https://community.cisco.com/t5/network-security/fwsm-sample-config/m-p/845583#M955986 <HTML><HEAD></HEAD><BODY><P>Hi ,</P><P>The basic requirement is to make sure that there are no 3rd leve layer connection between the inside outside or dms interface in the switch msfc routing layre of your switch.</P><P></P><P>The interconnection show be tru the fwsm module.</P><P></P><P>easy way</P><P></P><P>assign the vlan to the firewall module .</P><P>make sure the default gateway of the dmzz and inside is on the firewall module.</P><P></P><P>do not configure any int vla for inside and dmz interface of the mfsc routing card.</P><P></P><P>Regards</P><P></P><P></P><P></P><P></P></BODY></HTML> Wed, 30 Jan 2008 12:44:42 GMT ohanusi2000 2008-01-30T12:44:42Z https://community.cisco.com/t5/network-security/fwsm-sample-config/m-p/845582#M955983 <P>Hi!</P><P></P><P>In core switches we have fwsm module installed with hsrp running b/w the 2 switches. In core 2 vlan is created. 1 for server &amp; anohter for IP phones.</P><P></P><P>there will be 110 vlans that will be created into individual distribution switches. </P><P></P><P>can someone guide me how to configure the fwsm in this case so that all traffic destined to access the servers that are connected with core switch be filtered by fwsm!!!</P><P></P><P>Core &amp; Distribution switch is connected via trunk link!!!!</P><P></P> Mon, 11 Mar 2019 11:55:58 GMT https://community.cisco.com/t5/network-security/fwsm-sample-config/m-p/845582#M955983 acharyr123 2019-03-11T11:55:58Z https://community.cisco.com/t5/network-security/fwsm-sample-config/m-p/845583#M955986 <HTML><HEAD></HEAD><BODY><P>Hi ,</P><P>The basic requirement is to make sure that there are no 3rd leve layer connection between the inside outside or dms interface in the switch msfc routing layre of your switch.</P><P></P><P>The interconnection show be tru the fwsm module.</P><P></P><P>easy way</P><P></P><P>assign the vlan to the firewall module .</P><P>make sure the default gateway of the dmzz and inside is on the firewall module.</P><P></P><P>do not configure any int vla for inside and dmz interface of the mfsc routing card.</P><P></P><P>Regards</P><P></P><P></P><P></P><P></P></BODY></HTML> Wed, 30 Jan 2008 12:44:42 GMT https://community.cisco.com/t5/network-security/fwsm-sample-config/m-p/845583#M955986 ohanusi2000 2008-01-30T12:44:42Z https://community.cisco.com/t5/network-security/fwsm-sample-config/m-p/845584#M955988 <HTML><HEAD></HEAD><BODY><P>I believe i am nt clear to u....</P><P></P><P>I need to create 2 vlan in core. all distributions will be connected with core via L3 link. In core say vlan 2 will be craeted with say 10.10.10.X/24. All distribution will be created with vlan 2 with 10.10.10.2,.3,.4 etc with /24 subnet. </P><P></P><P>All other user vlans will be created into corresponding distribution switches. </P><P></P><P>in this scenario what should be the config in fwsm!!!!</P></BODY></HTML> Wed, 30 Jan 2008 13:03:41 GMT https://community.cisco.com/t5/network-security/fwsm-sample-config/m-p/845584#M955988 acharyr123 2008-01-30T13:03:41Z https://community.cisco.com/t5/network-security/fwsm-sample-config/m-p/845585#M955989 <HTML><HEAD></HEAD><BODY><P>see this##</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/intro_f.html" target="_blank">http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/intro_f.html</A></P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/switch_f.html" target="_blank">http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/switch_f.html</A></P><P></P></BODY></HTML> Mon, 04 Feb 2008 16:51:30 GMT https://community.cisco.com/t5/network-security/fwsm-sample-config/m-p/845585#M955989 ohanusi2000 2008-02-04T16:51:30Z