Hi All,
I recently deleted one of my nat statements because i needed to change the address the inside was being natted to. well i removed the old and added a new. i see it in the running config. but when i ping from the outside world, the old address still answers and the new one does not. what could i be missing? i had to do this while the internal server was still up and running, could it be holding on to that public ip until i reboot both the pix and the server?
TIA,
RYou will have to do a "clear xlate global x.x.x.x" to clear the old nat.
You should be able to see the current translations by doing a "sho xlate"
TGH
snipped-for-privacy@gmail.com wrote:
Deleting the translation rule does not delete the translation itself .
To do so , do a "clear xlate" . You can see the existing translation with "sh xlate".
As soon as the xlate for your inside IP is deleted it will create a new one using your new rule . No reboot is needed.
Be carefull , if you do a "clear xlate" without specification you will clear all xlates , and will disconnect all existing sessions , wich may be (or may be not ) critical, depending on the nature of services provided through your PIX.
clear xlate [global | local ip1[-ip2] [netmask mask]] lport | gport port[-port]] [interface if1[,if2][,ifn]] [state static [,dump] [,portmap] [,norandomseq] [,identity]]
show xlate [detail] [global | local ip1 [-ip2] [netmask mask]] lport | gport port [-port]] [interface if1 [,if2] [,ifn]] [state static [,dump] [,portmap] [,norandomseq] [,identity]] [debug] [count]
Thanks so much! everything is ok now.
mcaissie wrote:
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.