I have been using PIX applicances for more than 4 years and I'm planning to start using the new ASA5500 but I'm facing some issues in selecting the right parts:
1- If I'm willing to build a high availability perimeter (i.e. using two units in active/standby failover mode), should I just order two similar appliances? Isn't there any cheap FO unit like the PIX?
2- Does the failover feature function exactly the same as the PIX where a serial-based failover is used for config-sync and a LAN-based FO is used for long distance and a stateful FO is used for maintaining session information? I can't see any serial port that can be used for FO!!!
3- When is the Content Security and Control Security Services Module going to be released? I can't find it in the latest price list.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...