03-13-2008 08:06 AM - edited 03-11-2019 05:17 AM
Can anyone confirm how a 10 users ASA license is enforced? With the PIXs it used to remember MAC addresses does this actucally allow 10 concurrent users?
Solved! Go to Solution.
03-13-2008 08:24 AM
show local-host
03-13-2008 08:11 AM
Active-host Limitations:
A host is considered active when any of the following statements are true:
. The host has passed traffic through the PIX Firewall during the time configured for the
xlate timeout interval
. The host has an established NAT/PAT translation through the PIX Firewall
. The host has an established TCP connection or UDP session through the PIX Firewall
. The host has an established user authentication through the PIX Firewall
*****
Let me just re-quote from this link:
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/specs
.html#wp1150495
" In routed mode, hosts on the inside (Business and Home VLANs) count towards the limit
only when they communicate with the outside (Internet VLAN). Internet hosts are not
counted towards the limit. Hosts that initiate traffic between Business and Home are also
not counted towards the limit. The interface associated with the default route is
considered to be the Internet interface. If there is no default route, hosts on all
interfaces are counted toward the limit. In transparent mode, the interface with the
lowest number of hosts is counted towards the host limit. See the show local-host command
to view the host limits."
03-13-2008 08:19 AM
Many thanks. Is there a command to see how many are in use? I've made a bit of a boob and ordered a load of 10 users ASAs.
03-13-2008 08:24 AM
show local-host
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide