Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Unable to access PDM after Inside IP change

Status
Not open for further replies.
Tuscon

Tuscon

IS-IT--Management
May 2, 2003
10
US
This is my first PIX (501). I used the startup PDM to make initial test setup (with DHCP, VPN, etc.) on Inside IP of 192.168.1.1.

Now, I want to go "live" and change the Inside IP to 10.0.15.1 (255.255.255.0). When I try to apply changes to PIX Flash, I naturally lose contact with PIX, so I readdress my PC (W2KAdvSrv/IE6) and try to reach but no success (page not found).

When I reboot PIX, the Inside address stayed at 192.168.1.1. I tried Console commands:

ip address inside 10.0.21.1 255.255.255.0
pdm location 10.0.21.192 255.255.255.224 outside
http 10.0.21.0 255.255.255.0 inside
write mem

This applied the changes to the firmware, but I still cannot access PDM at the new address. If I change back to original settings, I get back on with Certificate download, etc. I also tried resetting to factory defaults, and trying the above process (via PDM and Console), but no go. What am I missing? doing wrong? Thanks.
 
Sort by date Sort by votes
Oops. All changes to Inside IP addresses were attempted to 10.0.21.1, not 10.0.15.1 as in first paragraph. (Need another cup of coffee.)
 
Upvote 0 Downvote
You probably have an ARP issue, an arp entry is being held by your workstation or local router that matches the old ip address to the mac addess of the inside interface. reboot your source machine where you were using pdm and check arp table on local router. Actaully arp have time outs so this should have fixed itself in a mater of minutes/hours depending upon te arp timeout.
Keith
 
Upvote 0 Downvote
HI.

> This is my first PIX (501).
The problem is that the pix 501 comes preconfigured to 192.168.1.1 and it is not simple for newbie to change this.

My suggestion is this:
Connect using the console, and issue the commands:
write erase
reload
(This will clear the current configuration, to start from scratch).
Then the console will first guide you with some basic questions, and from there you'll use PDM with the new internal addressing to get the wizard, etc.

> (with DHCP, VPN, etc.) ...
What OS version do you have? What PDM version?
If it is 6.2x, ask your reseller for the newer 6.3 version (and also newest PDM) which improves some VPN and other issues.
It is best to make the upgrades before you place it in production.

Bye


Yizhar Hurwitz
 
Upvote 0 Downvote
Thanks, Keith. It was an ARP problem. I hadn't thought of that, and it was quickly cleared with your advice.
 
Upvote 0 Downvote
Thanks, Yizhar. I am running 6.2(2) and PDM 2.0. Thanks for giving this PIX-newby the heads up on the upgrade.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
588
Sameer258
Sameer258
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
543
Johnkite
Johnkite
XLNTech1
  • Locked
  • Question
iptables port forwarding
Replies
0
Views
475
XLNTech1
XLNTech1
Shmid
  • Locked
  • Question
Restricting Sonicwall SSL-VPN users for WAN access
Replies
7
Views
633
Shmid
Shmid
sudhakar346
  • Locked
  • Question
Cisco ASA inside to DMZ issue over public IP
Replies
2
Views
147
kythri
kythri

Part and Inventory Search

Sponsor

Back
Top