Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Command Reference, 2.3
Chapter 1 Using Firewall Services Module Commands
Downloads: This chapterpdf (PDF - 172.0KB) The complete bookPDF (PDF - 6.82MB) | Feedback

Using Firewall Services Module Commands

Table Of Contents

Using Firewall Services Module Commands

Using the FWSM Commands

Command Modes


Using Firewall Services Module Commands


This chapter describes how to use the Firewall Services Module (FWSM) commands and contains the following sections:

Using the FWSM Commands

Command Modes

For the definitions of terms and acronyms that are used in this publication, see Appendix A, "Acronyms and Abbreviations."

Using the FWSM Commands

You will use these FWSM commands for basic tasks:

Command
Task

copy running-config

Copies the running configuration from memory. This command is equivalent to the write memory command.

copy startup-config

Copies the startup configuration from the flash memory. This command is equivalent to the write memory command.

write memory

Saving the configuration.

write terminal

Viewing the configuration.

logging buffered debugging

Accumulating system log (syslog) messages.

show logging

Viewing system log (syslog) messages.

clear logging

Clearing the message buffer.


The FWSM command-line interface (CLI) allows you to do these tasks:

Check the syntax before entering a command.

Enter a command and press the Enter key to view a quick summary, or precede a command with the help command (for example, you can use help aaa).

Abbreviate commands.

You can use the config t command to start configuration mode, the write t command to list the configuration, and the write m command to write to Flash memory. In most commands, you can abbreviate the show command as sh. This feature is called command completion.

Make the IP addresses available for access.

After changing or removing the alias, access-list, global, nat, outbound, and static commands, enter the clear xlate command.

Review possible port and protocol numbers at the following Internet Assigned Numbers Authority (IANA) websites:

http://www.iana.org/assignments/port-numbers
http://www.iana.org/assignments/protocol-numbers

Create your configuration in a text editor and then cut and paste it into the configuration.

You can paste in a line at a time or the whole configuration. Always check your configuration after pasting large blocks of text to be sure that all of the text was copied.

For information about how to build your FWSM configuration, refer to the Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Installation and Configuration Note.

Syslog messages are described in the Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module System Messages Guide.

For information about how to use PDM 4.0 for the FWSM, refer to the online Help included in the PDM software (accessed through the PDM application Help button).

FWSM technical documentation is located at this URL:

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/fwsm/

Command Modes

The FWSM contains a command set that is based on Cisco IOS technologies and provides configurable command privilege modes that are based on the following command modes:

Unprivileged mode

Unprivileged mode allows you to see the FWSM settings. The unprivileged mode prompt appears as follows when you first access the FWSM:

FWSM>

Privileged mode

Privileged mode allows you to change current settings. Any unprivileged mode command will work in privileged mode. Enter the enable command to start the privileged mode from unprivileged mode as follows:

FWSM> enable
Password:
fwsm#

The "#" prompt is displayed.

Enter the exit or quit commands to exit privileged mode and return to unprivileged mode as follows:

fwsm# exit

Logoff

Type help or '?' for a list of available commands.

Enter the disable command to exit privileged mode and return to unprivileged mode as follows:

fwsm# disable
fwsm> 

Configuration mode

Configuration mode allows you to change the FWSM configuration. All privileged, unprivileged, and configuration commands are available in this mode. Enter the configure terminal command to start the configuration mode as follows:

fwsm# configure terminal
fwsm(config)# 

Enter the exit or quit commands to exit configuration mode and return to privileged mode as follows:

fwsm(config)# quit
fwsm#

Enter the disable command to exit configuration mode and return to unprivileged mode as follows:

fwsm(config)# disable
fwsm> 

Subconfiguration modes

When you are in context subconfiguration mode, the prompt changes as follows:

fwsm(config-context)#

When you are in class subconfiguration mode, the prompt changes as follows:

fwsm(config-class)#

When you change to a context, the prompt changes as follows:

fwsm/context_name#

When you are in context configuration mode, the prompt changes as follows:

fwsm/context_name(config)#