nerdexam
Exams300-320Questions#157
Cisco

300-320 · Question #157

300-320 Question #157: Real Exam Question with Answer & Explanation

The correct answer is A: virtual contexts. Virtual contexts (also called security contexts) allow a single physical Cisco ASA to be logically partitioned into multiple independent virtual firewalls, each with its own interfaces, routing tables, security policies, NAT rules, and administrator access. This directly solves t

Question

A customer with a single Cisco Adaptive Security Appliance wants to separate multiple segments of the e-commerce network to allow for different security policies. What firewall technology accommodates these design requirements?

Options

  • Avirtual contexts
  • Bprivate VLANs
  • Cadmission control
  • Dvirtual private network

Explanation

Virtual contexts (also called security contexts) allow a single physical Cisco ASA to be logically partitioned into multiple independent virtual firewalls, each with its own interfaces, routing tables, security policies, NAT rules, and administrator access. This directly solves the requirement of separating multiple network segments with different security policies on a single physical device. Private VLANs operate at Layer 2 to isolate hosts within a VLAN but do not provide independent firewall policy enforcement. Admission control and VPNs address different security concerns and do not fulfill the multi-policy segmentation requirement.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-320 Practice
A customer with a single Cisco Adaptive Security Appliance wants... | 300-320 Q#157 Answer | NerdExam