4-3
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
OL-6392-01
Chapter 4 Configuring the Firewall Mode
Firewall Mode Overview
How Data Moves Through the FWSM in Routed Firewall Mode
This section describes how data moves through the FWSM in routed firewall mode, and includes the
following topics:
• An Inside User Visits a Website, page 4-3
• An Outside User Visits a Website on the DMZ, page 4-4
• An Inside User Visits a Website on the DMZ, page 4-5
• An Outside User Attempts to Access an Inside Host, page 4-6
• An DMZ User Attempts to Access an Inside Host, page 4-8
An Inside User Visits a Website
Figure 4-2 shows an inside user accessing an outside website.
Figure 4-2 Inside to Outside
The steps below describe how data moves through the FWSM (see Figure 4-2):
1. The user on the inside network requests a web page from www.cisco.com.
2. The FWSM receives the packet, and because it is a new session, the FWSM verifies that the packet
is allowed according to the terms of the security policy (ACLs, filters, AAA).
Web Server
10.1.1.3
www.cisco.com
User
10.1.2.27
FWSM
Outside
Inside DMZ
Switch
209.165.201.2
10.1.1.110.1.2.1
104656
Source Addr Translation
209.165.201.1010.1.2.27
To Next Page
Loading...
Need help?
General