Filter
Top Products
5-7
Cisco Content Services Switch Security Configuration Guide
OL-5650-02
Chapter 5 Configuring Firewall Load Balancing
Configuring FWLB
To stop advertising firewall routes, enter:
(config)# no ospf redistribute firewall
Configuring RIP to Advertise Firewall Routes
To advertise firewall routes from other protocols through RIP, use the rip
redistribute firewall command. You may also include an optional metric that the
CSS uses when advertising this route. Enter a number from 1 to 15. The default
is 1.
For example, to advertise a firewall route through RIP, enter:
(config)# rip redistribute firewall 3
Note By default, RIP advertises RIP routes and local routes for interfaces running RIP.
This command also advertises other routes.
To stop advertising firewall routes, enter:
(config)# no rip redistribute firewall
Example of FWLB Static Route Configuration
This section describes how to configure FWLB for two firewalls between two
CSSs. To configure a static route for FWLB, you must define the following
parameters for each path through the firewalls on both the local (client) and a
remote (server) CSSs:
• Firewall index (identifies the physical firewall), local firewall IP address,
remote firewall IP address, and CSS VLAN IP address. You must configure
the ip firewall command before you configure the static route or the CSS will
report an error.
• Static route each CSS will use for each firewall.