[c-nsp] Renaming interfaces on a PIX 525
Michael K. Smith - Adhost
mksmith at adhost.com
Wed Jul 23 17:18:11 EDT 2008
Hello Steven:
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-
> bounces at puck.nether.net] On Behalf Of Steven Pfister
> Sent: Wednesday, July 23, 2008 11:35 AM
> To: cisco-nsp at puck.nether.net
> Subject: [c-nsp] Renaming interfaces on a PIX 525
>
> We have a pair of PIX 525s (active/standby), and the 2900 switch they're
> attached to is going to be replaced very shortly. The outside interface, which
> is currently Ethernet0, will then be moved to GigabitEthernet1. What's the
> best way to do this? Can I just rename the Ethernet0 interface to outside.old,
> and rename the GigabitEthernet interface to outside, then move the ip
> addressing? Will that work?
>
You will have to rename the Ethernet interface first, which will break a lot of stuff, then name the Gigabit Ethernet interface, which will *not* un-break anything. After you change the name you will have to do the following:
1) Reenter your statics (they will go away when you un-name E0)
2) Re-apply your access-group command for any ACL's your outside ACL
3) Re-enter any admin outside access (ssh, http, etc.)
4) Re-apply your global statement if used.
5) Clear ARP on your upstream device(s).
Make sure you have a backup and that you're doing this from either console or the inside network.
Regards,
Mike
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 475 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20080723/fe946666/attachment.bin>
More information about the cisco-nsp
mailing list