User licensing on Cisco PIX firewall

Posted on 2008-10-20
Last Modified: 2010-04-09

I want to buy a Cisco Firewall for my web server but m not sure as to what and how is the user license and the RAM on the firewall will effect my server. And how many user lincenses do i need.

Question by:UlHaq
  • 5
  • 2
LVL 57

Expert Comment

by:Pete Long
ID: 22756032
Cisco ASA is a hardware firewall appliance? there is no software Cisco firewall solution, you configure and mount the firewall (In from or beside your web server)
LVL 57

Expert Comment

by:Pete Long
ID: 22756036

Author Comment

ID: 22756134
Thank you very much for your quick reply.

I have read the link you posted, but I m sorry I think you misunderstood my question. I was strugling with the amount of RAM and how many user lincenses are required for a Web server. Becuase I am not sure which firewall should i buy with how many user licenses and how much ram will be suitable for our web server with approximately 2000 hits per day.

Hope now I have clear my requirement.

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

LVL 57

Expert Comment

by:Pete Long
ID: 22756897
User licences on Windows servers are not a problem for website connections
As for Server RAM - it depends on what else the Server is running? Web services don't have a great overhead, but if your running Databases that the web site uses on the same box then - you need more, also what version of server are you running? this will dictate how much memory can be addressed?

As for a firewall model - In you case Id suggest a Cisco 5510 with a security Plus Licence, then you can drop your Web server in a DMZ

Author Comment

ID: 22757360
Thank you for your reply.

It has given rise to another question in my mind and that is, the traffic is going to come to the webserver "first" then it will forward it to the firewall which in turn will forward request to the database and to the rest of the servers connected. Becuase in DMZ, normally an application server is kept in the middle of a webserver and database server. Am I right?

And What if I keep the webserver behind the firewall, will it effect the performance of my web application?

Thanks alot.
LVL 57

Accepted Solution

Pete Long earned 500 total points
ID: 22757597
>>is, the traffic is going to come to the webserver "first" then it will forward it to the firewall

no the firewall is an edge device, Internet traffic comes to the firewall, then the firewall sends it to the web server, it does not matter to the firewall if the web server is behind(inside) or beside (in a dmz).

>>And What if I keep the web server behind the firewall, will it effect the performance of my web application?

I have clients with Very active web servers sat in a DMZ that talk to Databases behind the firewall and they get thousands of hits a day, the firewall introduces next to no latency in the web traffic.

LVL 57

Expert Comment

by:Pete Long
ID: 22759261

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Shoretel QoS Configuration on Cisco Switches 9 55
WAN Site Edge Routers 15 56
RDP on 4321 Router 33 64
Cisco 3650 switch 7 35
Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
This article will cover setting up redundant ISPs for outbound connectivity on an ASA 5510 (although the same should work on the 5520s and up as well).  It’s important to note that this covers outbound connectivity only.  The ASA does not have built…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question