05-12-2022 07:23 PM
Hi,
i just want to know ASA and Firepower are need the security license to do site to site vpn ?
I noticed cisco router need the security license for VPN.
Fortigate Firewall don't need the license for site to site VPN.Juniper also don't need.
Solved! Go to Solution.
05-13-2022 09:19 AM
All current ASA (ASAv and ASA image on Firepower appliance) support site-to-site IPsec VPNs subject to the hardware (or VM) limitations with the FREE base license. The same applies to FTD.
ASA 5505 (and other ASA hardware including 5506-X etc.) are all past end of sales.
05-12-2022 07:50 PM
Cisco require for license in almost everything
Cisco ASA 5505 Unlimited-User Security Plus Bundle; includes 8-port Fast Ethernet switch, 25 IPsec VPN peers, 2Premium VPN peers, DMZ, stateless Active/Standby high availability, 3DES/AES license
ASA5505-SEC-BUN-K9
05-12-2022 10:55 PM
you dont need specific license for site-to-site IPSec in ASA. maximum tunnel count is depend on hardware model. you can find it on relevant datasheet. also if you are concern about anyconnect peers, you need sperate license for that.
05-13-2022 09:19 AM
All current ASA (ASAv and ASA image on Firepower appliance) support site-to-site IPsec VPNs subject to the hardware (or VM) limitations with the FREE base license. The same applies to FTD.
ASA 5505 (and other ASA hardware including 5506-X etc.) are all past end of sales.
08-23-2022 03:17 PM
Hi Marvin
If I need a vpn site to site with IKEv2, AES256, DH14, SHA256, ESP. Is it possible with a ASA5508 free bases? Need Bundle K9? or what license I need?
08-24-2022 05:57 AM
K9 is required for strong encryption (or can be later added via the free 3DES-AES license). It is allowed for all but the few US-export-controlled countries (North Korea, Libya etc.).
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide