i am in config mode and i have tried typing the whole line with "no" in front of it.

It give me an error and the little arrow points to the word static.
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 28

Accepted Solution

by:
batry_boy earned 500 total points
ID: 20369210
Try clearing your existing xlates first with the command:

clear xlate

and then try removing it again.  If that doesn't work, I would reload the PIX and try again.
0
 
LVL 12

Author Comment

by:nealerocks
ID: 20369295
I tried the clear xlate command but it wont accept it. i tried in config mode and normal mode.
the error is the word clear. is there another command to clear the xlate?
0
 
LVL 12

Author Comment

by:nealerocks
ID: 20369363
when i try clear xlate in enable mode the error points to xlate.
i typed clear ? and xlate did not show up in the list of available commands.
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20369476
OK, something weird is going on here...post the output of the "show version" command, please.
0
 
LVL 12

Author Comment

by:nealerocks
ID: 20369623
Holy shit, i'm the dumbest person in the world! i had the console cable plugged into the wrong port. that is why the commands were not working. i plugged it into the router by mistake which sits on top of the pix.
sorry guys.

Thanks for your help batry. im going to give you the points because i had the right commands from the beginning, i just noticed the problem when you asked for the show version output.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now