Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Cisco PIX as VPN terminator

Hi!

Can a Cisco PIX 515E with an Unrestricted License (UR) be deployed as a VPN concentrator?

For example, remote users having VPN clients installed on their desktops connect through the Internet and are authenticated by the PIX 515E at the main site.

Regards,

Alvin

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Cisco PIX as VPN terminator

Hi Bro

Of course the Cisco PIX family can act as a VPN Server or a VPN termination point. In your case, Cisco PIX 515E do support 2,000 simultaneous VPN tunnels (Remote Access VPN and Site-to-Site VPN). You could refer to the Cisco datasheet for more details http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5708/ps5709/ps2030/ps4094/product_data_sheet09186a0080091b15.html

I personally have deployed many Cisco PIX/ASA Firewalls, to know exactly what this product can do, and cannot do. For configuration examples, you could refer to this URL http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/prod_configuration_examples_list.html

You might want to upgrade your Cisco PIX 515E to version 8.0.4 and include a VPN accelerator card, if the number of VPN tunnels are huge --> Part Num. PIX-VPN-ACCEL ~ IPsec Hardware VPN Accelerator Card (VAC).

However, you should know that the Cisco PIX family has reached EOL/EOS. This means if you have an issue with your Cisco PIX, Cisco will not support you completely. Hence, you might wanna look into an equivalent model instead e.g. Cisco ASA 5510 or Cisco ASA 5515-X.

Note: Cisco PIX doesn't support SSLVPN, GRE, GETVPN etc.

P/S: If you think this comment is useful, please do rate it nicely :-) and select the option THIS QUESTION IS ANSWERED

Warm regards, Ramraj Sivagnanam Sivajanam Technical Specialist/Service Delivery Manager – Managed Service Department
1 REPLY

Re: Cisco PIX as VPN terminator

Hi Bro

Of course the Cisco PIX family can act as a VPN Server or a VPN termination point. In your case, Cisco PIX 515E do support 2,000 simultaneous VPN tunnels (Remote Access VPN and Site-to-Site VPN). You could refer to the Cisco datasheet for more details http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5708/ps5709/ps2030/ps4094/product_data_sheet09186a0080091b15.html

I personally have deployed many Cisco PIX/ASA Firewalls, to know exactly what this product can do, and cannot do. For configuration examples, you could refer to this URL http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/prod_configuration_examples_list.html

You might want to upgrade your Cisco PIX 515E to version 8.0.4 and include a VPN accelerator card, if the number of VPN tunnels are huge --> Part Num. PIX-VPN-ACCEL ~ IPsec Hardware VPN Accelerator Card (VAC).

However, you should know that the Cisco PIX family has reached EOL/EOS. This means if you have an issue with your Cisco PIX, Cisco will not support you completely. Hence, you might wanna look into an equivalent model instead e.g. Cisco ASA 5510 or Cisco ASA 5515-X.

Note: Cisco PIX doesn't support SSLVPN, GRE, GETVPN etc.

P/S: If you think this comment is useful, please do rate it nicely :-) and select the option THIS QUESTION IS ANSWERED

Warm regards, Ramraj Sivagnanam Sivajanam Technical Specialist/Service Delivery Manager – Managed Service Department
703
Views
0
Helpful
1
Replies