B-8
Cisco Security Appliance Command Line Configuration Guide
OL-10088-01
Appendix B Sample Configurations
Example 3: Shared Resources for Multiple Contexts
! System messages are sent to the syslog server on the DMZ network
logging host dmz 192.168.2.2
logging enable
Example 3: Shared Resources for Multiple Contexts
This configuration includes multiple contexts for multiple departments within a company. Each
department has its own security context so that each department can have its own security policy.
However, the syslog, mail, and AAA servers are shared across all departments. These servers are placed
on a shared interface (see Figure B-3).
Department 1 has a web server that outside users who are authenticated by the AAA server can access.
Figure B-3 Example 3
See the following sections for the configurations for this scenario:
• Example 3: System Configuration, page B-9
• Example 3: Admin Context Configuration, page B-9
Shared
Network
Admin
Context
Department 1
Department 2
Mail Server
10.1.1.7
Syslog Server
10.1.1.8
Inside
10.1.0.1
Inside
10.1.2.1
Shared
10.1.1.1
Shared
10.1.1.2
Shared
10.1.1.3
Outside
209.165.201.3
Outside
209.165.201.4
Outside
209.165.201.5
209.165.201.2
Inside
10.1.3.1
Admin Host
10.1.0.15
Internet
Inside
AAA Server
10.1.1.6
Web Server
10.1.2.3
Config Server
10.1.0.16
126980
To Next Page
Loading...
