Version 4.1 - 5.12 Cisco Catalyst 6500 Series ASA Services Modules
This section shouldn't be too lengthy. If you have experience with 6500s in general and FWSMs in particular - this is just the newest ASA module. [Link points to Q&A for the module.]
Items of note:
Any Cisco Catalyst 6500-E Series chassis can support the ASA Services Module.
The ASA Services Module only includes logical interfaces, which are located within the switch itself. The console port is virtual and accessible directly through the switch.
You will need to be running Cisco IOS Software Release 12.2(33)SXJ or later to work with the ASA Services Module.
The ASA Services Module does not require a specific slot in the Cisco Catalyst 6500 Series chassis.
A migration tool is provided on Cisco.com to migrate a Firewall Services Module configuration to an ASA Services Module configuration. Keep in mind that the ASA Services Module configuration will look much different than the Firewall Services Module configuration, including significant changes to the NAT and ACL configurations. The switch-side configuration in Cisco IOS Software is the same for the Firewall Services Module and the ASA Services Module.
You may also want to check out the Quick Start Guide.
Assign VLANs to the ASA Services Module
Procedure
++ Step 1 At the switch CLI, assign VLANs to a firewall group:
firewall vlan-group firewall_group_num vlan_range
Example:
Router(config)# firewall vlan-group 50 55-57
Router(config)# firewall vlan-group 51 58-63
Router(config)# firewall vlan-group 52 64,66-74
++ Step 2 Assign the firewall groups to the ASASM:
firewall [switch {1 |2}] module module_number vlan-group firewall_group_num
Example:
Router(config)# firewall module 5 vlan-group 50,52
Router(config)# firewall module 8 vlan-group 51,52
If you want to use the MSFC as a directly-connected router (for example, as the default gateway connected to the ASASM outside interface), then add an ASASM VLAN interface to the MSFC as a switched virtual interface (SVI).
Connect to the ASASM:
service-module session [switch {1 |2}] slot number
Example:
Router# service-module session slot 4
ciscoasa>
To return to the switch CLI, type:
Ctrl-Shift-6, x
You return to the switch prompt.
You will probably want to review the guidelines at the bottom of that page. With the amount of questions you can fit into Section 5 and the major topics that it covers, questions on this section will probably be few (if any). I would think that these questions would focus on this being a module in a 6500 rather than anything else.