Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I'm deploying a CSM in bridge mode that will be used in conjunction with a FWSM that acts as the gateway for each server farm. From Cisco's CSM & FWSM design guide they state, "The most important point is that by specifying the incoming VLAN in the ...
I got this info from the Q&A section on the SSL Module:Q. Is the SSL module FIPS compliant?A. The module is not FIPS compliant, but Cisco plans FIPS Level 2 certification in the next release of the product.When is the next release of the product slat...
Getting ready to deploy FWSMs in our 6500s and had a question about running multiple contexts. I was thinking of running our public facing web/application servers in one context, and our financial & DB servers in another context. Seeing as I'll nee...
I've read the CSM guide and the doc on running the CSM & FSM in the same chassis, but I still have a few questions...I'm working on the configs for running a FSM and CSM in the same chassis (w/ redundant modules in a separate chassis) with the CSM in...
Not sure if this is possible, but I have an internal host that needs to be accessed from the outside and from my dmz. In both cases the traffic will be initiated from the other side, not the internal host. Is this possible? My config will look som...
Thanks for you input Gilles (and Jon for the questions I would have asked). Couple more questions for you if you don't mind...Can you elaborate on the concept of "create some vserver to catch the non-vip traffic and forward it to the firewall"?I'm n...
Thanks, that answered most of my questions! What about the alias addresses though? Do I not need an alias if I'm not invovling the MSFC and am only running the CSM in bridge mode?Thanks again,Eric
Gilles,The 127.0.0.51 & 61 addresses solved the problem. I also was able to upgrade via disk0: - not sure why I didn't see that option the first time around with "tftp-server ?"Thanks!Eric
Sorry for the dumb post - I just realized that there is a "bit rate" for monitoring interface utilization, and that byte counts is a cumulative counter. Amazing what a few hours of sleep will do for your troubleshooting...
