Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Cisco PIX firewall 515e, version 6.2 capabilities.

Posted on 2003-02-22
Medium Priority
Last Modified: 2013-11-16
I want to know how manny connections can my cisco pix firewall detailed above can handle. What I have found on the cisco site is that PIX firewalls can handle from 64,000 connections to 250,000, but could ot get particular information for mine.

If someone knows please tell me.

I want that information, so that I can know if I can be able to put my entire LAN behind it. My LAN has about 4000 PCs. BUt it has some smaller LANs too, like 4 depertments.

I have two Cisco Secure PIX firewall, and my worry is that, can I put all my depertments behind a PIX, or should I choose some depertments and leave others?

I'm not good in english wording, but you can get the picture of what I'm trying to explain.
Question by:oneyg
  • 3
  • 2
LVL 79

Expert Comment

ID: 7998969


You can't go on the number of simultaneous connections that on model will handle. It depends on the license as much as the model.
Example, a 515-Restricted license will only handle 10,000 connections. a 515 with UNrestricted license will handle up to 64,000
"Designed for small and medium businesses"

A 525 with UNrestricted license will support up to 280,000 connections. Considering that one PC can generate 10-20 simultaneous connections by itself, you need a fairly powerful firewall for 4000 plus users.
My suggestion is to use the 525 Unrestricted license.
 "Ideal for protecting the Enterprise Headquarters' perimeter"

You might even want to consider a 535 for that many users.

Author Comment

ID: 8005363
Thanx for your comment Irmoore.

if i use my PIX (515 that is) on a smaller LAN, like one of the deprtment which has about 1000 users or less, will it handle?
LVL 79

Accepted Solution

lrmoore earned 300 total points
ID: 8006250
To be honest, I would not use a 515 for anything over 250-500 users unless I absolutely had to. Do you know if you have the Unrestricted or Restricted license? If you're not using any IPSEC or much inbound filtering, then you might get away with it.

You might just want to keep the 515 as a lab/testing firewall so that you can test any changes that you may want to implement before you change a production firewall.

Author Comment

ID: 8008785
thanx again irmoore, how do I know if I use restricted or unrestricted license?

I'm sorry if I sound too unproffessional! but you are giving me a great help!

hope to read more from you!
LVL 79

Expert Comment

ID: 8139196
"sho ver" should tell you if you have restricted/unrestricted license.

Featured Post

The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is a collection of issues that people face from time to time and possible solutions to those issues. I hope you enjoy reading it.
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

581 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question