Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

ASA5505 50 User Bundle... what does this mean exactly

Status
Not open for further replies.

blade10

IS-IT--Management
Feb 2, 2008
144
US
All-

well I know its a silly question but just need to clarify if this also pertains to maximum allowable concurrent vpn sessions.

So with an ASA5505, how many users should can I allow to utilize VPN (IPSEC and(or) LAN to LAN)... is 50 it?

Just need to be sure..

thanks for any information at all!

blade
 
It refers to the number of hosts on the inside interface that will access resources outside.

say you have 51 computers the first 50 trying to access external resources will be allowed, number 51 will go nowhere fast.

The VPN peers are calculated separately from what I understand.
 
Thanks HighSpade-

wow that clears up alot!

Had no idea thats what it meant..

Do you by any chance know how many VPN peers the 5505 supports? if it capped let's say 500 simultaneous users, would I need a different license and(or) upgraded IOS in order to support more VPN connections?

thanks again
blade
 
Highspade-

So when you say 25 remote access, you mean 25 individual and simultaneous users correct? and site tunnels would be (site to site vpn or they might also call it lan to lan vpn)..

Is what I am stating correct? I just need to know if my terminology is correct..

thanks so much
blade
 
The base model has 10 simultaneous VPN connections. That is client and L2L vpn sessions combined. The Security plus ups this to 25 but it is still the total not separately.


Brent
Systems Engineer / Consultant
CCNP, CCSP
 
Hi SG!

What about on the 5510? what are the total combined amount of LtoL and remote VPN connections.. My apologies but this customer has the 5510, they originally stated they had a 5505 but that is not accurate... I have not been on site yet but they do in fact have 2 5510's

thanks again!

blade
 
The 5510 (great box BTW) has 250 total VPN connections. If you need more than that you have to go to the 5520 with 750. On the 5505 the security plus license adds vpn connections but on the 5510 it doesn't. Just extra interfaces and vlans.

Security plus on 5510 also adds multiple contexts, extra firewall connections (not VPN), and failover.

Hope this helped.



Brent
Systems Engineer / Consultant
CCNP, CCSP
 
Thanks again Brent!

Definately psyched to implement this... One "gotcha" here is that they have over 200 users currently setup on a VPN Concentrator 3005 and although it has been there a while chugging away, I need to get a report from the Concentrator on all the users I will need to migrate over to the ASA for VPN use.. they also purchased an IPS module (I'm not sure if that is the accurate acronym for it but it is for Intrusion Prevention..

This should be a great challenge and looking forward to it!
A bit nervous in how this VPN migration is going to go forward without creating a "pie in the sky" scenario for the customer.. they must realize there will be downtime VPN-usage wise until I can move users over.. I'll plan this is various phases I suppose...

Should be fun!!

blade
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top