Cisco Cisco Catalyst 6500 Series Firewall Services Module Fehlerbehebungsanleitung
For Cisco IOS software:
Router(config)#firewall vlan−group firewall_group vlan_range
Router(config)#firewall module module_number vlan−group firewall_group
♦
For Catalyst Operating System software:
Console> (enable) set vlan vlan_list firewall−vlan mod_num
♦
Enable an interface on the FWSM and IP address:
nameif interface interface_name security_lvl
ip address interface_name ip_address [mask]
interface interface_name
fwsm(config−interface) no shutdown
4.
Test connectivity between the FWSM and the PC, using ping. Use theis command to download the
image from the TFTP server when connectivity is confirmed. Reload the FWSM when the download
is complete.
image from the TFTP server when connectivity is confirmed. Reload the FWSM when the download
is complete.
FWSM#copy tftp://server[/path]/filename flash:
For example, enter this command:
FWSM#copy tftp://209.165.200.226/cisco/c6svc−fwm−k9.2−1−1.bin flash:
5.
Define Firewall VLANs on the Switch
Replace the commands that you removed in step 1 of the Upgrade the FWSM Code procedure.
For Cisco IOS software:
Router(config)#firewall vlan−group firewall_group vlan_range
Router(config)#firewall module module_number vlan−group firewall_group
•
For the Catalyst Operating System software:
Console> (enable)set vlan vlan_list firewall−vlan mod_num
•
Basic FWSM for Failover Configuration
Setup some basic FWSM settings to prepare it for re−introduction into the pair. Then reconfigure the switch
firewall groups/firewall VLANs to include it back into the failover pair.
firewall groups/firewall VLANs to include it back into the failover pair.
Remove the old nameif and IP address defined in step 4 of the Enable a New Switch VLAN that is not
Currently in Use procedure.
Currently in Use procedure.
1.
Define the device as the primary or secondary.
2.