Table Of Contents
Using Firewall Services Module Commands
Using Firewall Services Module Commands
This chapter describes how to use the Firewall Services Module (FWSM) commands and contains the following sections:
For the definitions of terms and acronyms that are used in this publication, see "Acronyms and Abbreviations."
Using the FWSM Commands
You will use these FWSM commands for basic tasks:
The FWSM command-line interface (CLI) allows you to do these tasks:
•
Check the syntax before entering a command.
Enter a command and press the Enter key to view a quick summary, or precede a command with the help command (for example you can use help aaa).
•
You can use the config t command to start configuration mode, the write t command to list the configuration, and the write m command to write to Flash memory. In most commands, you can abbreviate the show command as sh. This feature is called command completion.
•
After changing or removing the alias, access-list, global, nat, outbound, and static commands, enter the clear xlate command.
•
http://www.iana.org/assignments/port-numbers
http://www.iana.org/assignments/protocol-numbers•
You can paste in a line at a time or the whole configuration. Always check your configuration after pasting large blocks of text to be sure that all of the text was copied.
For information about how to build your FWSM configuration, refer to the Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Installation and Configuration Note.
Syslog messages are described in the Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module System Messages Guide.
For information about how to use PDM 4.0 for the FWSM, refer to the online Help included in the PDM software (accessed through the PDM application Help button).
FWSM technical documentation is located at this URL:
http://www.cisco.com/univercd/cc/td/doc/product/iaabu/fwsm/
Command Modes
The FWSM contains a command set that is based on Cisco IOS technologies and provides configurable command privilege modes that are based on the following command modes:
•
Unprivileged mode allows you to see the FWSM settings. The unprivileged mode prompt appears as follows when you first access the FWSM:
FWSM>•
Privileged mode allows you to change current settings. Any unprivileged mode command will work in privileged mode. Enter the enable command to start the privileged mode from unprivileged mode as follows:
FWSM> enablePassword:fwsm#The "#" prompt is displayed.
Enter the exit or quit commands to exit privileged mode and return to unprivileged mode as follows:
fwsm# exitLogoffType help or '?' for a list of available commands.Enter the disable command to exit privileged mode and return to unprivileged mode as follows:
fwsm# disablefwsm>•
Configuration mode allows you to change the FWSM configuration. All privileged, unprivileged, and configuration commands are available in this mode. Enter the configure terminal command to start the configuration mode as follows:
fwsm# configure terminalfwsm(config)#Enter the exit or quit commands to exit configuration mode and return to privileged mode as follows:
fwsm(config)# quitfwsm#Enter the disable command to exit configuration mode and return to unprivileged mode as follows:
fwsm(config)# disablefwsm>•
When you are in context subconfiguration mode, the prompt changes as follows:
fwsm(config-context)#When you are in class subconfiguration mode, the prompt changes as follows:
fwsm(config-class)#When you change to a context, the prompt changes as follows:
fwsm/context_name#When you are in context configuration mode, the prompt changes as follows:
fwsm/context_name(config)#