Cisco Systems ASA 5580 Manual De Usuario

The following example assigns sensor1 and sensor2 to context A, and sensor1 and sensor3 to context B. 
Both contexts map the sensor names to “ips1” and “ips2.” In context A, sensor1 is set as the default 
sensor, but in context B, no default is set so the default that is configured on the ASA IPS module is used.

ciscoasa(config-ctx)# context A

ciscoasa(config-ctx)# allocate-interface gigabitethernet0/0.100 int1

ciscoasa(config-ctx)# allocate-interface gigabitethernet0/0.102 int2

ciscoasa(config-ctx)# allocate-interface gigabitethernet0/0.110-gigabitethernet0/0.115 

ciscoasa(config-ctx)# allocate-ips sensor1 ips1 default

ciscoasa(config-ctx)# allocate-ips sensor2 ips2

ciscoasa(config-ctx)# config-url ftp://user1:passw0rd@10.1.1.1/configlets/test.cfg

ciscoasa(config-ctx)# member gold

ciscoasa(config-ctx)# context sample

ciscoasa(config-ctx)# allocate-interface gigabitethernet0/1.200 int1

ciscoasa(config-ctx)# allocate-interface gigabitethernet0/1.212 int2

ciscoasa(config-ctx)# allocate-interface gigabitethernet0/1.230-gigabitethernet0/1.235 

ciscoasa(config-ctx)# allocate-ips sensor1 ips1

ciscoasa(config-ctx)# allocate-ips sensor3 ips2

ciscoasa(config-ctx)# config-url ftp://user1:passw0rd@10.1.1.1/configlets/sample.cfg

ciscoasa(config-ctx)# member silver

ciscoasa(config-ctx)# changeto context A

...

Change to each context to configure the IPS security policy as described in 

.

This section identifies traffic to divert from the ASA to the ASA IPS module. 

In multiple context mode, perform these steps in each context execution space. To change to a context, 
enter the changeto context context_name command.