Example 5: Admin Context Configuration; Example 5: Customer A Context Configuration; Example 5: Customer B Context Configuration - Cisco Catalyst 6500 Series Configuration Manual
Catalyst 6500 series switch and
cisco 7600 series router firewall services
Hide thumbs
Also See for Catalyst 6500 Series:
- Software configuration manual (570 pages) ,
- Configuration note (212 pages) ,
- Installation manual (194 pages)
Table of Contents
Advertisement
Appendix B
Sample Configurations
Example 5: Admin Context Configuration
The host at 10.1.1.75 can access the context using SSH, which requires a certificate to be generated using
the ca generate rsa key modulus command and saved using the ca save all command. The certificate is
saved in Flash memory.
hostname Admin
domain isp
nameif vlan150 outside security0
nameif vlan4 inside security100
passwd secret1969
enable password h1andl0
ip address 10.1.1.1 255.255.255.0
route outside 0 0 10.1.1.2 1
ssh 10.1.1.75 255.255.255.255 inside
access-list INTERNET extended permit 89 any any
access-list INTERNET extended permit ip any any
access-list OSPF extended permit 89 any any
access-group INTERNET in interface inside [ Allows all inside hosts to access the outside
for any IP traffic. Also allows OSPF. ]
access-group OSPF in interface outside [ Allows OSPF. ]
Example 5: Customer A Context Configuration
nameif vlan151 outside security0
nameif vlan5 inside security100
passwd hell0!
enable password enter55
ip address 10.1.2.1 255.255.255.0
route outside 0 0 10.1.2.2 1
access-list INTERNET extended permit 89 any any
access-list INTERNET extended permit ip any any
access-list OSPF extended permit 89 any any
access-group INTERNET in interface inside [ Allows all inside hosts to access the outside
for any IP traffic. Also allows OSPF. ]
access-group OSPF in interface outside [ Allows OSPF. ]
Example 5: Customer B Context Configuration
nameif vlan152 outside security0
nameif vlan6 inside security100
passwd tenac10us
enable password defen$e
ip address 10.1.3.1 255.255.255.0
route outside 0 0 10.1.3.2 1
access-list INTERNET extended permit 89 any any
access-list INTERNET extended permit ip any any
access-list OSPF extended permit 89 any any
access-group INTERNET in interface inside [ Allows all inside hosts to access the outside
for any IP traffic. Also allows OSPF. ]
access-group OSPF in interface outside [ Allows OSPF. ]
OL-6392-01
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
Transparent Mode Examples
B-17
Advertisement
Table of Contents
Troubleshooting
