cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1746
Views
5
Helpful
4
Replies

Buying ASA 5505 in Ebay

johnlloyd_13
Level 9
Level 9

Hi all,

I plan to buy a pre-owned ASA 5505 for my FIREWALL studies, which I saw in Ebay selling for around USD 330.

Could someone advise if the price and show version/license is worth the purchase?

The other item from same seller got an ASA 5505 but with Base license.


ciscoasa> sh ver
Cisco Adaptive Security Appliance Software Version 8.2(5)41
Device Manager Version 7.1(2)

Compiled on Wed 13-Mar-13 21:48 by builders
System image file is "disk0:/asa825-41-k8.bin"
Config file at boot was "startup-config"

ciscoasa up 47 mins 10 secs

Hardware: ASA5505, 256 MB RAM, CPU Geode 500 MHz
Internal ATA Compact Flash, 128MB
BIOS Flash M50FW080 @ 0xffe00000, 1024KB

Encryption hardware device : Cisco ASA-5505 on-board accelerator (revision 0x0)
Boot microcode : CN1000-MC-BOOT-2.00
SSL/IKE microcode: CNLite-MC-SSLm-PLUS-2.03
IPSec microcode : CNlite-MC-IPSECm-MAIN-2.05

0: Int: Internal-Data0/0 : address is 0023.339e.0826, irq 11
1: Ext: Ethernet0/0 : address is 0023.339e.081e, irq 255
2: Ext: Ethernet0/1 : address is 0023.339e.081f, irq 255
3: Ext: Ethernet0/2 : address is 0023.339e.0820, irq 255
4: Ext: Ethernet0/3 : address is 0023.339e.0821, irq 255
5: Ext: Ethernet0/4 : address is 0023.339e.0822, irq 255
6: Ext: Ethernet0/5 : address is 0023.339e.0823, irq 255
7: Ext: Ethernet0/6 : address is 0023.339e.0824, irq 255
8: Ext: Ethernet0/7 : address is 0023.339e.0825, irq 255
9: Int: Internal-Data0/1 : address is 0000.0003.0002, irq 255
10: Int: Not used : irq 255
11: Int: Not used : irq 255

Licensed features for this platform:
Maximum Physical Interfaces : 8
VLANs : 20, DMZ Unrestricted
Inside Hosts : Unlimited
Failover : Active/Standby
VPN-DES : Enabled
VPN-3DES-AES : Enabled
SSL VPN Peers : 2
Total VPN Peers : 25
Dual ISPs : Enabled
VLAN Trunk Ports : 8
Shared License : Disabled
AnyConnect for Mobile : Disabled
AnyConnect for Cisco VPN Phone : Disabled
AnyConnect Essentials : Disabled
Advanced Endpoint Assessment : Disabled
UC Phone Proxy Sessions : 2
Total UC Proxy Sessions : 2
Botnet Traffic Filter : Disabled

This platform has an ASA 5505 Security Plus license.

Serial Number: JMX1242Z0PL
Running Activation Key: 0x2137ff5b 0x0c7e35b9 0x14508150 0x9db86c5c 0xcb3b2aaa
Configuration register is 0x1
Configuration has not been modified since last system restart.
ciscoasa>
ciscoasa>
ciscoasa> sh inv
ciscoasa> sh inventory
Name: "Chassis", DESCR: "ASA 5505 Adaptive Security Appliance"
PID: ASA5505 , VID: V05 , SN: JMX1242Z0PL


Sent from Cisco Technical Support iPhone App

1 Accepted Solution

Accepted Solutions

Jouni Forss
VIP Alumni
VIP Alumni

Hi,

It the Security Plus license atleast which gives some more room to manouver when testing setups. I have a Base License ASA5505 at home with 10 user limitation.

Though it seems it has been uploaded with the latest ASDM but the actual firewall software is still in the old version. Or to be more precise, it seems to of the latest software levels before the jump from 8.2 to 8.3 which introduced a completely redone NAT configuration format.

At its current RAM memory setup it wouldnt be possible to upgrade it to the new software even if you had the new software because for Unlimited User and Security Plus license 512RAM is required (which became default setup for newer ASA5505s)

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/product_bulletin_c25-586414.html

Though I am not sure if this is really a concern for you. (wether it matters if the ASA can run 8.3+ software)

I guess the price of buying the same setup (though with the 512MB memory setup) straight from some Cisco reseller would be something like 1000$ unless my informatin is old. I dont really buy devices for us so I dont know the current pricess

- Jouni

View solution in original post

4 Replies 4

Jouni Forss
VIP Alumni
VIP Alumni

Hi,

It the Security Plus license atleast which gives some more room to manouver when testing setups. I have a Base License ASA5505 at home with 10 user limitation.

Though it seems it has been uploaded with the latest ASDM but the actual firewall software is still in the old version. Or to be more precise, it seems to of the latest software levels before the jump from 8.2 to 8.3 which introduced a completely redone NAT configuration format.

At its current RAM memory setup it wouldnt be possible to upgrade it to the new software even if you had the new software because for Unlimited User and Security Plus license 512RAM is required (which became default setup for newer ASA5505s)

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/product_bulletin_c25-586414.html

Though I am not sure if this is really a concern for you. (wether it matters if the ASA can run 8.3+ software)

I guess the price of buying the same setup (though with the 512MB memory setup) straight from some Cisco reseller would be something like 1000$ unless my informatin is old. I dont really buy devices for us so I dont know the current pricess

- Jouni

hi jouni,

i appreciate your insights! i didn't know RAM would play an essential role in running newer codes.

i could probably run 8.3+ via GNS3. i just wanna make myself play comfortably with ASAs.

i've been following and reading a lot of your posts. i've also got myself ahead of my studies with your recent doc:

https://supportforums.cisco.com/docs/DOC-31116.

great job by the way! i hope i could contribute in the security section just like you in the near future.

on a side note, would you personally consider buying the posted ASA 5505?

Hi,

Personally I am using the newer software almost completely so in that sense it wouldnt be my first choice.

Also I dont know if I would like to buy a used unit in general

Then again I have at my disposal our own testing devices so I have not really had to deal with this myself so I am not the best person to answer this question.

I guess you couldnt really count on anykind of support if you buy the unit as used one. Thats probably something to think about.

- Jouni

thanks for your great advice! will keep that in mind.

made me re-think my options when buying.

we have ASA 5510s in our work environment though, but i'm not fully capable of them handling them yet.

just doing show commands and no CR yet.

Review Cisco Networking for a $25 gift card