Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2531
Views
0
Helpful
1
Replies

Need to change IP address of ESA cluster vs SMA connectivity

REJR77
Level 1
Level 1

‎01-09-2017 11:56 AM

hi

i need to change the IP addresses of my ESA in a cluster. But the ESA are already registered in the sma. There are lots of policy quarantines created in the sma. 

How can I change the ip of the esa and still getting connected to the sma? 

I need to have minimal downtime 

what would be the best procedure?

Regards 

Labels:
0 Helpful
1 Reply 1

Libin Varghese
Cisco Employee
Cisco Employee

‎01-09-2017 12:34 PM

Hi Romain,

Changing the IP address of a managed appliance can cause several issues to occur. If you change the IP address of a Web Security appliance, the publish history for the appliance will be lost, and publishing errors will occur if the Web Security appliance is currently selected for a scheduled publish job. (This does not affect scheduled publish jobs that are set to use all assigned
appliances.) If you change the IP address of an Email Security appliance, the tracking availability data for the appliance will be lost.

However, from the SMA, the message tracking and other information is still accessible after the IP change. It should retain this until disk space becomes full, and the older logs/information is cleared. This would be seen from Management Appliance -> System Administration -> Disk Management.

************************************************************************

Below are the instructions to change the IP address of a machine already in a cluster.

- Log into the Web Interface with an administrative user.
- Navigate to Network > IP Interfaces.
- Click on the IP Interface you would like to update.
- Change the IP Address to the new address in both the IPv4 field and in the "URL Displayed in Notifications:” field ( if it is populated already).
- Click on the "Submit" button.
- Commit the changes.

Once this is done, adjust the cluster communication settings as follows:

- Log into the Command Line of the appliance with an SSH Terminal Program (similar to PuTTy).
- Issue the "clusterconfig" command.
- Switch to cluster mode by selecting "y".
- Issue the "communication" command.
- Correct the method of communication to use the new IP Address.
- Press the [Enter] Key until you are back to the command prompt.
- Commit the changes with the "commit" command.

************************************************************************

On the SMA, browse to ‘Centralized Services -> Security Appliances’
You will see a list of your configured ESAs.
Click the name of the ESA that has changed its IP address.
Edit the IP address, and click ‘Test Connection’ to make sure the connection is successful.
Submit and Commit your changes.

************************************************************************

Regards,
Libin Varghese

0 Helpful
Customers Also Viewed These Support Documents