cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


3003
Views
0
Helpful
3
Replies
Highlighted

AnyConnect Premium Peers

Hello,

 

I am seeing AnyConnect Premium Peers : 2 perpetual in one device and another it is AnyConnect Premium Peers : 4 perpetual .Device is in HA. Could anyone guide me which one we should consider for ssl vpn license.

 

Find below details for the same.

 

Hardware: ASA5550, 4096 MB RAM, CPU Pentium 4 3000 MHz,
Internal ATA Compact Flash, 256MB
BIOS Flash M50FW016 @ 0xfff00000, 2048KB

Encryption hardware device : Cisco ASA-55xx on-board accelerator (revision 0x0)
Boot microcode : CN1000-MC-BOOT-2.00
SSL/IKE microcode : CNlite-MC-SSLm-PLUS-2.08
IPSec microcode : CNlite-MC-IPSECm-MAIN-2.09
Number of accelerators: 1

0: Ext: GigabitEthernet0/0 : address is 5475.d0a3.737e, irq 9
1: Ext: GigabitEthernet0/1 : address is 5475.d0a3.737f, irq 9
2: Ext: GigabitEthernet0/2 : address is 5475.d0a3.7380, irq 9
3: Ext: GigabitEthernet0/3 : address is 5475.d0a3.7381, irq 9
4: Ext: Management0/0 : address is 5475.d0a3.7382, irq 11
5: Int: Internal-Data0/0 : address is 0000.0001.0002, irq 11
6: Int: Not used : irq 5
7: Ext: GigabitEthernet1/0 : address is 5475.d050.a6d2, irq 255
8: Ext: GigabitEthernet1/1 : address is 5475.d050.a6d3, irq 255
9: Ext: GigabitEthernet1/2 : address is 5475.d050.a6d4, irq 255
10: Ext: GigabitEthernet1/3 : address is 5475.d050.a6d5, irq 255
11: Int: Internal-Data1/0 : address is 0000.0003.0002, irq 255

Licensed features for this platform:
Maximum Physical Interfaces : Unlimited perpetual
Maximum VLANs : 400 perpetual
Inside Hosts : Unlimited perpetual
Failover : Active/Active perpetual
Encryption-DES : Enabled perpetual
Encryption-3DES-AES : Enabled perpetual
Security Contexts : 2 perpetual
GTP/GPRS : Disabled perpetual
AnyConnect Premium Peers : 2 perpetual
AnyConnect Essentials : Disabled perpetual
Other VPN Peers : 5000 perpetual
Total VPN Peers : 5000 perpetual
Shared License : Disabled perpetual
AnyConnect for Mobile : Disabled perpetual
AnyConnect for Cisco VPN Phone : Disabled perpetual
Advanced Endpoint Assessment : Disabled perpetual
UC Phone Proxy Sessions : 2 perpetual
Total UC Proxy Sessions : 2 perpetual
Botnet Traffic Filter : Disabled perpetual
Intercompany Media Engine : Disabled perpetual
Cluster : Disabled perpetual

This platform has an ASA 5550 VPN Premium license.


Failover cluster licensed features for this platform:
Maximum Physical Interfaces : Unlimited perpetual
Maximum VLANs : 400 perpetual
Inside Hosts : Unlimited perpetual
Failover : Active/Active perpetual
Encryption-DES : Enabled perpetual
Encryption-3DES-AES : Enabled perpetual
Security Contexts : 4 perpetual
GTP/GPRS : Disabled perpetual
AnyConnect Premium Peers : 4 perpetual
AnyConnect Essentials : Disabled perpetual
Other VPN Peers : 5000 perpetual
Total VPN Peers : 5000 perpetual
Shared License : Disabled perpetual
AnyConnect for Mobile : Disabled perpetual
AnyConnect for Cisco VPN Phone : Disabled perpetual
Advanced Endpoint Assessment : Disabled perpetual
UC Phone Proxy Sessions : 4 perpetual
Total UC Proxy Sessions : 4 perpetual
Botnet Traffic Filter : Disabled perpetual
Intercompany Media Engine : Disabled perpetual
Cluster : Disabled perpetual

This platform has an ASA 5550 VPN Premium license.

Everyone's tags (1)
1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Guru

Re: AnyConnect Premium Peers


Need clarification for ssl license on below details.

 

>Do you mean i can use  total 4 ssl connections at a time?

>Incase more users wants to access, what we need to do.

>Please share sslvpn config link.

 


1. Yes.

2. Buy more licenses. https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/200191-AnyConnect-Licensing-Frequently-Asked-Qu.html

3. See the following: https://www.cisco.com/c/en/us/td/docs/security/asa/asa98/configuration/vpn/asa-98-vpn-config/vpn-anyconnect.html#ID-2438-000000a3

View solution in original post

3 REPLIES 3
VIP Advocate

Re: AnyConnect Premium Peers

What you have is 2 AnyConnect Premium licenses per device =  4 total that you can use when both the devices are in HA. In HA, Anyconnect license counts from both devices are aggregated. 2 is the default License count. 

 

What you also need is the AnyConnect Plus or Apex licenses in order to provide authorization to download and use the AnyConnect images. You just need to get the number of licenses equal to the total authorized VPN users in your environment. 

 

https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/200191-AnyConnect-Licensing-Frequently-Asked-Qu.html#anc7

Re: AnyConnect Premium Peers

Thanks Rahul,

 

Need clarification for ssl license on below details.

 

>Do you mean i can use  total 4 ssl connections at a time?

>Incase more users wants to access, what we need to do.

>Please share sslvpn config link.

 

Find below details for reference.

 

 

---------------------------------------------------------------------------
VPN Licenses and Configured Limits Summary
---------------------------------------------------------------------------
Status : Capacity : Installed : Limit
-----------------------------------------
AnyConnect Premium : ENABLED : 5000 : 4 : NONE
AnyConnect Essentials : DISABLED : 5000 : 0 : NONE
Other VPN (Available by Default) : ENABLED : 5000 : 5000 : NONE
Shared License Server : DISABLED
Shared License Participant : DISABLED
AnyConnect for Mobile : DISABLED(Requires Premium or Essentials)
Advanced Endpoint Assessment : DISABLED(Requires Premium)
AnyConnect for Cisco VPN Phone : DISABLED
VPN-3DES-AES : ENABLED
VPN-DES : ENABLED
---------------------------------------------------------------------------

---------------------------------------------------------------------------
VPN Licenses Usage Summary
---------------------------------------------------------------------------
Local : Shared : All : Peak : Eff. :
In Use : In Use : In Use : In Use : Limit : Usage
----------------------------------------------------
AnyConnect Premium : 0 : 0 : 0 : 0 : 4 : 0%
AnyConnect Client : : 0 : 0 : 0%
AnyConnect Mobile : : 0 : 0 : 0%
Clientless VPN : : 0 : 0 : 0%
Other VPN : : 35 : 101 : 5000 : 1%
Cisco VPN Client/ : : 6 : 70 : 0%
L2TP Clients
Site-to-Site VPN : : 29 : 35 : 1%
---------------------------------------------------------------------------

 

Thanks

Kanhu

Hall of Fame Guru

Re: AnyConnect Premium Peers


Need clarification for ssl license on below details.

 

>Do you mean i can use  total 4 ssl connections at a time?

>Incase more users wants to access, what we need to do.

>Please share sslvpn config link.

 


1. Yes.

2. Buy more licenses. https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/200191-AnyConnect-Licensing-Frequently-Asked-Qu.html

3. See the following: https://www.cisco.com/c/en/us/td/docs/security/asa/asa98/configuration/vpn/asa-98-vpn-config/vpn-anyconnect.html#ID-2438-000000a3

View solution in original post

CreatePlease to create content
Content for Community-Ad
FusionCharts will render here