Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Management Interface in Multi-context mode

On an ASA5580 using 8.0(4). I want to make sure that each context is able to generate syslogs and traps sent over the management interface. I know that 'logging device-id context-name' will label the log messages with the context name but is it necessary to allocate the management interface to each context?

4 REPLIES

Re: Management Interface in Multi-context mode

Each context has its own IP connectivity except the system context. The system context borrows the IP connectivity from the admin context. Logging in independent in each context.

Regards

Farrukh

New Member

Re: Management Interface in Multi-context mode

So you mean yes, it is necessary to allocate the management interface to the contexts other than the system context?

Re: Management Interface in Multi-context mode

What I mean is that each context is a separate firewall and it has its own logging buffer. If you want to log all you have to configure logging on each context. You can use any interface to send out this logging information based on your routing, using the mangement interface is not necessary but better for security (separate out of management zone). This is specially true for syslog as its clear text. Newer ASA code supports secure logging as well.

Regards

Farrukh

New Member

Re: Management Interface in Multi-context mode

So you mean yes, it is necessary to allocate the management interface to the contexts other than the system context?

308
Views
0
Helpful
4
Replies
CreatePlease login to create content