Restoring Single Context Mode; Managing Memory For Rules - Cisco 7604 Configuration Manual
Catalyst 6500 series switch and cisco 7600 series router firewall services module configuration guide using the cli
Hide thumbs
Also See for 7604:
- Configuration manual (1011 pages) ,
- Installation manual (324 pages) ,
- User manual (98 pages)
Table of Contents
Advertisement
Chapter 4
Configuring Security Contexts
When you convert from single mode to multiple mode, the FWSM converts the running configuration
into two files: a new startup configuration that comprises the system configuration, and admin.cfg that
comprises the admin context (in the root directory of the internal flash memory). The original running
configuration is saved as old_running.cfg (in the root directory of the internal flash memory). The
original startup configuration is not saved. The FWSM automatically adds an entry for the admin context
to the system configuration with the name "admin."
To enable multiple mode, enter the following command:
hostname(config)# mode multiple
You are prompted to reboot the FWSM.
Restoring Single Context Mode
If you convert from multiple mode to single mode, you might want to first copy a full startup
configuration (if available) to the FWSM; the system configuration inherited from multiple mode is not
a complete functioning configuration for a single mode device. For example, you can restore the old
single-mode running configuration, if available, as the startup configuration. Because the system
configuration does not have any network interfaces as part of its configuration, you must access the
FWSM from a switch session to perform the copy.
To copy the old running configuration to the startup configuration and to change the mode to single
mode, perform the following steps in the system execution space:
Step 1
To copy the backup version of your original running configuration to the current startup configuration,
enter the following command in the system execution space:
hostname(config)# copy old_running.cfg startup-config
To set the mode to single mode, enter the following command in the system execution space:
Step 2
hostname(config)# mode single
The FWSM reboots.
Managing Memory for Rules
The FWSM supports a fixed number of rules for the entire system. In multiple context mode, the FWSM
partitions the memory allocated to rule configuration, and assigns each context to a partition. This
section describes how rule allocation works and how to manage memory partitions; it includes the
following topics:
•
•
•
•
•
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide using ASDM
OL-20748-01
About Memory Partitions, page 4-12
Default Rule Allocation, page 4-12
Setting the Number of Memory Partitions, page 4-13
Changing the Memory Partition Size, page 4-14
Reallocating Rules Between Features for a Specific Memory Partition, page 4-19
Managing Memory for Rules
4-11
- Quick Links:
- C H a P T E...
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
