Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2137
Views
3
Helpful
3
Replies

ASA 8.3 real ip address automatic migration

Go to solution
jmprats
Level 4
Level 4

‎03-24-2011 01:53 AM - edited ‎03-11-2019 01:12 PM

Hi, in the ASA Migration Guide for Version 8.3 says about real ip address: "All of the access-list
commands used for these features are automatically migrated unless otherwise noted"

But my ACL's have not been migrated to real ip address. In my migration log:

INFO: NAT migration completed.
Real IP migration logs:
     No ACL was changed as part of Real-ip migration


Why?
So, do I have to migrate them manually?

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to jmprats

‎03-24-2011 02:42 AM

Yes, there is bug with the outside ACL does not get converted correctly during the migration unfortunately due to NAT exemption ACL configured.

Here is the bugID for your reference: CSCtf57830

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtf57830

The issue is resolved if you were to upgrade from 8.2 to 8.3.2.

Yes, you would need to manually change it at this stage.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee

‎03-24-2011 02:09 AM

ASA version 8.3 does not use ACL anymore for any of the NAT statements, hence it's saying that there is no change to the ACL.

It will automatically convert that to the same on version 8.3.

Go to solution
jmprats
Level 4
Level 4
In response to Jennifer Halim

‎03-24-2011 02:28 AM

But, what I'm saying is that my outside ACL after migration is still using public ip (natted), not real ip address.

so, do i have to migrate outside ACL manually?

Why not be migrated autmotically?

Thanks

0 Helpful

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to jmprats

‎03-24-2011 02:42 AM

Yes, there is bug with the outside ACL does not get converted correctly during the migration unfortunately due to NAT exemption ACL configured.

Here is the bugID for your reference: CSCtf57830

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtf57830

The issue is resolved if you were to upgrade from 8.2 to 8.3.2.

Yes, you would need to manually change it at this stage.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card