Технические ссылки для Cisco Cisco Catalyst 6500 Series 7600 Series Wireless Services Module (WiSM)
47
Configuring a Cisco Wireless Services Module and Wireless Control System
OL-8981-01
aaa-server RADIUS max-failed-attempts 3
aaa-server RADIUS deadtime 10
aaa-server LOCAL protocol local
no snmp-server location
no snmp-server contact
snmp-server community public
snmp-server enable traps snmp
floodguard enable
fragment size 200 outside
fragment chain 24 outside
fragment size 200 inside
fragment chain 24 inside
telnet timeout 5
ssh timeout 5
terminal width 80
Cryptochecksum:fd9eac84597419d0969d1d906705d122
: end
[OK]
FWSM#
: end
The configuration is now complete. Data from the wireless clients is forwarded to the tunnel interface
and then forwarded to the outside interface of the FWSM. The firewall now needs its security policies
applied to determine what traffic can or cannot pass.
and then forwarded to the outside interface of the FWSM. The firewall now needs its security policies
applied to determine what traffic can or cannot pass.
Integrating Cisco WiSM and VPN Service Module
This section includes the following topics:
•
VPNSM Overview
•
How the VPNSM Works
•
VPNSM Configuration with the Cisco WiSM
VPNSM Overview
The VPN Services Module (VPNSM) was introduced as a high-performance VPN option to further
extend the existing VPN portfolio of products from Cisco. The VPNSM is part of the Catalyst 6500
service module family, which comprises the Firewall Services Module (FWSM), Content Switching
Module (CSM), Intrusion Detection System Module (IDSM), Network Analysis Module (NAM), and the
Secure Socket Layer Module (SSL).
extend the existing VPN portfolio of products from Cisco. The VPNSM is part of the Catalyst 6500
service module family, which comprises the Firewall Services Module (FWSM), Content Switching
Module (CSM), Intrusion Detection System Module (IDSM), Network Analysis Module (NAM), and the
Secure Socket Layer Module (SSL).
The VPNSM, like other service modules, is geared to provide high-performance services accelerated by
hardware offering up to 1.9 Gbps of Triple Data Encryption Standard (3DES) data (at 500-byte packets)
and 1.6 Gbps of 3DES traffic at a smaller packet size of 300 bytes.
hardware offering up to 1.9 Gbps of Triple Data Encryption Standard (3DES) data (at 500-byte packets)
and 1.6 Gbps of 3DES traffic at a smaller packet size of 300 bytes.
The VPNSM offers the following features:
•
Single slot in the Catalyst 6500 chassis
•
Connections to both the 32 GB bus and the 256 GB crossbar
•
High-speed VPN performance offering up to 1.9 Gbps of 3DES performance
•
Catalyst 6500 integration, which allows a combination switch and VPN service
•
Support for industry-recognized encryption algorithms, including DES and 3DES
•
Multiple authentication schemes, including X.509 digital certificates, RADIUS, TACACS,
PAP/CHAP, shared secrets, and simple certificate enrollment protocol
PAP/CHAP, shared secrets, and simple certificate enrollment protocol