B-15
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
OL-6392-01
Appendix B Sample Configurations
Transparent Mode Examples
Transparent Mode Examples
This section includes the following topics:
• Example 5: Security Contexts With Outside Access, page B-15
• Example 6: Failover, page B-18
Example 5: Security Contexts With Outside Access
This configuration creates three security contexts plus the admin context. Each context allows OSPF
traffic to pass between the inside and outside routers (See Figure B-5.)
Inside hosts can access the Internet through the outside, but no outside hosts can access the inside.
The admin context allows SSH sessions to the FWSM from one host.
Each customer context belongs to a class that limits its resources (gold, silver, or bronze).
Although inside IP addresses can be the same across contexts, keeping them unique is easier to manage.
Figure B-5 Example 5
VLAN 7VLAN 6VLAN 5
MSFC
10.1.
n
.2
Internet
customerA
Network 2
inside
10.1.2.3
192.168.2.1
Management host
10.1.1.75
inside insideinside
VLAN 4
Admin
Network 2
10.1.1.3
192.168.1.1
customerB
Network 2
10.1.3.3
192.168.3.1
customerC
Network 2
10.1.4.3
192.168.4.1
VLAN 153VLAN 150
VLAN 152VLAN 151
Admin Context
outside
customerA
outside
customerB
outside
customerC
outside
10.1.1.1 10.1.2.1 10.1.3.1 10.1.4.1
114999
To Next Page
Loading...
Need help?
General