ASA 5540 / 5510 threat-detection in multiple context mode
Hello, trying to find out, how to find a way to activate the basic threat-detection on a ASA 5540 model, since we switchted from single to multiple context mode.
Unfortionally the set up guide excludes this feature when the ASA is in the multiple context mode.
Original wording from the manual "Security Context Guidelines
â¢ Supported in single mode only. Multiple mode is not supported."
Since we need the multiple context to safe hardware resources, I am looking for a diffrent way to spot and maybe also prevent a scan or similar activities with this ASA.
We have been litte bit disapointed, since it is a great firewall, great performance but when we switched from single to multi context mode, some of the features we where using where no longer available. Maybe someone also has an explanation why this is...?
in the table you would clearly see (what you have already found) that it is not supported in multiple context mode.
The reason may be either software or hardware limitation or both. This may be beyond the scope of this forum. If you contact your local Cisco account team they may be able to share additonal information.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...