Hi Guys,I thought I'd pick your collective brains on an interesting little puzzle.I have a VRF running on a 6500 series switch. This currently has a static route pointing to a firewall (that will not participate in a dynamic routing protocol) to get ...
Hi,I have a FWSM set-up in multiple context mode. Management of the FWSM is purely through the admin context. The other contexts have no access (no routes) to the management LANs.I can get syslog etc from the admin context to my management servers no...
Hi Suresh,It may also depend on what device is at Hop 13. For example, certain firewalls may report a slow response time to ICMP, but perform much better when ICMP is passed through it. Reason being that the ICMP response processing is low priority c...
Hi Jarle,In short, with option 2, the transparent firewall needs to (somehow) have it's own independant route to the management network containing your syslog server.The firewalls effectively work independantly, so for management purposes imagine you...
Hi Jon,Thanks for your answer - this was the conclusion I was coming to but trying to avoid.To answer your questions, the management LAN is elsewhere, but is routed into a VRF on the MSFC, the Admin context only has an interface into the same VRF.Opt...
