Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
430
Views
0
Helpful
2
Replies

site to site VPN using PIX-515E and no VAC card?

petemcdonnell
Level 1
Level 1

‎11-01-2009 05:54 AM - edited ‎02-21-2020 03:46 AM

I'm considering using an existing PIX-515E as one end of a site to site VPN, but can't find any stats for how many Mbps of throughput the unit with no VAC or VAC+ card will handle.

Would it handle up to 10Mbps of 256 bit AES IPSEC VPN traffic?

0 Helpful
2 Replies 2

Patrick0711
Level 3
Level 3

‎11-01-2009 12:03 PM

You will likely only see a few Mbps of VPN traffic, especially with AES-256. There's a night and day difference between using the VAC card and offloading the encryption processes to the PIX CPU.

I would suggest using a more efficient encryption algorithm like AES-128 and SHA1.

0 Helpful

Farrukh Haroon
VIP Alumni
VIP Alumni

‎11-02-2009 11:08 AM

The throughput is mentioned on this link:

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5708/ps5709/ps2030/ps4094/product_data_sheet09186a0080091b15.html

Performance Summary

• Cleartext throughput: Up to 190 Mbps

• Concurrent connections: 130,000

• 168-bit 3DES IPSec VPN throughput: Up to 135 Mbps with VAC+ or 63 Mbps with VAC

• 128-bit AES IPSec VPN throughput: Up to 130 Mbps with VAC+

• 256-bit AES IPSec VPN throughput: Up to 130 Mbps with VAC+

• Simultaneous VPN tunnels: 2000

Please rate if helpful, Regards

Farrukh

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card