?
Solved

Cisco PIX firewall 515e, version 6.2 capabilities.

Posted on 2003-02-22
5
Medium Priority
?
149 Views
Last Modified: 2013-11-16
I want to know how manny connections can my cisco pix firewall detailed above can handle. What I have found on the cisco site is that PIX firewalls can handle from 64,000 connections to 250,000, but could ot get particular information for mine.

If someone knows please tell me.

I want that information, so that I can know if I can be able to put my entire LAN behind it. My LAN has about 4000 PCs. BUt it has some smaller LANs too, like 4 depertments.

I have two Cisco Secure PIX firewall, and my worry is that, can I put all my depertments behind a PIX, or should I choose some depertments and leave others?

I'm not good in english wording, but you can get the picture of what I'm trying to explain.
0
Comment
Question by:oneyg
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 7998969

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/

You can't go on the number of simultaneous connections that on model will handle. It depends on the license as much as the model.
Example, a 515-Restricted license will only handle 10,000 connections. a 515 with UNrestricted license will handle up to 64,000
"Designed for small and medium businesses"
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a0080091b15.html

A 525 with UNrestricted license will support up to 280,000 connections. Considering that one PC can generate 10-20 simultaneous connections by itself, you need a fairly powerful firewall for 4000 plus users.
My suggestion is to use the 525 Unrestricted license.
 "Ideal for protecting the Enterprise Headquarters' perimeter"
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a0080091b09.html

You might even want to consider a 535 for that many users.
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a008007d05d.html
0
 
LVL 1

Author Comment

by:oneyg
ID: 8005363
Thanx for your comment Irmoore.

if i use my PIX (515 that is) on a smaller LAN, like one of the deprtment which has about 1000 users or less, will it handle?
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 300 total points
ID: 8006250
To be honest, I would not use a 515 for anything over 250-500 users unless I absolutely had to. Do you know if you have the Unrestricted or Restricted license? If you're not using any IPSEC or much inbound filtering, then you might get away with it.

You might just want to keep the 515 as a lab/testing firewall so that you can test any changes that you may want to implement before you change a production firewall.
0
 
LVL 1

Author Comment

by:oneyg
ID: 8008785
thanx again irmoore, how do I know if I use restricted or unrestricted license?

I'm sorry if I sound too unproffessional! but you are giving me a great help!

hope to read more from you!
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 8139196
"sho ver" should tell you if you have restricted/unrestricted license.
0

Featured Post

WordPress Tutorial 3: Plugins, Themes, and Widgets

The three most common changes you will make to your website involve the look (themes), the functionality (plugins), and modular elements (widgets).

In this article we will briefly define each again, and give you directions on how to install them.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
This month, Experts Exchange’s free Course of the Month is focused on CompTIA IT Fundamentals.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses
Course of the Month12 days, 15 hours left to enroll

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question