cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
340
Views
0
Helpful
4
Replies

ASA max internal users

Hi all,

anyone knows how's limit of the configurable internal users on an asa?

Is the nvram size the only limit or is there some other kind of limitation?

Tnx,

Max.

4 Replies 4

husycisco
Level 7
Level 7

Hi Max

You can run "sh ver" and see "Inside Hosts". Usually, it is "Unlimited" in most of license types. This is license limitations

As configuration limitations, It actually depends on your concurrent traffic between interfaces. More translation sessions, routing, more CPU and NVRAM utilization. There are no certain limitations.

Regards

Hi Huseyin,

I'm interested in configuration limitations, I can understand limitations due to nvram size, but I cannot understand limitations due to cpu utilitazion and active sessions.

What I exactly need to know is, provided that the nvram is big enought to host, lets say, 1000 vpn internal users on an Asa5010, is there any limitations other than the 250 max concurrent connections?

Exept for the exhaustion of the nvram, is there any other limit after that I simply cannot add any further user?

Tnx,

Max.

Hi Huseyin,

if you are referring to the detail about "ipsec vpn peers" I'm pretty sure it has to read as "concurrent ipsec connections" as it historically refers to the active isakmp sa's.

Are you aware of the fact that they may match also with the max users configurable on the internal database, that is the running config?

In other words, are you saying that in an asa5510 you can configure 250 internal users then the 250 + 1 is not allowed to be entered even if the nvram is used only for the half of its room?

Tnx,

Max.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: