2-6
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
OL-6392-01
Chapter 2 Configuring the Switch for the Firewall Services Module
Adding Switched Virtual Interfaces to the MSFC
SVI Overview
For security reasons, by default, only one SVI can exist between the MSFC and the FWSM. For example,
if you misconfigure the system with multiple SVIs, you could accidentally allow traffic to pass around
the FWSM by assigning both the inside and outside VLANs to the MSFC. (See Figure 2-1.)
Figure 2-1 Multiple SVI Misconfiguration
FWSM
MSFC
VLAN 200
VLAN 100
VLAN 201
VLAN 201
Internet
Switch
Inside
104665
To Next Page
Loading...
