Enabling Multiple Context Mode; Restoring Single Context Mode; Configuring Resource Management - Cisco Catalyst 6500 Series Configuration Manual
Catalyst 6500 series switch and
cisco 7600 series router firewall services
Hide thumbs
Also See for Catalyst 6500 Series:
- Software configuration manual (570 pages) ,
- Configuration note (212 pages) ,
- Installation manual (194 pages)
Table of Contents
Advertisement
Chapter 5
Managing Security Contexts
Enabling Multiple Context Mode
The context mode (single or multiple) is not stored in the configuration file, even though it does endure
reboots. If you need to copy your configuration to another device, you will need to reenter this command
on the new device.
When you convert from single mode to multiple mode, the FWSM converts the running configuration
into two files: a new startup.cfg (in Flash) that comprises the system configuration, and admin.cfg (in
the disk partition) that comprises the admin context. The original running configuration is saved as
old_running.cfg (in disk). The original startup configuration is not saved. The FWSM automatically
adds an entry for the admin context to the system configuration with the name "admin."
To enable multiple mode, enter the following command:
FWSM(config)# mode multiple
You are prompted to reboot the FWSM.
Restoring Single Context Mode
If you convert from multiple mode to single mode, the startup configuration is not automatically
converted back to the original running configuration. You must copy the backup version of the original
running configuration to the current startup configuration. (If you do not have the original configuration,
you can start over at the command line.) Because the system configuration does not have any network
interfaces as part of its configuration, you must session into the FWSM from the switch to perform the
copy (see the
To copy the old running configuration to the startup configuration and to change the mode to single
mode, enter these commands in the system execution space:
To copy the backup version of your original running configuration to the current startup configuration,
Step 1
enter the following command in the system execution space:
FWSM(config)# copy disk:old_running.cfg startup-config
To set the mode to single mode, enter the following command in the system execution space:
Step 2
FWSM(config)# mode single
The FWSM reboots.
Configuring Resource Management
By default, all security contexts have unlimited access to the resources of the FWSM, except where
maximum limits per context are enforced. However, if you find that one or more contexts use too many
resources, and they cause other contexts to be denied connections, for example, then you can configure
resource management to limit the use of resources per context.
OL-6392-01
"Sessioning and Logging into the Firewall Services Module" section on page
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
Configuring Resource Management
3-1).
5-11
Advertisement
Table of Contents
Troubleshooting
