06-20-2012 06:26 AM - edited 03-11-2019 04:21 PM
Hello you knowledgeabe lot! A have a question - sorry if this has been asked before but I couldn't find an answer using the search facility....
I need to use a firewall to segregate a lab from our main network.
I don't need any 'fancy' features, no VPN, no IPS, just basic firewalling.
The lab houses about 20 servers and only 100meg throughput is required.
I'm sure the ASA5505 will be fine, but I don't know which specific model/licence to use.
Options available to me (due to in house restrictions) are:-
*** ASA5505-BUN-K9:- ASA 5505 Appliance with SW, 10 Users, 8 ports, 3DES/AES
*** ASA5505-50-BUN-K9:- ASA 5505 Appliance with SW, 50 Users, 8 ports, 3DES/AES
*** ASA5505-UL-BUN-K9:- ASA 5505 Appliance with SW, UL Users, 8 ports, 3DES/AES
Does anyone know EXACTLY what what the difference between the above models is?
It looks like the difference is 10 users, 50 users or unlimited users but in what context? SSL VPNs? Concurrent TCP connections? IPs that can communicate through the firewall at any one time? Etc, etc...?
Many thanks in advance,
Matt.
Solved! Go to Solution.
06-20-2012 06:35 AM
It is the number of users through the firewall (counting the inside hosts).
Here is more explaination for your reference:
http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/license.html#wp1361287
(check out point# 3)
06-20-2012 06:35 AM
It is the number of users through the firewall (counting the inside hosts).
Here is more explaination for your reference:
http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/license.html#wp1361287
(check out point# 3)
06-20-2012 06:53 AM
Hi Jennifer,
Thanks for the quick response!
That was exactly the answer I was looking for! Given the relative low cost, I'll go for the ASA5505-UL-BUN-K9 to be on the safe side then.
Thanks again,
Matt.
06-20-2012 04:22 PM
but be aware that the base-version only give you two "real" Firewall-interfaces and a limited DMZ. I typically advise my customers to spend some more bucks for the SecurityPlus-version (which includes UL users), as some time in the future you probably wish to use more than two firewalled segments.
Karsten
06-21-2012 02:21 AM
Thanks for pointing that out Karsten. For this particular situation, I'll be fine with the non SEC licence but I'll definitely make a mental note for next time.
Regards,
Matt.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide