Appendix B
Sample Configurations
Transparent Mode Examples
This section includes the following topics:
•
•
Example 5: Security Contexts With Outside Access
This configuration creates three security contexts plus the admin context. Each context allows OSPF
traffic to pass between the inside and outside routers (See
Inside hosts can access the Internet through the outside, but no outside hosts can access the inside.
The admin context allows SSH sessions to the FWSM from one host.
Each customer context belongs to a class that limits its resources (gold, silver, or bronze).
Although inside IP addresses can be the same across contexts, keeping them unique is easier to manage.
Figure B-5
Management host
OL-6392-01
Example 5: Security Contexts With Outside Access, page B-15
Example 6: Failover, page B-18
Example 5
VLAN 150
Admin Context
outside
10.1.1.1
inside
VLAN 4
10.1.1.3
10.1.1.75
192.168.1.1
Admin
Network 2
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
Internet
VLAN 151
customerA
customerB
outside
outside
10.1.2.1
10.1.3.1
inside
inside
VLAN 5
10.1.2.3
192.168.2.1
customerA
Network 2
Transparent Mode Examples
Figure
B-5.)
MSFC
10.1. n .2
VLAN 152
VLAN 153
customerC
outside
10.1.4.1
inside
VLAN 6
10.1.3.3
192.168.3.1
customerB
customerC
Network 2
Network 2
VLAN 7
10.1.4.3
192.168.4.1
B-15