Cisco ASA Multiple Context mode considerations
- No Comments
- Nov, 21, 2011
- Angelo Schalley
- Cisco, Networking, security
The Cisco ASA supports firewall Multiple Contexts, also called Firewall Multimode, but there are pros and cons to be considered before implementing this configuration.
Multiple Context Mode can be viewed as having multiple separate (virtual) firewalls on the same hardware. Each context is its own security entity with its own security policy and interfaces. While most features are supported while using Multiple Contexts, some are not.
Read more on Cisco ASA Multiple Context mode considerations…
Cisco Etherchannel: PAgP and LACP
- No Comments
- May, 05, 2011
- Angelo Schalley
- Cisco, Networking
- Can bundle up to 8 interfaces to a port-channel.
- Maximum number of port-channels in C3560 can be 48.
- In Layer-2 port, configuring “channel-group” automatically configures “int po x” logical interface.
- With Layer-3 port, manually configure “int po x” and then “no switchport”. Then assign this port-channel to physical interface with “channel-group” command.
Port Aggregation Protocol (PAgP):
Read more on Cisco Etherchannel: PAgP and LACP…
Unicast vs Broadcast vs Multicast
- No Comments
- Feb, 05, 2011
- Angelo Schalley
- Cisco, Networking
Unicast
Unicast packets are sent from host to host. The communication is from a single host to another single host. There is one device transmitting a message destined for one reciever.
Broadcast
Broadcast is when a single device is transmitting a message to all other devices in a given address range. This broadcast could reach all hosts on the subnet, all subnets, or all hosts on all subnets. Broadcast packets have the host (and/or subnet) portion of the address set to all ones. By design, most modern routers will block IP broadcast traffic and restrict it to the local subnet.
Read more on Unicast vs Broadcast vs Multicast…