Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

ovt Bronze
Bronze

FWSM question

Hi!

Is MSFC required if CatOS is run on the Supervisor?

According to docs FWSM runs its own routing and from FWSM point of view

MSFC is just an external router. Right? So, can external router be used instead

of MSFC?

Oleg Tipisov,

REDCENTER,

Moscow

  • Other Security Subjects
2 REPLIES
Cisco Employee

Re: FWSM question

YEs, you need an MSFC to run the FWSM. The FWSM and the MSFC create a secure VLAN interface (SVI) between themselves, this VLAN is used for the communication between the FWSM and the router. This is all done internally in the switch in conjunction with the Sup card, so all the modules have to be internal.

ovt Bronze
Bronze

Re: FWSM question

What this SVI is used for? For some control protocol or what?

So far as user traffic is concerned MSFC is clearly an option as

all the FWSM routing and forwarding doesn't depend on MSFC.

In my understanding SVI is needed to only exchange routing updates

between MSFC and FWSM. The SVI VLAN should be the only VLAN

common to both FWSM and MSFC unless CatOS 7.6 is used that

supports multiple SVIs.

BTW Prashanth Krishnappa's (LAN swithing forum) answer was that MSFC

is optional...

Oleg Tipisov,

REDCENTER,

Moscow

96
Views
0
Helpful
2
Replies
This widget could not be displayed.