Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Question

Hi, I have installed ASA 5505 and the ISP link is 1 MB now I want to know how much speed I must recieve in the term of downloading. The ratio of link is 1:1 and which formula do we use to calculte. Thanks Vinay Gupta.

8 REPLIES

Re: Question

Ideally it should be 1/8 times, i.e around 128Kbps.

You could also check the current speed by web based Bandwith meters like :

http://www.tracert.org/bandwidth_meter/

http://www.wugnet.com/myspeed/speedtest.asp

New Member

Re: Question

Thanks, this informaion is valuable. I have installed ASA 5505 and two or three inside users are using P2p software to downloading the softwares and all bandthwidth gets consumed by P2p softwares due to which the other users effect. I thought by using ASA by default p2p traffic will be block but it's not blocked. I know that we can block the P2p traffic by using MFP but as I read about Protocol section in Snpa that it blocks the traffic from outside port based if protocol is fixed then it allow it. Please advice. Thanks.

New Member

Re: Question

Can anyone respond?

Re: Question

Hi,

Here is the config steps for blocking P2P using MPF on ASA.

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808c38a6.shtml

Hope this helps.

New Member

Re: Question

By default, the P2p Protocol is remained fixed on ASA like FTP, HTTP.

Re: Question

But there are limitations to ASA, it may not block all types of P2P softwares available today.

For this you might have to go for the cisco CSC-SSM module or filtering with Websense.

Please rate if helpfull.

New Member

Re: Question

I am using ASA 5505 and i think the CSC-SSM module in not included in ASA 5505. Is it right? And If i use the other ASA FW like 5520 or higher version then will it block all P2p traffic by default.

And my question was that by default in ASA, if one inside machine want to access the any FTP site then it will send the request f 21 port and by default the inside (100) will allow to send the request and when the packet comes from the outside FTP server and it will have the other port and by default the ASA will drop that session and to resolve this issue we fix the protocol to allow all sesion by outside interface. Now in the case of P2p, the same thing happens as above mentioned details so if the P2p protocol is not fixed in the ASA then why the inside users are able to access the P2p network, it must be block. Please respond ur feedback. Thanks

New Member

Re: Question

Please respond?

120
Views
0
Helpful
8
Replies