I recently posted a chalktalk article about ASA Firewall – Packet Classification in Multiple Contexts Mode... thought it might be useful to NW readers.
http://www.cisco.com/public/news_training/itsnews/tech/chalktalk/200804.html
Security Contexts Overview
Cisco ASA Firewall OS software version 7.0 introduced the capability of creating virtual partitions within a single physical firewall – also known as security contexts; which provides the function of a virtualized logical firewall within one physical firewall. Each virtualized context is an independent firewall and provides all the capabilities of a regular firewall such as address translations, routing protocols, protocol inspection, ACL, and so on. With the exception of dynamic routing protocols, VPN and Multicast; these features are not supported when using multiple contexts mode.
There are two ways to set up multiple security contexts:
Multiple contexts in Routed mode (supports Shared Interface)
Multiple contexts in Transparent mode (does not support Shared Interface)
For more details, read my article on cisco.com
http://www.cisco.com/public/news_training/itsnews/tech/chalktalk/200804.html
Regards,
Yusuf Bhaiji
Yusuf Bhaiji, CCIE #9305 (R&S and Security), is the program manager for the Cisco CCIE Security certification and CCIE Proctor in Cisco Dubai Lab. Yusuf is the author of Cisco Press titles CCIE Security Practice Labs and Network Security Technologies and Solutions, of which we have 15 copies to give away. Click for competition details, or take a sneak peek of a chapter from the book.
Read excerpts from an entire library of hot selling Cisco titles.
The opinions expressed in this Weblog are those of the writer and may not represent the opinions of Network World.
|
|
Post new comment