300-320 Question #551: Real Exam Question with Answer & Explanation

The correct answer is B: Multicontext. Multicontext mode is correct. On Cisco ASA and similar firewalls, multicontext mode allows a single physical firewall to be partitioned into multiple independent virtual firewall instances called 'security contexts.' Each context has its own ACLs, NAT rules, routing table, and ma

Question

An engineer has to deploy a firewall where the ACLs, NAT, and management are separated for his customers. Which mode do you need to run it in?

Options

ATransparent
BMulticontext
CRouted
DIPS

Explanation

Multicontext mode is correct. On Cisco ASA and similar firewalls, multicontext mode allows a single physical firewall to be partitioned into multiple independent virtual firewall instances called 'security contexts.' Each context has its own ACLs, NAT rules, routing table, and management interface, providing complete separation between customers on the same hardware. Routed mode and Transparent mode are firewall operational modes, not multi-tenancy modes. IPS is an intrusion prevention function, not a firewall deployment mode.

Community Discussion

No community discussion yet for this question.

Full 300-320 Practice