Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
225
Views
0
Helpful
1
Replies

ASA connection design

Machi Ma
Level 1
Level 1

‎07-15-2014 09:04 PM - edited ‎03-11-2019 09:28 PM

Hello,

 

I am looking ASA 5555-X data sheet now

http://www.cisco.com/c/en/us/products/collateral/routers/800-series-routers/data-sheet-c78-729807.html

 

The data sheet showing the max throughput is 4G.  I would like to know what happen if my I only use 1GB connection for Internet in/out?  Does is means the bottleneck will appear at network interface? 

 

What should the best practices?

 

Thanks!

Labels:
0 Helpful
1 Reply 1

Jouni Forss
VIP Alumni
VIP Alumni

‎07-16-2014 12:34 AM

Hi,

 

I would presume if you are planning to use a single LAN and WAN physical interface on the ASA and if you have 1Gbps WAN (?) link then the above mentioned model of the ASA is not ideal for your situation unless you want to prepare for possible future expansion requirements. The GigabitEthernet interface will naturally limit how much traffic can flow through the ASA and if there is only a single physical WAN and LAN link then naturally the throughput will never be more than 1Gbps.

 

If you are planning on using the ASA in some part of your internal network to separate some internal networks from eachother and require more than the 1Gbps interfaces can provide then you can consider bundling the interfaces by configuring Port-Channel interfaces

 

Notice that the datasheet lists 2 different Throughput values. For actual user traffic I guess I would look at the other value listed which is 2Gbps. The 4Gbps value listed is for ideal traffic situations while the other value more closely estimates the throughput in a real user environment with different kind of traffic flowing through the ASA.

 

Though if you are planning on configuring different DMZs on the firewall that serve the internal networks and perhaps separating different networks on the firewall in general that need access through the ASA then the extra throughput that the model provides might come in handy.

 

- Jouni

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card