Unanswered Question
Jul 15th, 2008
User Badges:

Hi, I have installed ASA 5505 and the ISP link is 1 MB now I want to know how much speed I must recieve in the term of downloading. The ratio of link is 1:1 and which formula do we use to calculte. Thanks Vinay Gupta.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
nikuhappy2010 Tue, 07/15/2008 - 09:44
User Badges:

Thanks, this informaion is valuable. I have installed ASA 5505 and two or three inside users are using P2p software to downloading the softwares and all bandthwidth gets consumed by P2p softwares due to which the other users effect. I thought by using ASA by default p2p traffic will be block but it's not blocked. I know that we can block the P2p traffic by using MFP but as I read about Protocol section in Snpa that it blocks the traffic from outside port based if protocol is fixed then it allow it. Please advice. Thanks.

nikuhappy2010 Tue, 07/15/2008 - 10:34
User Badges:

By default, the P2p Protocol is remained fixed on ASA like FTP, HTTP.

dhananjoy chowdhury Tue, 07/15/2008 - 10:37
User Badges:
  • Silver, 250 points or more

But there are limitations to ASA, it may not block all types of P2P softwares available today.

For this you might have to go for the cisco CSC-SSM module or filtering with Websense.

Please rate if helpfull.

nikuhappy2010 Tue, 07/15/2008 - 10:53
User Badges:

I am using ASA 5505 and i think the CSC-SSM module in not included in ASA 5505. Is it right? And If i use the other ASA FW like 5520 or higher version then will it block all P2p traffic by default.

And my question was that by default in ASA, if one inside machine want to access the any FTP site then it will send the request f 21 port and by default the inside (100) will allow to send the request and when the packet comes from the outside FTP server and it will have the other port and by default the ASA will drop that session and to resolve this issue we fix the protocol to allow all sesion by outside interface. Now in the case of P2p, the same thing happens as above mentioned details so if the P2p protocol is not fixed in the ASA then why the inside users are able to access the P2p network, it must be block. Please respond ur feedback. Thanks


This Discussion