I purchased an ASA 5510 VPN Edition to replace my Cisco VPN 3005 concentrator. I currently have a Cisco PIX firewall. Looking through the ASA it looks like I can setup this box to be used as a VPN and the firewall. Is this a good idea? My PIX is over 7 years old and probably should be replaced. Should I purchase an additional box, or use one for both? I currently have a windows 2003 network with approximately 170 users, connection to the internet is two T1s.
With ASA5500 series you can use it for both , firewall as well as for IPsec L2L, SSL webvpn , RA server L2TP etc.. in fact the ASA5500 is the migration platform for VPN Remote access since VPN 3ks concentrators have reached end of life.
I would recommend in future if your budget permits it, use another ASA5510 with FO license and provide an Active/Standby architecture.
Reference this link for all variety of features and implementation scenarios so that you can start geting acquainted with ASA code 7.x and above.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...