Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

6509 w/ FWSM

We just installed a 6509 with an FWSM and I need to setup SSH access to the 6509 for monitoring. I would like to have the switch accessible by an inside IP address. However, I have setup the MSFC on the outside of the FWSM so traffic is routed by the MSFC to the outside interface of the FWSM and then internally through three different internal vlans out the FWSM.

My question is, if I create an additional Interface VLAN on the 6509 with and internal IP address, will this bypass the FWSM? I've read that if you have two Layer3 VLAN interfaces, you could bypass the firewall, but if I do not include the vlan in the firewall vlan-group will it still bypass the FWSM?

New Member

Re: 6509 w/ FWSM

it will bypass the firewall in your configuration. if the vlans are in the firewall vlan-group however, I have never tried this. It will not bypass them if the svi's (int vlan xxx)

dont come up/up. I suspect they will.