Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide, 2.2
About This Guide
Downloads: This chapterpdf (PDF - 167.0KB) The complete bookPDF (PDF - 4.2MB) | Feedback

About This Guide

Table Of Contents

About This Guide

Document Objectives

Audience

Related Documentation

Document Organization

Document Conventions

Obtaining Documentation and Submitting a Service Request


About This Guide


This guide contains the following sections:

Document Objectives

Audience

Related Documentation

Document Organization

Document Conventions

Obtaining Documentation and Submitting a Service Request

Document Objectives

The purpose of this guide is to help you configure the Firewall Services Module (FWSM) for the most common scenarios using the command line interface. It does not cover every feature, but describes those tasks most commonly required for configuration.

Audience

This guide is for network managers who perform any of the following tasks:

Managing network security

Installing and configuring firewalls

Managing default and static routes, and TCP and UDP services

Related Documentation

For more information, refer to the following documentation set for the FWSM:

Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Command Reference

Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module System Messages Guide

Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Installation Note

Release Notes for the Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module

Document Organization

This guide includes the following chapters and appendixes:

"Quick Start Steps" provides pointers to the minimum configuration required for routed or transparent mode.

Chapter 1 "Introduction to the Firewall Services Module," describes the system requirements and features.

Chapter 2 "Configuring the Switch for the Firewall Services Module," tells how to configure the switch for use with the FWSM.

Chapter 3 "Connecting to the Firewall Services Module and Managing the Configuration," tells how to access the FWSM command line interface (CLI) and manage the configuration.

Chapter 4 "Configuring the Firewall Mode," tells how to set the firewall mode.

Chapter 5 "Managing Security Contexts," tells how to configure multiple security contexts.

Chapter 6 "Configuring Basic Settings," tells how to configure basic settings that are either essential or useful to the operation of your FWSM.

Chapter 7 "Configuring Bridging Parameters and ARP Inspection," tells how to customize the operation of the transparent firewall.

Chapter 8 "Configuring IP Addresses, Routing, and DHCP," tells how to configure IP addresses, static routes, dynamic routing, and DHCP.

Chapter 9 "Configuring Network Address Translation," tells how to configure Network Address Translation (NAT).

Chapter 10 "Controlling Network Access with Access Control Lists," tells how to control network access through the FWSM using access control lists (ACLs).

Chapter 11 "Allowing Remote Management," tells how to allow remote management access to the FWSM.

Chapter 12 "Configuring AAA," tells how to configure AAA, which includes command authorization, CLI access authentication, and AAA for traffic through the FWSM.

Chapter 13 "Configuring Application Protocol Inspection," tells how to configure inspection engines.

Chapter 14 "Filtering HTTP, HTTPS, or FTP Requests Using an External Server," tells how to configure filtering.

Chapter 15 "Using Failover," tells how to configure a primary and secondary FWSM for redundancy.

Chapter 16 "Managing Software and Configuration Files," tells how to upgrade or reinstall FWSM software.

Chapter 17 "Monitoring and Troubleshooting the Firewall Services Module," tells how to monitor and troubleshoot the FWSM. See the Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module System Messages Guide for detailed information about system logging.

"Specifications," lists the specifications for the FWSM.

"Sample Configurations," shows some common scenarios and the configurations that support them.

"Understanding the Command-Line Interface," describes the CLI.

"Addresses, Protocols, and Ports Reference," provides reference information, including lists of TCP, UDP, and ICMP port types, and common subnet masks.

"Acronyms and Abbreviations," lists acronyms and abbreviations used in this guide.

Index provides easy access to topics within the guide.

Document Conventions

This guide uses the following conventions:


Note Means reader take note. Notes contain helpful suggestions or references to material not covered in the manual.


Syntax formatting is described in the "Syntax Formatting" section.

Obtaining Documentation and Submitting a Service Request

For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:

http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html

Subscribe to the What's New in Cisco Product Documentation as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS Version 2.0.