we have a customer request ASA firewall for Data Center , Internet, and VOIP.
for DC firewall : i was suggesting that ASA 5585-X next generation firewall. and i have suggested to include IPS SSP10 module with it. but when i was searching in Cisco Commerce workflow (CCW), IPS SSP10 is end of sales. so i don't know what to use alternative in the design
For Internet firewall : i was confused to go for ASA 5525- CX. i don't know much about CX and license i need. do i have to use Prime to configure CX in ASA 5585 ?
for VOIP firewall, i really have no idea if firewall can protect VOIP traffic? it is recommended to bypass the firewall.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...