Cascading Security Contexts - Cisco ASA 5505 Configuration Manual
Asa 5500 series
Hide thumbs
Also See for ASA 5505:
- Getting started manual (168 pages) ,
- Administrator's manual (118 pages) ,
- Hardware installation manual (82 pages)
Table of Contents
Advertisement
Information About Security Contexts
For transparent firewalls, you must use unique interfaces.
inside network accessing the Internet. The classifier assigns the packet to Context B because the ingress
interface is Gigabit Ethernet 1/0.3, which is assigned to Context B.
Figure 6-3
Admin
Context
GE 1/0.1
Cascading Security Contexts
Placing a context directly in front of another context is called cascading contexts; the outside interface
of one context is the same interface as the inside interface of another context. You might want to cascade
contexts if you want to simplify the configuration of some contexts by configuring shared parameters in
the top context.
Cascading contexts requires that you configure unique MAC addresses for each context interface.
Note
Because of the limitations of classifying packets on shared interfaces without MAC addresses, we do not
recommend using cascading contexts without unique MAC addresses.
Cisco ASA 5500 Series Configuration Guide using ASDM
6-6
Transparent Firewall Contexts
Internet
Classifier
GE 0/0.2
GE 0/0.1
Context A
GE 1/0.2
Admin
Inside
Network
Customer A
Host
Host
10.1.1.13
10.1.2.13
Figure 6-3
GE 0/0.3
Context B
GE 1/0.3
Inside
Customer B
Host
10.1.3.13
Chapter 6
Configuring Multiple Context Mode
shows a host on the Context B
OL-20339-01
- Quick Links:
- Starting Asdm
- Downloading the Asdm Launcher
Hide quick links:
Advertisement
Chapters
Table of Contents
