Cisco Cisco Catalyst 6500 Series Firewall Services Module Manuel Technique
FWSM Basic Configuration Example
Document ID: 98591
Contents
Introduction
Prerequisites
Requirements
Components Used
Related Products
Conventions
Background Information
Configure
Network Diagram
Configurations
Verify
Troubleshoot
Problem: Unable to pass the VLAN traffic from FWSM to the IPS Sensor 4270
Solution
Out−Of−Order packets issue in FWSM
Solution
Problem: Unable to pass asymmetrically routed packets through the firewall
Solution
Netflow support in FWSM
Solution
Related Information
Prerequisites
Requirements
Components Used
Related Products
Conventions
Background Information
Configure
Network Diagram
Configurations
Verify
Troubleshoot
Problem: Unable to pass the VLAN traffic from FWSM to the IPS Sensor 4270
Solution
Out−Of−Order packets issue in FWSM
Solution
Problem: Unable to pass asymmetrically routed packets through the firewall
Solution
Netflow support in FWSM
Solution
Related Information
Introduction
This document describes how to configure the basic configuration of the Firewall Services Module (FWSM)
installed either in the Cisco 6500 Series Switches or Cisco 7600 Series Routers. This includes the
configuration of the IP address, default routing, static and dynamic NATing, Access Control Lists (ACLs)
statements in order to allow the desired traffic or block the unwanted traffic, application servers like
Websense for the inspection of the internet traffic from the inside network, and the Webserver for the Internet
users.
installed either in the Cisco 6500 Series Switches or Cisco 7600 Series Routers. This includes the
configuration of the IP address, default routing, static and dynamic NATing, Access Control Lists (ACLs)
statements in order to allow the desired traffic or block the unwanted traffic, application servers like
Websense for the inspection of the internet traffic from the inside network, and the Webserver for the Internet
users.
Note: In a FWSM High Availability (HA) scenario, the failover can only successfully sync when the license
keys are exactly the same between the modules. Therefore, the failover cannot work between the FWSMs
with different licenses.
keys are exactly the same between the modules. Therefore, the failover cannot work between the FWSMs
with different licenses.
Prerequisites
Requirements
There are no specific requirements for this document.
Components Used
The information in this document is based on these software and hardware versions:
Firewall Services Module that runs software version 3.1 and later
•