cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4082
Views
5
Helpful
6
Replies

Change IP on Inside interface of ASA

sanketbang123
Level 1
Level 1

Hello All,

Two production firewalls connected in Fail-over mode. We would like to change the IP on Inside interface.

Will there be any impact to other configuration (e.g ACL, NAT statements) ? Also what precautions need to be taken care while implementing the change?

 

PS: we are not using the dynamic routing , static routes are going to be updated in change.

Thanks,

Sanket

6 Replies 6

Hi,

 

 I´d issue show run | inc "Inside IP address". Save the output to a txt file and I´d look at every line that the Inside IP address came to light. Then, I´d prepare an script change those lines accordingly.

 

 

-If I helped you somehow, please, rate it as useful.-

 

 

 

 

f1# sh run | i 10.103.65
ip address 10.103.65.1 255.255.255.0 standby 10.103.65.2
route inside 10.0.0.0 255.0.0.0 10.103.65.5 1
route inside 10.103.0.0 255.255.0.0 10.103.65.5 1
route inside 192.168.1.0 255.255.255.0 10.103.65.5 1

 

f1# sh ip address
System IP Addresses:
Interface Name IP address Subnet mask Method
GigabitEthernet0/0 outside 10.103.64.6 255.255.255.0 CONFIG
GigabitEthernet0/1 inside 10.103.65.1 255.255.255.0 CONFIG
GigabitEthernet0/2 dmz 10.103.66.1 255.255.255.0 CONFIG

Good for you. Just a few lines to change.  

 

 

 

 

 

 

-If I helped you somehow, please, rate it as useful.-

Yes that's right. But my concern is something different, after changing the IPs and static route will it affect the NAT statements and ACL configured on inside interface?

Only if nat was configured using IP address, then you should see on the output. If NAT is using interface, shouldn't have any problems.

 Maybe it is a good idea after change and save  reload firewall.

 

 

 

-If I helped you somehow, please, rate it as useful.-

Ok Thanks for your help :)
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: