Техническая Спецификация для Cisco ASA5550-SSL5000-K9
Data Sheet
© 2008 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 4 of 19
platform makes the Cisco ASA 5510 an excellent choice for businesses requiring a cost-effective,
extensible, DMZ-enabled security solution.
As business needs grow, customers can install a Security Plus license, upgrading two of the Cisco
ASA 5510 Adaptive Security Appliance interfaces to Gigabit Ethernet and enabling integration into
switched network environments through VLAN support. This upgrade license maximizes business
continuity by enabling Active/Active and Active/Standby high-availability services. Using the
optional security context capabilities of the Cisco ASA 5510 Adaptive Security Appliance,
businesses can deploy up to five virtual firewalls within an appliance to enable compartmentalized
control of security policies on a departmental level. This virtualization strengthens security and
reduces overall management and support costs while consolidating multiple security devices into a
single appliance.
Businesses can extend their SSL and IPsec VPN capacity to support a larger number of mobile
workers, remote sites, and business partners. Businesses can scale up to 250 SSL VPN peers on
each Cisco ASA 5510 by installing an SSL VPN upgrade license; 250 IPsec VPN peers are
supported on the base platform. VPN capacity and resiliency can also be increased by taking
advantage of the Cisco ASA 5510's integrated VPN clustering and load-balancing capabilities
(available if a Security Plus license is installed). The Cisco ASA 5510 supports up to 10 appliances
in a cluster, supporting a maximum of 2500 SSL VPN peers or 2500 IPsec VPN peers per cluster.
Table 2 lists features of the Cisco ASA 5510.
Table 2.
Cisco ASA 5510 Adaptive Security Appliance Platform Capabilities and Capacities
Feature
Description
Firewall Throughput
Up to 300 Mbps
Maximum Firewall and IPS Throughput
●
Up to 150 Mbps with AIP SSM-10
●
Up to 300 Mbps with AIP SSM-20
VPN Throughput
Up to 170 Mbps
Concurrent Sessions
50,000; 130,000***
IPsec VPN Peers
250
SSL VPN Peer License Levels*
10, 25, 50, 100, or 250
Security Contexts
Up to 5**
Interfaces***
Five Fast Ethernet ports; 2 Gigabit Ethernet + 3 Fast Ethernet***
Virtual Interfaces (VLANs)
50; 100***
Scalability***
VPN clustering and load balancing
High Availability
Not supported; Active/Active, Active/Standby***
* Separately licensed feature; includes two with the base system
** Separately licensed feature; includes two with the Cisco ASA 5510 Security Plus license
*** Upgrade available with Cisco ASA 5510 Security Plus license
Cisco ASA 5520 Adaptive Security Appliance
The Cisco ASA 5520 Adaptive Security Appliance delivers security services with Active/Active high
availability and Gigabit Ethernet connectivity for medium-sized enterprise networks in a modular,
high-performance appliance. With four Gigabit Ethernet interfaces and support for up to 100
VLANs, businesses can easily deploy the Cisco ASA 5520 into multiple zones within their network.
The Cisco ASA 5520 Adaptive Security Appliance scales with businesses as their network security
requirements grow, delivering solid investment protection.