Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4339
Views
0
Helpful
1
Replies

Cisco Firepower 1010 - VPN

jamiehighfield1
Level 1
Level 1

‎05-07-2020 05:31 AM

Hi,

I am trying to ascertain the support available for Cisco VPN in the Cisco Firepower 1010. I can see from the datasheet that this supports IPSec VPNs, although I'm not sure if this refers to site-to-site, or whether this can be used within AnyConnect. I understand this unit broadly replaces the ASA 5506, which supported SSL VPN, but cannot see from the datasheet whether SSL VPN with AnyConnect is also supported in the Firepower 1010. If SSL VPN is supported, what is the throughput per tunnel/combined for this?

 

Thanks,

Jamie

0 Helpful
1 Reply 1

Rob Ingram
VIP
VIP

‎05-07-2020 05:53 AM - edited ‎05-07-2020 06:01 AM

Hi,

The Firepower 1010 firewall supports IPSec Site-to-Site and Remote Access VPN and SSL/TLS-VPN. Remote Access (IPSec) VPN is approx minus 10% performance of IPSec (as documentated in the datasheets).

 

IPSec VPN still performs better than SSL/TLS VPN. If using the FTD version 6.6, it supports DTLS 1.2 which provides better performance, however it has only been released recently and not yet the recommended version.

 

image.png

 

https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2020/pdf/BRKSEC-2348.pdf

 

HTH

0 Helpful
Customers Also Viewed These Support Documents