FWSM query

arvind.thevendriya · ‎02-25-2009

Hi,

We have FWSM sitting on 6509 chassis. Currently we are passing the traffic thru Pix and we have 10 VLANS in the INSIDE zone (Trust zone). Now my question is

We need to replace PIX with FWSM as the perimeter firewall.

If i deploy FWSM and push the all Inside zone traffic thru the FWSM. To my knowledge we can only have One VLAN per interface but I have 10 vlans under Inside interface. How to map all the vlans?

Syed Iftekhar Ahmed · ‎02-25-2009

In FWSM there are no physical interfaces.

Different Vlans are used as interfaces.

You can have 256 vlans in single routed mode.

Syed Iftekhar Ahmed

arvind.thevendriya · ‎02-25-2009

Thanks Syed, Can you please send me some examples link.

I am also trying to find it. I am new to FWSM.

Thanks

Syed Iftekhar Ahmed · ‎02-25-2009

FWSM Basic Configuration example

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00808b4d9f.shtml

FWSM multiple context example

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809bfce4.shtml

Sample configurations from User guides

http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/exampl_f.html

HTH

Syed Iftekhar Ahmed

arvind.thevendriya · ‎02-25-2009

Greatful thanks for sending me the links. All I find in that link is Multiple context for different VLANs.

In my environment, we just have VLANS for our monitoring purpose and not to segregate traffic.

Do I need to define so many VLANs in FWSM and have those VLANs in the same security level with single context mode.