I have a active-active setup with 2 cisco asa 5585x running 8.4 - the boxes ahve each 2 sec context's build-in - which gives 4 sec context in the cluster. I have 2 x 5 extra licenses (2 x ASA5500-SC-5) which I haven't applied yet - will this give me a total of 10 or 14 security contextes? I am a bit in doubt because if I only get 10 sec contextes in this cluster then could I instead get a single 10 security context license (1 x ASA5500-SC-10) and add this - hereby I would get 12 then.
nope - you have to consider how you upgrade - when you apply a 10 sec license the box has 10 sec contextes - not 12 - so in a HA cluster (with 2 phys boxes) where you apply this to a single host you have 10+2 not 12+2
if you apply this in another way where you but 2 x 5 upgrades for both boxes then you waste 2 contextes
and if you similar apply a 10 sec context to the first box and afterwards a 5 context upgrade to the second box you have 15 and not 17 or 19 sec liceses
so - before you start upgrade - conside what you want - if you apply it wrong or buy it wrong you are in trouble ;-)
let's say I have 5515-X_1 without a security context license. And I have another 5515-X_2 with 5 security contexts license. So the total security contexts for ACTIVE/ACTIVE is still 5 total contexts instead of 7. The two built-in security context in 5515-X_1 does not count. Would you know why cisco design this licensing this way?
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :