Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

PIX or ASA

Status
Not open for further replies.
R3AP3R

R3AP3R

IS-IT--Management
Mar 5, 2008
17
US
Ok right now i got a office running off of a 3640 with no issues. I was thinking of getting a 525 PIX, but with all the talk about ASA, is it even worth it ? i know PIX is still widely used in production networks, so its hard to choose which platform to go with... What you guys running in your production networks ?
 
Sort by date Sort by votes
As Matt said PIX is now EOS so ordering new is not an option. ASA is massively more powerful and offers all the same features (PIX code 7.x & 8.x, so no legacy PIX 6.x features) so why would you want to go down the PIX route anyway? Unless you want PPTP VPN (that is all I can think of that PIX 6.x supports that PIX 7.x doesn't?) then go with the ASA.

Andy

 
Upvote 0 Downvote
ASA is definitely the next logical choice because of its "multi function" capabilities. You get parity features of the VPN concentrator, the proven firewall capabilities of the PIX and an optional IDS or AntiVirus/Spam module.

If you invest in a PIX today just make sure you get a good deal. Solid firewall worth the investment even if it is EoL.


What makes you want to get a PIX? Is your current router running IOS firewall?

 
Upvote 0 Downvote
There are so many threats to your network, viruses, worms, phising ect, I think most organizations dont want to have a PIX performing firewall filtering and another device protecting your network from other threats. Most people we speak with want an all in one box or UTM device. I think the ASA is your best option.



 
 http://www.infinit-tech.com/Cisco-Security-and-VPN.php
Upvote 0 Downvote
Thx everyone for all the valuable info. right now we dont have a firewall or IDS, so i would think it would be a great idea to get an ASA. (also gonna be bad ass to learn something new). Right now we just have a 3640 doing all layer 3 work and thats it ! i just walked into this environment so im trying to put together a hardware list to my boss and ASA 5510 will be a part of it. Thx again
 
Upvote 0 Downvote
You could use IOS Firewall on the router. How large is the network? ASA is pretty great but as always you dont want to drive a Cadillac if you cant afford the gas.

 
Upvote 0 Downvote
Network consist of 30+ Lan computers and 20+ phones. I was also looking into the 2800 series as they have replaced the old 2600/3600. Think I might be better off getting a vpn/firewall image on a 2811 and running with it ?
 
Upvote 0 Downvote
Yes. Sounds like a small network. Router Based Firewall is a very flexible firewall. For the AntVirus/Spyware you could always control that on the host.

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
336
Johnkite
Johnkite
intel233
  • Locked
  • Question
Cisco ASA - VPN Question
Replies
6
Views
340
intel233
intel233
gkreg
  • Locked
  • Question
asa 5500-x url filtering
Replies
0
Views
226
gkreg
gkreg
intel233
  • Locked
  • Question
Cisco ASA 5510 -Static NAT Help
Replies
8
Views
378
intel233
intel233
AllenH12
  • Locked
  • Question
Bandwidth in Cisco ASA 5505
Replies
2
Views
223
AllenH12
AllenH12

Part and Inventory Search

Sponsor

Back
Top