EasyManuals Logo

Cisco Catalyst 6500 Series User Manual

Cisco Catalyst 6500 Series
392 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #95 background imageLoading...
Page #95 background image
5-21
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
OL-6392-01
Chapter 5 Managing Security Contexts
Configuring a Security Context
Note Enter the allocate-interface command(s) before you enter the config-url command. The FWSM must
assign VLAN interfaces to the context before it loads the context configuration; the context
configuration might include commands that refer to interfaces (nameif, nat, global...). If you enter the
config-url command first, the FWSM loads the context configuration immediately. If the context
contains any commands that refer to interfaces, those commands fail.
See the following URL syntax:
disk://[path/]filename
ftp://[user[:password]@]server/[path/]filename
tftp://server/[path/]filename
http://server/[path/]filename
https://server/[path/]filename
The FWSM can download a context from a TFTP or FTP server, HTTP or HTTPS server, or from the
local disk (called disk). The disk is a 64-MB partition of Flash that uses a navigable file system. The
disk partition is used only for context storage. The system configuration and the software image reside
in the Flash partition (called flash).
The server must be accessible from the admin context. The admin context file must be stored on the disk.
The filename does not require a file extension, although we recommend using “.cfg”.
If the system cannot retrieve the context configuration file because the server is unavailable, or the file
does not yet exist, the system creates a blank context that is ready for you to configure with the
command-line interface.
For example, enter the following command:
FWSM(config-context)# config-url ftp://joe:passw0rd1@10.1.1.1/configlets/test.cfg
Step 5 (Optional) To assign the context to a resource class, enter the following command:
FWSM(config-context)# member
class_name
If you do not specify a class, the context belongs to the default class. You can only assign a context to
one resource class.
For example, to assign the context to the gold class, enter the following command:
FWSM(config-context)# member gold
See the following sample context configurations:
FWSM(config)# context administrator
FWSM(config-context)# allocate-interface vlan10
FWSM(config-context)# allocate-interface vlan11
FWSM(config-context)# config-url disk://admin.cfg
FWSM(config-context)# context test
FWSM(config-context)# allocate-interface vlan100 int1
FWSM(config-context)# allocate-interface vlan200 int2
FWSM(config-context)# allocate-interface vlan300-vlan305 int3-int8
FWSM(config-context)# config-url ftp://joe:passw0rd@10.1.1.1/configlets/test.cfg
FWSM(config-context)# member gold
FWSM(config-context)# context sample
FWSM(config-context)# allocate-interface vlan101 int1
FWSM(config-context)# allocate-interface vlan201 int2
FWSM(config-context)# allocate-interface vlan306-vlan311 int3-int8

Table of Contents

Other manuals for Cisco Catalyst 6500 Series

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco Catalyst 6500 Series and is the answer not in the manual?

Cisco Catalyst 6500 Series Specifications

General IconGeneral
BrandCisco
ModelCatalyst 6500 Series
CategorySwitch
LanguageEnglish

Related product manuals