From: Scott Morris (swm@emanon.com)
Date: Sun Feb 25 2007 - 15:07:19 ART
I wouldn't exactly say that NetScreen is the most compliant when it comes to
IPSec interoperability... But it's easy to setup, and the SSL stuff on NS
products is quite nice (particularly the RA series).
It may be a little early to term 8.0 ASA the industry leader for SSL VPNs,
but I'm sure they're going to come a long way in making progress! Never
doubt the power of change that Cisco can effect on a product and/or
industry.
IMHO, replacing all your firewalls/VPN products may be a little harsh as
well, but I'm sure you have your list of reasons for that!
Scott Morris, CCIE4 (R&S/ISP-Dial/Security/Service Provider) #4713, JNCIE
#153, CISSP, et al.
CCSI/JNCI-M/JNCI-J
IPexpert VP - Curriculum Development
IPexpert Sr. Technical Instructor
smorris@ipexpert.com
http://www.ipexpert.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Simon Hamilton-Wilkes
Sent: Sunday, February 25, 2007 12:34 PM
To: tdt_cciesec
Cc: Kal Han; M A; ccielab@groupstudy.com; security@groupstudy.com
Subject: Re: ASA 8.0
I wouldn't put it quite that harshly, but we've had enough interoperability
issues with ASA's and other vendors IPSEC products that we're going back to
buying NetScreens, despite being officially a Cisco shop now...
Pragmatically I'm OK with that as it will make my job easier, but as one of
the two CCIEs and Cisco evangelists in the firm, responsible for making us a
Cisco shop in the first place, it's truly embarassing.
Simon
On 2/25/07, tdt_cciesec <tdt_cciesec@yahoo.com> wrote:
> I found the idea that Cisco is going to release version 8.0 soon to be
> really laughable. It must be a sick joke or something.
>
> Instead of releasing version 8.0, why dont they just concentrate on
> fixing all the bugs currently in 7.x and make it stable before going
> with 8.x? IMHO, cisco should have version 7.2(2) or whatever the flavor
at the moment from "ED"
> to "GD" before releasing 8.x code. By releasing 8.x (anytime soon I
> guess) before having a stable release of 7.x, telling me that cisco has no
credibility.
>
> I am a big Cisco fan but they really turn me off when they start doing
> stuffs like this. It is no wonder why Checkpoint and Juniper have
> been kicking cisco in the butt when it comes to security. Cisco Pix
> and ASA are already a mediocre product and now cisco will make it worse.
>
> my 2c
>
> tdt
>
> Kal Han <calikali2006@gmail.com> wrote: 8.0 will run on both the
platforms.
> But its going have separate images for pix and asa.
> Unlike 7.2.2 which has only one/same image for both the platforms.
>
> 8.0 is mainly going to be web-vpn oriented release.
> Might be releasing a software client for ssl vpn s.
> Also you can expect to run more routing protocols on these boxes.
> and some enhanced(rather new) voice security feature.... etc Plus it
> will do everything VPN3K has been doing as they announced that ASA is
> a complete super set of VPN3K.
> (nac, web vpn with lots of features etc ) Ofcourse some of these
> features are already existing in 7.2
>
> Thanks
> Kal
>
>
> On 2/22/07, M A wrote:
> >
> > I get the feeling that 8.0 will only run on the ASA, not the PIX.
> > Does anyone know for sure?
> >
> > Thanks.
> > ----- Original Message -----
> > From: "Church, Chuck"
> > To: "Larry Roberts" ; "Christopher M.
> > Heffner"
> > Cc: ;
> > Sent: Wednesday, February 21, 2007 11:47 PM
> > Subject: RE: ASA 8.0
> >
> >
> > > How about support for traffic shaping, and NBAR (without needing a
> > > separate IDS module)? Those would be nice for one customer I deal
> > > with
> > > - Wireless ISP, limited bandwidth, has VoIP, and P2P traffic :(
> > >
> > >
> > > Chuck Church
> > > Network Engineer
> > > CCIE #8776, MCNE, MCSE
> > > Multimax, Inc.
> > > Enterprise Network Engineering
> > > Home Office - 864-335-9473
> > > Cell - 864-266-3978
> > > cchurch@multimax.com
> > >
> > > -----Original Message-----
> > > From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On
> > > Behalf Of Larry Roberts
> > > Sent: Wednesday, February 21, 2007 8:05 PM
> > > To: Christopher M. Heffner
> > > Cc: Kaleem Khawaja; Tim; ccielab@groupstudy.com;
> > > security@groupstudy.com
> > > Subject: Re: ASA 8.0
> > >
> > > I will give you a teaser...
> > >
> > > Think proprietary enhanced best path indicator....
> > >
> > >
> > > I'm running the beta code for 8.0 and ASDM 6.0 and it seems pretty
> > > good. The changes made to ASDM make it more user friendly as well.
> > > I have been focused on its certificate support for SSL and remote
> > > admin but I plan to dig into it in more depth shortly.
> > >
> > > And before the question comes in, no I wont give it out....
> > >
> > > :)
> > >
> > >
> > > Larry
> > >
> > > Christopher M. Heffner wrote:
> > >> Tim,
> > >>
> > >> Cisco PIX/ASA 8.0 is still in beta testing so the only
> > >> documentation available at this time is for the beta testers. I
> > >> can tell you that there are some really "COOL A**" changes coming
> > >> down the line that I have been testing in the beta program.
> > >>
> > >> Cisco is going all out with this release!
> > >>
> > >> Stay tuned for the official release in the near future.
> > >>
> > >> Regards,
> > >>
> > >> Christopher M. Heffner, CCIE 8211, CCSI 98760 Strategic Network
> > >> Solutions, Inc.
> > >>
> > >>
> > >>
> > >>
> > >> -----Original Message-----
> > >> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On
> > >> Behalf
> > > Of
> > >> Kaleem Khawaja
> > >> Sent: Wednesday, February 21, 2007 2:53 PM
> > >> To: Tim
> > >> Cc: ccielab@groupstudy.com; security@groupstudy.com
> > >> Subject: Re: ASA 8.0
> > >>
> > >> Tim,
> > >>
> > >> I think you are correct, it seems that some one jumped the gun on
> > >> this
> > >>
> > >> take a look
> > >>
> > >> http://www.breezy.ca/?q=node/116
> > >> and
> > >>
> > >> http://www.linksysinfo.org/forums/showthread.php?t=51386
> > >>
> > >>
> > >> On 2/21/07, Tim wrote:
> > >>
> > >>> Hey Kaleem,
> > >>>
> > >>>
> > >>>
> > >>> Yep, I had this. I was looking for technical details, not
> > >>> marketing glitz.
> > >>>
> > >>>
> > >>>
> > >>> I think that maybe Cisco hasn't posted any real tech info on
> > >>> this
> > > yet.
> > >>>
> > >>>
> > >>>
> > >>> But, I donno for sure.
> > >>>
> > >>>
> > >>>
> > >>> Thanks, Tim
> > >>>
> > >>>
> > >>> ------------------------------
> > >>>
> > >>> *From:* Kaleem Khawaja [mailto:kaleem.khawaja@gmail.com]
> > >>> *Sent:* Wednesday, February 21, 2007 12:15 PM
> > >>> *To:* Tim
> > >>> *Cc:* security@groupstudy.com
> > >>> *Subject:* Re: ASA 8.0
> > >>>
> > >>>
> > >>>
> > >>> Tim,
> > >>>
> > >>> I am not sure if you have looked at this already or not, but
> > >>> here is
> > >>>
> > >> one
> > >>
> > >>> presentation
> > >>>
> > >>>
> > >>
> > > http://www.cisco.com/application/pdf/en/us/guest/products/ps6120/c
> > > 1161/c
> > >> dccont_0900aecd805c768e.pdf
> > >>
> > >>>
> > >>> On 2/21/07, *Tim* wrote:
> > >>>
> > >>> Hi Guys,
> > >>>
> > >>>
> > >>>
> > >>> I've spent hours trying to find detailed info on what's new with
> > >>>
> > >> version
> > >>
> > >>> ASA
> > >>> 8.0
> > >>>
> > >>>
> > >>>
> > >>> So far, no luck.
> > >>>
> > >>>
> > >>>
> > >>> Is the info just not posted yet?
> > >>>
> > >>>
> > >>>
> > >>> If anyone knows where to find this info, can you post the links?
> > >>>
> > >>>
> > >>>
> > >>> TIA, Tim
>
>
>
>
> ---------------------------------
> Need a quick answer? Get one in minutes from people who know. Ask your
question on Yahoo! Answers.
This archive was generated by hypermail 2.1.4 : Thu Mar 01 2007 - 07:38:48 ART