46-3
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter46 Configuring Bridging Policies on Firewall Devices
Bridging Support for FWSM 3.1
In Device view, select the device or security context, then select Tools > Device Properties. On
the General page, enter the new management IP address in the IP Address field. On the
Credentials tab, update the username and password fields with account credentials that can log
into the management interface. Security Manager will now use this address and user account for
subsequent deployments and device communication.
For more information, see Management IP Page, page 46-10.
Related Topics
Bridging Support for FWSM 3.1, page 46-3
Interfaces in Routed and Transparent Modes, page 45-4
Transparent Rules Page, page 22-3
Bridging Support for FWSM 3.1
Although FWSM 3.1 can support multiple L2 interface pairs, Security Manager lets you specify no more
than two L2 interfaces (a single interface pair), and one associated management IP address. That means
only one bridge group with two named interfaces associated is provisioned with a management IP
address. If the device configuration contains a maximum of one bridge group and two named interfaces,
it is valid for discovery. All other scenarios result in an error message and the commands are ignored
during discovery. Furthermore, discovery will not show any bridge-group information in Security
Manager, although the bridge-group commands will be generated during deployment. Bridge group 1
will be deployed and used in transparent rule policies if no bridge group exists in the device
configuration.
Related Topics
About Bridging on Firewall Devices, page46-1
ARP Table Page
Use the ARP Table page to add static ARP entries that map a MAC address to an IP address and
identifies the interface through which the host is reached.
Navigation Path
(Device view) Select Platform > Bridging > ARP Table from the Device Policy selector.
(Policy view) Select PIX/ASA/FWSM Platform > Bridging > ARP Table from the Policy Type
selector. Right-click ARP Table to create a policy, or select an existing policy from the Shared
Policy selector.
Related Topics
Add/Edit ARP Configuration Dialog Box, page 46-4
About Bridging on Firewall Devices, page46-1
ARP Inspection Page, page 46-5
MAC Address Table Page, page46-7
MAC Learning Page, page 46-8
Management IP Page, page 46-10