Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
562
Views
0
Helpful
1
Replies

Small VPN network using ASA

Go to solution
communication.boy
Level 1
Level 1

‎10-22-2011 08:42 AM

I want to build up a small network of 3 branches and 1 headoffice . I wanted to use the cheapest and better solution avaliable to I came up with the following part numbers

For Headoffice

ASA5510-BUN-K9           ASA 5510 Appliance with SW, 5FE,3DES/AES

For Branches

ASA5505-BUN-K9           ASA 5505 Appliance with SW, 10 Users, 8 ports, 3DES/AES

I will be configure Site to Site VPNs which I am very sure will work peoperly with this . The only thing I am concerned about is that I may have 2 WAN links at each site so that I will need to configure backup Site to Site VPN link . If one link fails the other VPN session takes over and I am pretty much sure this requires IP SLA . Will I get IP SLA support on that ASA 5505 Base ?

Apart from that right now I am ordering a 5505 with a user license of 10 . What if the users in that branch grows to 15 , will I be able to upgrade it to ASA5505-50-BUN-K9 ?

Will I require any extra feature to fullfil my requirements ?


Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Eugene Khabarov
Level 7
Level 7

‎10-22-2011 11:42 PM

ASA5505 will have ip sla in base.

10 users licenses means that:

In routed  mode, hosts on the inside (Business and Home VLANs) count toward the  limit when they communicate with the outside (Internet VLAN), including  when the inside initiates a connection to the outside as well as when  the outside initiates a connection to the inside. Note that even when  the outside initiates a connection to the inside, outside hosts are

not

counted toward the limit; only the inside hosts count. Hosts that  initiate traffic between Business and Home are also not counted toward  the limit. The interface associated with the default route is considered  to be the outside Internet interface. If there is no default route,  hosts on all interfaces are counted toward the limit. In transparent  mode, the interface with the lowest number of hosts is counted toward  the host limit. Use the

show local-host

command to view host limits.

For  a 10-user license, the max. DHCP clients is 32. For 50 users, the max.  is 128. For unlimited users, the max. is 250, which is the max. for  other models.

http://www.cisco.com/en/US/docs/security/asa/asa84/license/license_management/license.html#wp1491143

So you need optional license for 50 or unlimited users count.

---

HTH. Please rate this post if it was helpful. If this solves your problem, please mark this post as "Correct Answer."

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Eugene Khabarov
Level 7
Level 7

‎10-22-2011 11:42 PM

ASA5505 will have ip sla in base.

10 users licenses means that:

In routed  mode, hosts on the inside (Business and Home VLANs) count toward the  limit when they communicate with the outside (Internet VLAN), including  when the inside initiates a connection to the outside as well as when  the outside initiates a connection to the inside. Note that even when  the outside initiates a connection to the inside, outside hosts are

not

counted toward the limit; only the inside hosts count. Hosts that  initiate traffic between Business and Home are also not counted toward  the limit. The interface associated with the default route is considered  to be the outside Internet interface. If there is no default route,  hosts on all interfaces are counted toward the limit. In transparent  mode, the interface with the lowest number of hosts is counted toward  the host limit. Use the

show local-host

command to view host limits.

For  a 10-user license, the max. DHCP clients is 32. For 50 users, the max.  is 128. For unlimited users, the max. is 250, which is the max. for  other models.

http://www.cisco.com/en/US/docs/security/asa/asa84/license/license_management/license.html#wp1491143

So you need optional license for 50 or unlimited users count.

---

HTH. Please rate this post if it was helpful. If this solves your problem, please mark this post as "Correct Answer."

0 Helpful
Customers Also Viewed These Support Documents