cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
406
Views
4
Helpful
1
Replies

Firewalling vlans on Catalyst 6500 by using Cisco ASA Firewalls

Eugen Bitca
Level 1
Level 1

Hello,

How to secure vlans on Catalyst 6500 by using Cisco ASA Firewalls?

There are no free modules on Catalyst 6500 to install a FWSM module.

What is the best configuration to secure vlans (~80 vlans) by using cisco ASA firewalls (context, hairpining...)?

Thanks

1 Reply 1

Hi Bro

Just to understand your question once again, you don't have anymore available slots in your present Cat6K, but you want to know how to secure your VLANs or SVIs that has been configured in your Cat6K?

If you were to ask me, I would not apply a bunch of ACLs in the Cat6K, for starters. You might wanna look into COPP (Control Plane Policing) instead. Furthermore you could also refer to this Cisco document http://www.cisco.com/en/US/products/hw/switches/ps708/products_white_paper09186a00801b49a4.shtml

However, if you do have Cisco ASA FW appliance (not module, I presume from your question), you could enable ACLs, threat-detection feature, IP Audit features, reverse-path policing, capping of the embryonic values etc.

P/S: If you think this comment is useful, please do rate them nicely :-)

Warm regards,
Ramraj Sivagnanam Sivajanam
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: