It is very interesting and tricky. ASA5520 has four 1Gbps interface but the box itself only support 450Mbps (According to datasheet). How to explain this? Does this mean if the interface receive 1Gbps traffic, then firewall will drop the packets? Thank you.
Does anyone know if the ASA5520 actually supports 450Mbps? Or is that best case scenario with nothing configured on it? I am running into problems with figuring out what ISR G2 router to buy because the performance specs don't seem to take NAT and routing protocols into account when they test. At least that is my guess cause I broke a 2911 today with WAY less than 180Mbps. Dual 2911(s) doing NAT Box to Box HA. Traffic got up above 50Mbps combined and the CPU was climbing. Soon after it stopped responding to SNMP queries so I don't know how high it got. Anyway it broke.
Thinking that an ASA is a better option for me as I'd imagine there processors are tuned for NAT. Anyway if anyone has any real world figures that would be awesome.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...