RE: ASA 5505 VPN

Ah, who knew!

A single s2s vpn could be done with any pair of routers. Purchase sec IOS for fw and I would think that would be enough for a simple topo.

Thanks,
Paul (#16842 RS/Sec)

-----Original Message-----
From: Ryan West [mailto:rwest_at_zyedge.com]
Sent: Tuesday, May 03, 2011 11:07 PM
To: Paul Dardinski; dls152_at_cox.net; ccielab_at_groupstudy.com
Subject: RE: ASA 5505 VPN

Hey Paul,

There is a host check on the 5505 with base license that will allow no more than 10 users behind the higher security interfaces. I believe it does an xlate check to determine the number. The licensing can be defeated with a NAT box behind the firewall though, not that I would condone that sort of behavior.

-ryan

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of Paul Dardinski
Sent: Tuesday, May 03, 2011 10:41 PM
To: dls152_at_cox.net; ccielab_at_groupstudy.com
Subject: RE: ASA 5505 VPN

Am I reading this wrong?

Everyone saying no, but I'm not quite seeing why not. 100 users here, but not relevant as this is a single s2s vpn, only dynamic is traffic volume, right? It's not 100 users each creating their own dynamic p2p vpns......

I'm not the master of all things licensing, so maybe I'm out in left field...

Paul (#16842 RS/Sec)

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of dls152_at_cox.net
Sent: Tuesday, May 03, 2011 4:46 PM
To: ccielab_at_groupstudy.com
Subject: ASA 5505 VPN

I am trying to find out if I can use 5505 with base license for one site-to-site VPN with 100+ user and on internet connection?

Thx!

Blogs and organic groups at http://www.ccie.net
Received on Wed May 04 2011 - 06:28:07 ART