I am very familiar with the PIX, but new to ASA5500's.
I have a company that is looking to have a DMZ with mail, and web servers. The connection to the Net is a T1.
In the PIX days, I have no choice but to use a 515 with DMZ.
My understanding now is that I can have this on an ASA5505 with the Security Plus option to have a DMZ.
1. Is this the right assumption that I can get an ASA5505 with Security Plus for a full DMZ?
2. How many DMZ interfaces? I really only need one and put a switch behind it
3. Does the ASA5505 allow VPN tunnels to be established to it, and also allow Internet access through the same interface? I know in the PIX, that was not allowed.