Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
505
Views
1
Helpful
6
Replies

Can ASA operates Multiple context mode?

sir_yrwins
Level 1
Level 1

‎02-23-2024 01:18 PM

Can CISCO ASA operates in Multiple Context Mode? 

I know route and transparent mode can be operates. but what about Multiple mode ?

 

6 Replies 6

balaji.bandi
Hall of Fame
Hall of Fame

‎02-23-2024 03:50 PM

you mean both transparent and route in context mode :

look below guide lines :

https://www.cisco.com/c/en/us/td/docs/security/asa/asa918/asdm718/general/asdm-718-general-config/interface-routed-tfw.html#ID-2214-00000004

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎02-23-2024 11:30 PM - edited ‎02-23-2024 11:34 PM

Hello @sir_yrwins ,

you need a specific license if you want to run more then 4-5 contexts . You can have some contexts in routed mode and a few in transparent mode with specific limitations.

Hope to help

Giuseppe

 

0 Helpful

paul driver
VIP
VIP

‎02-24-2024 02:47 AM

Hello
FYI-
ASA supports Single or Multiple mode as you are aware

  • In single mode you cannot create virtual firewalls.
  • In multiple mode you can create virtual firewalls.
  • Each virtual firewall is called a context.
  • Number of context that you can create depends on the license ( as stated by @Giuseppe Larosa )
  • By default there are two built


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Ruben Cocheno
Spotlight
Spotlight

‎02-24-2024 02:32 PM - edited ‎02-24-2024 02:33 PM

@sir_yrwins 

Let's say that you have 2 Firewall contexts (CTX1 and CTX2), and you must have 2 contexts by default as parf of the base license.

CTX1 - Transparent Mode
CTX2 - Routed Mode

ASA1 to be active for CTX1 and standby for CTX2

ASA2 to be Standby for CTX1 and active for CTX2

OR

ASA1 to be active for CTX1 and standby for CTX2

ASA2 to be Standby for CTX1 and Active for CTX2

Convert ASA to multicontext

CiscoASA(config)# mode multiple
WARNING: This command will change the behavior of the device
WARNING: This command will initiate a Reboot
Proceed with change mode? [confirm]
Convert the system configuration? [confirm]
The old running configuration file will be written to flash

Converting the configuration - this may take several minutes for a large configuration

The admin context configuration will be written to flash

The new running configuration file was written to flash
Security context mode: multiple
CiscoASA(config)#

 

Tag me to follow up.
Please mark it as Helpful and/or Solution Accepted if that is the case. Thanks for making Engineering easy again.
Connect with me for more on Linkedin https://www.linkedin.com/in/rubencocheno/
0 Helpful

johnlloyd_13
Level 9
Level 9

‎02-25-2024 03:17 PM

hi,

yes, the ASA can operate in multiple mode. issue a 'show mode' to confirm.

ASA comes with 2 security context by default and you'll need to buy a license if you'll need more.

issue a 'show version' to check the available context count.

use the 'mode multiple' in global config mode and it will ask to reboot to take effect.

all existing config will go to the 'admin' context.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card