2-6
Cisco Security Appliance Command Line Configuration Guide
OL-12172-03
Chapter 2 Getting Started
Working with the Configuration
When you change modes, the security appliance clears the configuration because many commands are
not supported for both modes. If you already have a populated configuration, be sure to back up your
configuration before changing the mode; you can use this backup for reference when creating your new
configuration. See the
“Backing Up Configuration Files” section on page 41-8
. For multiple context
mode, the system configuration is erased. This action removes any contexts from running. If you then
re-add a context that has an existing configuration that was created for the wrong mode, the context
configuration will not work correctly. Be sure to recreate your context configurations for the correct
mode before you re-add them, or add new contexts with new paths for the new configurations.
If you download a text configuration to the security appliance that changes the mode with the
firewall transparent
command, be sure to put the command at the top of the configuration; the security
appliance changes the mode as soon as it reads the command and then continues reading the
configuration you downloaded. If the command is later in the configuration, the security appliance clears
all the preceding lines in the configuration. See the
“Downloading Software or Configuration Files to
Flash Memory” section on page 41-3
for information about downloading text files.
•
To set the mode to transparent, enter the following command in the system execution space:
hostname(config)#
firewall transparent
This command also appears in each context configuration for informational purposes only; you
cannot enter this command in a context.
•
To set the mode to routed, enter the following command in the system execution space:
hostname(config)#
no firewall transparent
Working with the Configuration
This section describes how to work with the configuration. The security appliance loads the
configuration from a text file, called the startup configuration. This file resides by default as a hidden
file in internal Flash memory. You can, however, specify a different path for the startup configuration.
(For more information, see
Chapter 41, “Managing Software, Licenses, and Configurations.”
)
When you enter a command, the change is made only to the running configuration in memory. You must
manually save the running configuration to the startup configuration for your changes to remain after a
reboot.
The information in this section applies to both single and multiple security contexts, except where noted.
Additional information about contexts is in
Chapter 3, “Enabling Multiple Context Mode.”
This section includes the following topics:
•
Saving Configuration Changes, page 2-6
•
Copying the Startup Configuration to the Running Configuration, page 2-8
•
Viewing the Configuration, page 2-8
•
Clearing and Removing Configuration Settings, page 2-9
•
Creating Text Configuration Files Offline, page 2-9
Saving Configuration Changes
This section describes how to save your configuration, and includes the following topics:
•
Saving Configuration Changes in Single Context Mode, page 2-7
Summary of Contents for 500 Series
Page 38: ...Contents xxxviii Cisco Security Appliance Command Line Configuration Guide OL 12172 03 ...
Page 45: ...P A R T 1 Getting Started and General Information ...
Page 46: ......
Page 277: ...P A R T 2 Configuring the Firewall ...
Page 278: ......
Page 561: ...P A R T 3 Configuring VPN ...
Page 562: ......
Page 891: ...P A R T 4 System Administration ...
Page 892: ......
Page 975: ...P A R T 5 Reference ...
Page 976: ......