EasyManuals Logo
Home>Cisco>Switch>Catalyst 6500 Series

Cisco Catalyst 6500 Series User Manual

Cisco Catalyst 6500 Series
392 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #116 background imageLoading...
Page #116 background image
6-10
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
OL-6392-01
Chapter 6 Configuring Basic Settings
Configuring Connection Limits for Non-NAT Configurations
When you enable communication between two hosts on the same interface, keep in mind the following
requirements:
Outside NAT is not supported.
You can configure static routes from one interface to another on the same security level.
To enable communication between hosts on the same security level, enter the following command:
FWSM/contexta(config)# same-security-traffic permit intra-interface
To disable these settings, add no before the command.
Turning Off and Turning On Interfaces
All interfaces are enabled by default. If you disable or reenable the interface within a context, only that
context interface is affected. But if you disable or reenable the interface in the system execution space,
then you affect that VLAN interface for all contexts.
To disable an interface or reenable it, follow these steps:
Step 1 To enter the interface configuration mode, enter the following command:
FWSM/contexta(config)# interface
interface_name
Step 2 To disable the interface, enter the following command:
FWSM/contexta(config-interface)# shutdown
Step 3 To reenable the interface, enter the following command:
FWSM/contexta(config-interface)# no shutdown
Configuring Connection Limits for Non-NAT Configurations
Transparent firewall mode
Same security level mode
The NAT configuration enables you to set connection limits for traffic. For transparent firewall mode or
for same security interfaces on which you do not want to configure NAT (see the Allowing
Communication Between Interfaces on the Same Security Level” section on page 6-8), you can
configure identity NAT to set these limits. Identity NAT lets you specify the addresses for which you
want to set limits, but no translation is performed. (For same security interfaces, you can configure any
method for bypassing NAT, including NAT exemption. See the “Bypassing NAT” section on page 9-29
for more information. For transparent mode, the FWSM supports only the following method.)

Table of Contents

Other manuals for Cisco Catalyst 6500 Series

Preview: Command Reference
Command Reference160 pages
Preview: Installation Guide
Installation Guide194 pages
Preview: Configuration Note
Configuration Note212 pages
Preview: Installation Note
Installation Note36 pages
Preview: Hardware Installation Guide
Hardware Installation Guide134 pages
Preview: Troubleshooting
Troubleshooting10 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco Catalyst 6500 Series and is the answer not in the manual?

Cisco Catalyst 6500 Series Specifications

General IconGeneral
BrandCisco
ModelCatalyst 6500 Series
CategorySwitch
LanguageEnglish

Related product manuals