FWSM A/P Cluster in transparent Mode

Unanswered Question
Feb 20th, 2007

I've been implementing the immensly performant fwsm for some time now, but allways at new customer sites. But now I've stumbled into a re-design of a huge existing network. 2 issues arrise; the transparent mode = the way to go obviously. To minimize the impact for the client. But 1. ALl the Vlan's are allready created on the MSFC's, So how can I assign them to the fwsm (without wreaking havoc)? And 2. Their entire Lan Ip-range/Partner IP-range are on vlan 1 (I know, I know...) and I May not touch this... sigh.

Annyone encounter a similar set-up and have more intelligent suggestions than I can come up with?

I humbly bow in gratitude.

Bart

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 1 (1 ratings)
Loading.
wdrootz Tue, 02/27/2007 - 10:40

You can achieve reasonable security by establishing a good security policy, following that security policy, staying up-to-date on the latest developments in the hacker and security communities, and maintaining and monitoring all systems with sound system administration practices.

http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_implementation_design_guide_chapter09186a008063742b.html

bart.mollemans Tue, 02/27/2007 - 12:57

Hmmm okay... either my english is very bad or you have not read what I typed in my question.

Thank you for the effort tough.

Design wise I know what is the current/ recommended practice. I am asking what I can do in this particular situation technically, without uprooting their use of vlan 1... If there is no workarround, no problem. I'll have to migrate everything first and use routed mode.

Actions

This Discussion