Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
714
Views
0
Helpful
5
Replies

Upgrade from Cisco/Linksys RV082 to ASA5505?

clarke
Level 1
Level 1

‎10-07-2008 08:13 AM - edited ‎03-11-2019 06:54 AM

We are using about 35 RV082 units in a very basic configuration - 1:1 NAT and some firewall ACLs. All the sites are talking to a central site and we just ran out of ACL space (RV082 supports 50 rules) on the central site.

I presume that I can replace the RV082 with an ASA5505, but I can't find out how many ACLs the ASA unit supports. Does anyone out there have a quick answer?

Labels:
0 Helpful
5 Replies 5

ajagadee
Cisco Employee
Cisco Employee

‎10-07-2008 09:45 AM

Clarke,

It is my understanding that the ASA 5505 uses around 20KB for an Access List Entry (ACE). So, the number of ACE really depends on the memory on the chassis and other features that are you planning to enable.

Since, you are planning to replace around 35+ RV082 with ASA5505, I would test the ASA5505 in the lab specific to your environment before deploying it in the production.

Also, below is the data sheet for the ASA that has information on various ASA platforms and memory.

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/product_data_sheet0900aecd802930c5.html

I hope it helps.

Regards,

Arul

** Please rate all helpful posts **

0 Helpful

clarke
Level 1
Level 1
In response to ajagadee

‎10-07-2008 09:57 AM

That's not exactly what I'm going to do; I'm only replacing one RV082 with an ASA5505. The access lists are simple; let a specific IP address through on all ports. This should take only one ACL. I just need to know if I can get one hundred ACLs like this into an ASA5505 - that will solve my immediate problem.

0 Helpful

ajagadee
Cisco Employee
Cisco Employee
In response to clarke

‎10-07-2008 10:18 AM

Clark,

I thought that is what I explained in my earlier post.

Each ACE takes 20KB, so if you have 100 ACE, it is 100 * 20KB = 2MB.

Example, 100 lines like the below configuration

access-list 150 permit ip host 10.1.1.1 any

access-list 150 permit ip host 20.1.1.1 any.

......

The ASA5505 comes with 256 MB Memory, so you should be fine running 100 ACE.

Let me know if the above info does not help.

Regards,

Arul

** Please rate all helpful posts **

0 Helpful

clarke
Level 1
Level 1
In response to ajagadee

‎10-07-2008 02:05 PM

No, that's exactly what I needed to know. Thanks for the help!

0 Helpful

ajagadee
Cisco Employee
Cisco Employee
In response to clarke

‎10-07-2008 02:11 PM

Clarke,

Sounds good. Drop us an update whenever you deploy your ASA and configure it with 100+ ACE.

Regards,

Arul

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card