Peter, Even if you don't have overlapping subnets, but share the same interface between two contexts, you still need to follow the first (with different MAC addresses) or the second (with NAT configuration) rule of packet classification. ASA doesn't search routing tables inside the contexts, so if you don't use different MAC addresses, you'll have to use either static or global command to inform the ASA in which context you have your network.
During the exam you don't have to worry about that in Active/Active scenario, because in this case "mac-address auto" is enabled by default. In other scenarios I'd ask the proctor. Sometimes you can see some hints in the task like "you're not allowed to use 'mac-address auto' or configure static mac addresses" - then the solution is quite clear. Also, sometimes the answer is in another task, where they ask you to configure NAT inside the context - then you can suspect that you have to rely on NAT to classify the packet. All in all, I'd be very carefull with enabling 'mac address auto' during the exam. Marta Sokolowska. 2012/9/14 "Peter Jørgensen" <[email protected]> > Hi > > Have a doubt about this..... > > I know that the packet classification is done in the following order: > > 1. Classification based on destination MAC - require unique MAC on each > shared interface > 2. Classification based on destination IP and NAT > > If I have two context with a shared outside interface and Enables NAT > Control and doesn't use overlapping subnets - is it correct assumed that I > do not need to activate the "mac-address auto" or manual configure unique > MAC addresses of the physical interfaces - because NAT will classify > packets? > > I know that in real life - best practice is to always enable mac-address > auto when using shared interfaces - but what is right in LAB Exam??? > > /Peter >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
