The Cisco ASA 5505 is a full-featured firewall for small business, branch, and enterprise teleworker environments. Available models deliver the same proven level of security that protects the networks of some of the largest and most security-conscious companies in the world. All of these features and benefits add up to tremendous value in the Cisco ASA 5505 Adaptive Security Appliance. Cisco MultiScale ® performance, The ability to deliver multiple security services at scale. These firewalls are used and trusted by small and midsize businesses with one or a few locations.Įnterprise class security. You get all that and more with the Cisco ®ASA 5505 Adaptive Security Appliance Firewalls. Affordable pricing and the ability to scale as necessary are other important product benefits. An integrated solution that is easy to deploy and manage improves IT efficiency. If you exceed the maximum VPN sessions, you can overload the security appliance, so be sure to size your network appropriately.ĢThe concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with 1 host and 1 dynamic translation for every 4 connections.Your small offices or branch locations require the best network security available. (For 7.2(3) and above) Ethernet 0/0 and Ethernet 0/1 are used as Gigabit Ethernet interfaces.ġAlthough the maximum IPSec and WebVPN sessions add up to more than the maximum VPN sessions, the combined sessions should not exceed the VPN session limit.
(For 7.2(1)) 3 at 10/100 plus the Management interface for management traffic only
If you exceed the maximum VPN sessions, you can overload the security appliance, so be sure to size your network appropriately.ģThe concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with one host and one dynamic translation for every four connections. See the show local-host command to view host limits.ĢAlthough the maximum IPSec and WebVPN sessions add up to more than the maximum VPN sessions, the combined sessions should not exceed the VPN session limit. In transparent mode, the interface with the lowest number of hosts is counted towards the host limit. If there is no default route, hosts on all interfaces are counted toward the limit. The interface associated with the default route is considered to be the outside Internet interface. Hosts that initiate traffic between Business and Home are also not counted towards the limit. Note that even when the outside initiates a connection to the inside, outside hosts are not counted towards the limit only the inside hosts count. Table A- Adaptive Security Appliance License Featuresģ (2 regular zones and 1 restricted zone that can only communicate with 1 other zone)ġIn routed mode, hosts on the inside (Business and Home VLANs) count towards the limit when they communicate with the outside (Internet VLAN), including when the inside initiates a connection to the outside as well as when the outside initiates a connection to the inside. You can mix and match licenses, for example, the 10 security context license plus the Strong Encryption license or the 500 WebVPN license plus the GTP/GPRS license or all four licenses together. Note Items that are in italics are separate, optional licenses that you can replace the base license.
This software version supports the following platforms see the associated tables for the feature support for each model: VPN Specifications Supported Platforms and Feature Licenses.Supported Platforms and Feature Licenses.This appendix includes the following sections: This appendix describes the feature licenses and specifications. Configuring an External Server for Security Appliance User Authorization.Managing Software, Licenses, and Configurations.Configuring Tunnel Groups, Group Policies, and Users.Configuring ARP Inspection and Bridging Parameters.Applying Application Layer Protocol Inspection.Configuring AAA Servers and the Local Database.Configuring DHCP, DDNS, and WCCP Services.Configuring Ethernet Settings and Subinterfaces.