Solved

Overwrite/Delete Existing Static NAT Entry

Posted on 2013-05-31
4
901 Views
Last Modified: 2013-06-06
I have an old webserver (w2) that is being replaced by a group of webservers (w3, w4, w7, w8).

On my ASA the External Web Address for website "A" is mapped to the old web server.  
Ex:
static (dmz, outside) 67.x.x.x 10.x.x.x netmask 255.255.255.255

I need to change the internal address (in bold) to the new web server 10.y.y.y.

When I enter the changes into the ASA, of course, it returns an
Error-Mapped Address Conflict With Existing Static

As these sites are moved to the new servers (a gradual process) I'll need to continue to update these entries.  

How do I do this?

Thank you!
0
Comment
Question by:CJones46
4 Comments
 

Expert Comment

by:TFortson514
ID: 39211919
What version of code are you running on your ASA?
0
 
LVL 26

Accepted Solution

by:
pony10us earned 500 total points
ID: 39211945
Remove the 10.x.x.x first:

no static (dmz, outside) 67.x.x.x 10.x.x.x netmask 255.255.255.255
static (dmz, outside) 67.x.x.x 10.y.y.y netmask 255.255.255.255
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39212711
...or log in to the ASA using ASDM and just edit the NAT rule.

You'll also need to edit the associated Access Rule to allow the traffic through the firewall, but I'm sure no-one else forgot that ;-)
0
 

Author Closing Comment

by:CJones46
ID: 39225275
Easy as pie.  Thanks!!
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now