Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

C6509, FWSM Failover, C3560G, Vlans

Hi,

I have the folowing network scenario:

In the central node:

   1 Catalyst 6509

   2 FWSM (failover and routed mode configured)

In the remote locations:

    1 Catalyst 3560G

I want to have more than one vlans behind catalyst 3560G switches.

How i configure the firewall and the routing between FWSM and C3560G?

Scenario is presented in the attached draft (tested for one vlan).

Thank you.

Everyone's tags (2)
3 REPLIES
Hall of Fame Super Blue

Re: C6509, FWSM Failover, C3560G, Vlans

ioan_ploscariu wrote:

Hi,

I have the folowing network scenario:

In the central node:

   1 Catalyst 6509

   2 FWSM (failover and routed mode configured)

In the remote locations:

    1 Catalyst 3560G

I want to have more than one vlans behind catalyst 3560G switches.

How i configure the firewall and the routing between FWSM and C3560G?

Scenario is presented in the attached draft (tested for one vlan).

Thank you.

Not sure what your query is ?

Is the 3560G routing the vlans or are they meant to be routed on the FWSM ?

Jon

New Member

Re: C6509, FWSM Failover, C3560G, Vlans

I want the FWSM to make NAT for vlans even if one firewall module failed and the PC behind switches  to have internet access through firewall module.

How i configure the firewalls and the switches to make this happen?

Thank you.

Re: C6509, FWSM Failover, C3560G, Vlans

I want the FWSM to make NAT for vlans even if one firewall module failed and the PC behind switches  to have internet access through firewall module.

How i configure the firewalls and the switches to make this happen?

Thank you.

Hi ,

For above requirement create a trunk configuration between 3560G and 6509 switch and push those vlans into FWSM,Drop the gateways of the pc to FWSM vlan interface and drop a reverse route for vlan subnet towards the switch side.

For failover configuration on FWSM Active/passive check out the below link

http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/asdm52f/user/guide/switch.pdf

For natting configuration in FWSM check out the below link

http://www.cisco.com/en/US/docs/security/fwsm/fwsm22/configuration/guide/quick.html

Hope to help !!

Ganesh.H

Remember to rate the helpful post

778
Views
3
Helpful
3
Replies
CreatePlease to create content