10-13-2004 07:43 PM - edited 02-20-2020 11:40 PM
Hi,
I have this issue:
When I migrate a web server using public ip (pix outside segment) to pix dmz segment, though i have a correct static mapping and access-list defined, i just can't get it work. But if the statically assign public ip is different (not in use before), it works.
Suspect Problem:
- arp table at external router not updated.
is my guess right?
Do i need to perform a clear arp at the router before i move the web server from pix outside to the dmz segment?
Any advise?
10-13-2004 09:00 PM
Well, is always advisable when making a change on the PIX firewall to clear or static translations.
Now, if you had a static translation with a public IP address that has been used, then you might need to clear the xlate (translation) table.
You can always try it....
10-13-2004 11:04 PM
Yes i believe the arp cache on the router is the exact problem you are facing. Clear the arp and then try.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide