Cisco Cisco Virtual Security Gateway for Nexus 1000V Series Switch Libro blanco
![Cisco](https://files.manualsbrain.com/attachments/7380d0050044647c30f5c24bbbf5d0c0b6d9bb84/common/fit/150/50/faa183d287233c52228cfea3dbc2a127fe780f60564fcb0955d9c3d1cd23/brand_logo.png)
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 11 of 33
Here’s an example of installing vsg-policy-agent on Cisco VSG:
VSG(config)#vnm-policy-agent
VSG(config)#registration-ip 10.29.171.102
VSG(config)# shared-secret **********
VSG(config)# policy-agent-image bootflash:/ Cisco Prime Network Services
Controller-vsgpa.2.0.1a.bin
Controller-vsgpa.2.0.1a.bin
VSG# show vnm-pa status
VNM Policy-Agent status is - Installed Successfully. Version 2.0(1a)-vsg
VSG#
Figure 9. Initial Setup of Cisco VSG and Cisco Prime Network Services Controller
After completing these tasks, you should be ready to start defining and implementing the policies for Cisco VSG.
Figure 10 shows a typical network with all the necessary components in place for the Cisco VSG solution.
Figure 10. Network Topology with Cisco Nexus 1000V Series, Cisco VSG, and Cisco Prime Network Services Controller
Enabling the Firewall
To insert the firewall into the network, you need to attach Firewall security profile to the port profile. All the traffic
traversing the virtual ports associated with that port profile is subjected to policy evaluation.