B-8
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
OL-6392-01
Appendix B Sample Configurations
Routed Mode Examples
Example 3: Shared Resources for Multiple Contexts
This configuration includes multiple contexts for multiple departments within a company. Each
department has its own security context so that each department can have its own security policy.
However, the syslog, mail, and AAA servers are shared across all departments. These servers are placed
on a shared VLAN (See Figure B-3.)
Department 1 has a web server that outside users who are authenticated by the AAA server can access.
Figure B-3 Example 3
See the following sections for the configurations for this scenario:
• Example 3: System Configuration, page B-9
• Example 3: Admin Context Configuration, page B-9
• Example 3: Department 1 Context Configuration, page B-10
• Example 3: Department 2 Context Configuration, page B-11
• Example 3: Switch Configuration, page B-11
Shared
Network
Admin
Context
Department 1
Department 2
VLAN 203
VLAN 202
VLAN 300
VLAN 300
VLAN 300
Mail Server
10.1.1.7
Syslog Server
10.1.1.8
VLAN 201
Inside
10.1.0.1
Inside
10.1.2.1
Shared
10.1.1.1
Shared
10.1.1.2
Shared
10.1.1.3
Outside
209.165.201.3
Outside
209.165.201.4
Outside
209.165.201.5
209.165.201.2
MSFC
Inside
10.1.3.1
Admin Host
10.1.0.15
VLAN 200
Internet
Inside
AAA Server
10.1.1.6
Web Server
10.1.2.3
Config Server
10.1.0.16
104647
To Next Page
Loading...
Need help?
General