Re: CISCO ASA 5520 License updates

balajirajahpb · ‎08-03-2010

Dear All,

I have CISCO ASA 5520 with Failover Active/Active license running in Active /standby mode. I would like to know whether I can use one device out of two as standalone firewall without any issue.

Licensed features for this platform:
Maximum Physical Interfaces : Unlimited
Maximum VLANs               : 150
Inside Hosts                : Unlimited
Failover                    : Active/Active
VPN-DES                     : Enabled
VPN-3DES-AES                : Enabled
Security Contexts           : 2
GTP/GPRS                    : Disabled
VPN Peers                   : 750
WebVPN Peers                : 2

This platform has an ASA 5520 VPN Plus license.

Nagaraja Thanthry · ‎08-03-2010

Hello,

You can use them in standalone mode. They are two individual firewalls with

identical license.

Hope this helps.

Regards,

NT

balajirajahpb · ‎08-03-2010

Are you sure it will not reboot every 24 hours ??

Please refer the below link from CISCO.

http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/failover.html#wp1053685

Nagaraja Thanthry · ‎08-03-2010

Hello,

Unlike PIX platform, in ASA, the failover pair requires exact same license

(Pre-8.3 code release). So, both devices can act as standalone devices are

can act as a failover pair. However, the license requirements were slightly

relaxed in 8.3 code version. So, to answer your question, No, the devices

will stay up.

Hope this helps.

Regards,

NT

Jitendriya Athavale · ‎08-03-2010

yes you can use it, no issues

this is not like PIX which has FO (Failover only) license

balajirajahpb · ‎08-03-2010

Thanks NT,

Let me try this and update you

Have a nice evening.