Multiple context mode does not support dynamic routing protocols, VPN.
Steps
- Covert system to multiple mode
- Copies previous running-config is saved to flash as "old_running.cfg"
- A new context named as "admin" is created with the running config. Transparent to users and traffic flow as before.
- Then, create additional context
Each context has
- name of Context
- Allocation of resources
- Config URL
Commands to check
show mode
show context
show firewall
Configuration
mode multiple
Need to reboot firewall.
Use changeto context command to switch to the context. (use prompt hostname context)
ASA1# changeto context admin
ASA1/admin#
ASA1/admin# changeto context system or changeto system
ASA1#
Adding/deleting of a new context can be done in admin context (with admin role). We can assign a context admin role with the command - admin-context <context-name>
Remember to unshut the ports in admin context for other normal contexts.
No comments:
Post a Comment