FWSM and IDSM-2 "Best Practices"

Unanswered Question
Feb 6th, 2007

Hi everyone

Anybody knows about a "Best Practices Guide" to deploy FWSM and IDMS-2 on the same Catalys 6500?

Something like , what is the best way to configure FWSM and IDMS-2 to protect the same VLANS?

I?m asking it because I?m configuring a 6513 Catalyst on a costumer with FWSM, IDSM-2 and Guard modules on the same chassis and I?m facing a lot of trouble to find the best way to make all working together.


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Fernando_Meza Tue, 02/06/2007 - 16:13

Hi .. I have implemented FWSM and IDSM-2 on the same chassis .. I have not implemented Guard sorry .. but It all depends of your network design ( which VLANS will be using IDS and which ones IPS protection). We also had a CPOC where it was found that there are some minimal issues when traffic traverses VLANs which are IN-LINE mode protected .. some signatures will not fired ocasionally . There were also some software dependencies. In our scenario FWSM is running 2.3(4) and IDMS-2 are running 5.1 .. everything works OK.

I hope I help in any way ..!!!


This Discussion