https://community.cisco.com/t5/network-security/idsm-fwsm/m-p/1715611#M558010 <P>Hi all</P><P></P><P>we have the following senario ,</P><P></P><P>cisco 6509 is connected to internet we need to secure our internal LAN segments .with IDSM and FWSM moudules.</P><P></P><P>internet ------&gt;IDSM------&gt;FWSM</P><P></P><P>plz suggest&nbsp; some confiugration links for IDSM , FWSM&nbsp; configuration</P><P></P><P>also suggest best practises we plan to keep IDSM IN proimiscouss mode.</P><P></P><P></P><P>thanks</P> Mon, 11 Mar 2019 20:20:05 GMT mirehteshamali 2019-03-11T20:20:05Z https://community.cisco.com/t5/network-security/idsm-fwsm/m-p/1715611#M558010 <P>Hi all</P><P></P><P>we have the following senario ,</P><P></P><P>cisco 6509 is connected to internet we need to secure our internal LAN segments .with IDSM and FWSM moudules.</P><P></P><P>internet ------&gt;IDSM------&gt;FWSM</P><P></P><P>plz suggest&nbsp; some confiugration links for IDSM , FWSM&nbsp; configuration</P><P></P><P>also suggest best practises we plan to keep IDSM IN proimiscouss mode.</P><P></P><P></P><P>thanks</P> Mon, 11 Mar 2019 20:20:05 GMT https://community.cisco.com/t5/network-security/idsm-fwsm/m-p/1715611#M558010 mirehteshamali 2019-03-11T20:20:05Z https://community.cisco.com/t5/network-security/idsm-fwsm/m-p/1715612#M558011 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>First of all please note that the design you're suggesting is not the best.</P><P></P><P>IDSM does more in-depth packet analsysis and thus has a lower performance cap (500Mbit/s as opposed to <EM>theoretical</EM> 5Mbit/s for FWSM). In real life what I would suggest to do is put the IDSM in promiscous mode for vlan(s) behind FWSM and not in front.</P><P></P><P>With IDSM in promiscous mode there is no interaction between the modules and they can be configured separately according to configuration guides and depending on versions.</P><P>For reference:</P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/security/ips/7.0/configuration/guide/cli/cli_idsm2.html">http://www.cisco.com/en/US/docs/security/ips/7.0/configuration/guide/cli/cli_idsm2.html</A></P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/security/fwsm/fwsm40/configuration/guide/fwsm_cfg.html">http://www.cisco.com/en/US/docs/security/fwsm/fwsm40/configuration/guide/fwsm_cfg.html</A></P><P></P><P>Marcin</P></BODY></HTML> Wed, 13 Apr 2011 06:44:32 GMT https://community.cisco.com/t5/network-security/idsm-fwsm/m-p/1715612#M558011 Marcin Latosiewicz 2011-04-13T06:44:32Z https://community.cisco.com/t5/network-security/idsm-fwsm/m-p/1715613#M558012 <HTML><HEAD></HEAD><BODY><P>Thanks for the reply</P><P></P><P>just wanted to know the following</P><P></P><P>what is default password for idsm2 and fwsm</P><P></P><P>i guess their&nbsp; is no default password for fwsm</P><P></P><P></P><P>also let me know how do we log on tho IDSM&nbsp; or fwsm ?</P><P></P><P>do the modules have seprate console ports ?</P><P></P><P>or do we need to first connect to 6500 and then issue session command to move to IDSM ? fwsm ?</P><P></P><P>further where is console port on 6500 loacsted on supervisor engine ?</P><P></P><P>thanks</P></BODY></HTML> Wed, 13 Apr 2011 08:53:32 GMT https://community.cisco.com/t5/network-security/idsm-fwsm/m-p/1715613#M558012 mirehteshamali 2011-04-13T08:53:32Z https://community.cisco.com/t5/network-security/idsm-fwsm/m-p/1715614#M558014 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>As for default username and password it's the same as anywehere - cisco.</P><P></P><P>Did you have a look at the documents I sent you? There an instruction on how to configure and how to get to those devices. You use the chassis or SSH/telnet/HTTPS directly once basic configuration is done.</P><P></P><P>FWSM has a physical console port but it's ON the blade (not on the front panel).</P><P></P><P>The console port doesn't have to be in uniform place accross different supervisors, it is always however labeled "console" (at least on blades from last 4-5 years) <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P><P></P><P>Marcin</P></BODY></HTML> Wed, 13 Apr 2011 09:08:26 GMT https://community.cisco.com/t5/network-security/idsm-fwsm/m-p/1715614#M558014 Marcin Latosiewicz 2011-04-13T09:08:26Z