×
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Change multiple addresses on an ASA 5510

Change multiple addresses on an ASA 5510

Change multiple addresses on an ASA 5510

(OP)
Hi, we are changing our internet circuit and will have a new block of addresses. In our ASA 5510, what is the easiest way to change all these access list-addresses to the new ones? I make changes from time to time but I'm far from proficient in cisco cli. Any help would be appreciated

RE: Change multiple addresses on an ASA 5510

1. Copy the access-list lines to an editor twice. In the 1st copy replace the IP addresses as you need AND RENAME the access list. Prepend all the ACL lines in the second copy of with "no".
2. Go to the ASA. Enter the configuration mode (config t). Paste in the new ACL with the new IPs.
3. Locate the line that reads "access-group <old ACL name> ..." and enter the same line with THE NEW ACL name.
4. Paste in all lines with the "no" from the step 1. This will remove the debris.
5. OPTIONAL: enter this command:
access-list <new-name> rename <old> name

test and save.

RE: Change multiple addresses on an ASA 5510

(OP)
Thanks for the reply. Does the same apply for static routes? Such as:

static (inside,outside) tcp public address port private address port netmask 255.255.255.255


Thanks

RE: Change multiple addresses on an ASA 5510

In short, not quite and these are not routes.
1. issue "no static (inside,outside) ...." for each line
2. enter the new ones.
3.
clear xlate
clear local-host

RE: Change multiple addresses on an ASA 5510

(OP)
Thanks - is it possible to copy the entire config to notepad, make address changes and then copy it back overwriting original?

RE: Change multiple addresses on an ASA 5510

1. get the config to your PC/server. It will save it as "config-2-edit"

CODE -->

copy running-config tftp://<IP-of-tftp-server>/config-2-edit 
2. save locally (on the flash) just in case, do not skip this.

CODE -->

copy startup-config startup-saved 
3. edit it on your PC and place it back to the same directory where you found it.
4. overwrite the startup-conig with the one you edited

CODE -->

copy tftp://<IP-of-tftp-server>/config-2-edit> startup-config 
5. reboot the ASA

CODE -->

reload 

If things go wrong (you mess up the config):

CODE -->

copy startup-saved startup-config
reload 

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login


Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close