FWSM vlan configuration

Unanswered Question
Jun 9th, 2009

Hi, What is the meaning of following tree lines in FWSM-6500 switch.

firewall module 7 vlan-group 300,600

firewall vlan-group 300 364

firewall vlan-group 600 664,665

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Giuseppe Larosa Tue, 06/09/2009 - 01:56

Hello Rupesh,

the FSWM communicate with the chassis using a port-channel made of 6 GE that is a L2 trunk.

These commands provide a two level hierarchy to specify what vlans (l2 broadcast domains) have to be extended on the bundle to FWSM.

in your case two firewall vlan-groups 300 and 600 are associated with FWSM in slot 7.

first vlan-group 300 includes only vlan 364 and second vlan-group 600 has a vlan list of 664,665.

the end result is that vlans 364,664,665 are passed on the internal trunk.

Notice that these commands allow also to support multiple FWSMs on the same chassis.

Hope to help



This Discussion