We are using about 35 RV082 units in a very basic configuration - 1:1 NAT and some firewall ACLs. All the sites are talking to a central site and we just ran out of ACL space (RV082 supports 50 rules) on the central site.
I presume that I can replace the RV082 with an ASA5505, but I can't find out how many ACLs the ASA unit supports. Does anyone out there have a quick answer?
It is my understanding that the ASA 5505 uses around 20KB for an Access List Entry (ACE). So, the number of ACE really depends on the memory on the chassis and other features that are you planning to enable.
Since, you are planning to replace around 35+ RV082 with ASA5505, I would test the ASA5505 in the lab specific to your environment before deploying it in the production.
Also, below is the data sheet for the ASA that has information on various ASA platforms and memory.
That's not exactly what I'm going to do; I'm only replacing one RV082 with an ASA5505. The access lists are simple; let a specific IP address through on all ports. This should take only one ACL. I just need to know if I can get one hundred ACLs like this into an ASA5505 - that will solve my immediate problem.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...