cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
455
Views
0
Helpful
8
Replies

Question

nikuhappy2010
Level 1
Level 1

Hi, I have installed ASA 5505 and the ISP link is 1 MB now I want to know how much speed I must recieve in the term of downloading. The ratio of link is 1:1 and which formula do we use to calculte. Thanks Vinay Gupta.

8 Replies 8

Ideally it should be 1/8 times, i.e around 128Kbps.

You could also check the current speed by web based Bandwith meters like :

http://www.tracert.org/bandwidth_meter/

http://www.wugnet.com/myspeed/speedtest.asp

Thanks, this informaion is valuable. I have installed ASA 5505 and two or three inside users are using P2p software to downloading the softwares and all bandthwidth gets consumed by P2p softwares due to which the other users effect. I thought by using ASA by default p2p traffic will be block but it's not blocked. I know that we can block the P2p traffic by using MFP but as I read about Protocol section in Snpa that it blocks the traffic from outside port based if protocol is fixed then it allow it. Please advice. Thanks.

Can anyone respond?

Hi,

Here is the config steps for blocking P2P using MPF on ASA.

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808c38a6.shtml

Hope this helps.

By default, the P2p Protocol is remained fixed on ASA like FTP, HTTP.

But there are limitations to ASA, it may not block all types of P2P softwares available today.

For this you might have to go for the cisco CSC-SSM module or filtering with Websense.

Please rate if helpfull.

I am using ASA 5505 and i think the CSC-SSM module in not included in ASA 5505. Is it right? And If i use the other ASA FW like 5520 or higher version then will it block all P2p traffic by default.

And my question was that by default in ASA, if one inside machine want to access the any FTP site then it will send the request f 21 port and by default the inside (100) will allow to send the request and when the packet comes from the outside FTP server and it will have the other port and by default the ASA will drop that session and to resolve this issue we fix the protocol to allow all sesion by outside interface. Now in the case of P2p, the same thing happens as above mentioned details so if the P2p protocol is not fixed in the ASA then why the inside users are able to access the P2p network, it must be block. Please respond ur feedback. Thanks

Please respond?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: