Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
268
Views
0
Helpful
1
Replies

FWSM: Shared inside Security Context

egerritsen
Level 1
Level 1

‎07-19-2004 06:29 AM - edited ‎03-09-2019 08:06 AM

Hello,

I need some help configuring a shared security context on the fwsm.

config 6509:

firewall module 9 vlan-group 100,999

firewall vlan-group 100 100-113

firewall vlan-group 999 998,999

int vlan 100

ip address 172.31.0.10 255.255.255.0

standby 1 ip 172.31.0.1

standby 1 timers 1 5

standby 1 priority 200

standby 1 preempt

The Admin context config:

nameif vlan 100 inside security100

nameif vlan 101 outside security0

ip address inside 172.31.0.254 255.255.255.0 standby 172.31.0.254

ip address outside <outside1> ......

With the correct translation and access rules it´s possible to access the internet.

But when i configure the test context with the inside ip address 172.31.0.250 , it´s not possible to access the internet through the admin context.

How can i share the inside vlan 100 between multiple contexts ?

Labels:
0 Helpful
1 Reply 1

nkhawaja
Cisco Employee
Cisco Employee

‎07-19-2004 09:06 AM

Hi,

Could you please share the system context config? Do you mean, from Test context, you cant access the internet? is it going through the admin context? why would it go through the admin context though?

did you check these links

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/mod_icn/fwsm/fwsm_2_2/fwsm_cfg/examples.htm#wp1045874

http://www.cisco.com/en/US/products/hw/switches/ps708/products_module_configuration_guide_chapter09186a00802012c5.html#wp1036615

go throug the limitations section as well.

Thanks

Nadeem

0 Helpful
Customers Also Viewed These Support Documents