Management Interface Each Context

fatalXerror · ‎01-13-2020

Hi Guys,

I have ASA5516X that will run in multiple context and one management VLAN. Is it possible to assign the management interface to difference context so that each context's mgmt traffic will pass through that?

Thanks

Mark Malone · ‎01-13-2020

Hi
the mgmt int when multiple contexts are in use is assigned to the admin context , i have never seen an option to move it as you need to control the other contexts from the admin context

After you are in multiple contextmode, connect to the system or the admin context to access the system configuration.You cannot configure the system from a non-admin context.By default,after you enable multiple context mode, you can connect to the admin context by using the default management IP address.

Sheraz.Salim · ‎01-13-2020

as @Mark Malone is right. however, if you have a requirement what you can do is to create a sub interface (ASA does not allow management interface to create a sub-interface) if you have any other spare gig port left you can create a sub-interface (this also require some config work at switch side). than go to each context and allocate it.

for example.

ASA-1

!

interface gig0/7

no shut

!

interface gig0/7.10

vlan 10

!

interface gig0/7.20

vlan 20

!

context Alpha

allocate-interface gig0/7.10

config-url disk0:/Alpha.cfg

!

context Beta

allocate-interface gig0/7.20

config-url disk0:/Beta.cfg

!

changeto context Aplha

!

interface gig0/7.10

nameif mgmt

security-level 100

ip address x.x.x.x.

!

changeto context Beta

!

interface gig0/7.20

nameif mgmt

security-level 100

ip address x.x.x.x.

!

please do not forget to rate.