FWSM, maximize the bridge-group number.

Answered Question

I'm reading the configuration guide, release 3.2.

I want to maximize the use of the contexts creating more bridge-group within the same context.

Can someone post a configuration example?

I want to understand well the interface naming and access-list.

Thanks.

Andrea

Correct Answer by lowen about 9 years 5 months ago

There's nothing magic about the interface name "inside" ... it's just a default. You don't need multiple "nameif inside" commands. Use names lik3 "nameif bvi1-inside" and "bvi1-outside", or something else that makes sense given what's on the subnet in question. You would then have differenet acl's for each interface.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
jfgobin01 Mon, 10/01/2007 - 03:05

Hello Andrea,


Can you explain briefly what you want to do ?


jF

I want to use a FWSM (but I don't have it now!) with contexts and transparent mode. I understand that I can create eight bridge-group into a single context, each with a couple of interfaces, but is not clear how I can declare more than one inside (may be inside1, inside2,..or isolated so I can have more "nameif inside" each for bvi) or outside interfaces, and than how can I use acl.


I believe these are very simple questions but I'm not able to find documentation or example.


Many thanks for your help.

Andrea.

Correct Answer
lowen Mon, 10/01/2007 - 05:08

There's nothing magic about the interface name "inside" ... it's just a default. You don't need multiple "nameif inside" commands. Use names lik3 "nameif bvi1-inside" and "bvi1-outside", or something else that makes sense given what's on the subnet in question. You would then have differenet acl's for each interface.

Actions

This Discussion