Solved

User licensing on Cisco PIX firewall

Posted on 2008-10-20
7
218 Views
Last Modified: 2010-04-09
Hello,

I want to buy a Cisco Firewall for my web server but m not sure as to what and how is the user license and the RAM on the firewall will effect my server. And how many user lincenses do i need.

thanks
0
Comment
Question by:UlHaq
  • 5
  • 2
7 Comments
 
LVL 57

Expert Comment

by:Pete Long
ID: 22756032
Cisco ASA is a hardware firewall appliance? there is no software Cisco firewall solution, you configure and mount the firewall (In from or beside your web server)
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 22756036
0
 

Author Comment

by:UlHaq
ID: 22756134
Thank you very much for your quick reply.

I have read the link you posted, but I m sorry I think you misunderstood my question. I was strugling with the amount of RAM and how many user lincenses are required for a Web server. Becuase I am not sure which firewall should i buy with how many user licenses and how much ram will be suitable for our web server with approximately 2000 hits per day.

Hope now I have clear my requirement.

Thanks
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 57

Expert Comment

by:Pete Long
ID: 22756897
User licences on Windows servers are not a problem for website connections
As for Server RAM - it depends on what else the Server is running? Web services don't have a great overhead, but if your running Databases that the web site uses on the same box then - you need more, also what version of server are you running? this will dictate how much memory can be addressed?

As for a firewall model - In you case Id suggest a Cisco 5510 with a security Plus Licence, then you can drop your Web server in a DMZ
0
 

Author Comment

by:UlHaq
ID: 22757360
Thank you for your reply.

It has given rise to another question in my mind and that is, the traffic is going to come to the webserver "first" then it will forward it to the firewall which in turn will forward request to the database and to the rest of the servers connected. Becuase in DMZ, normally an application server is kept in the middle of a webserver and database server. Am I right?

And What if I keep the webserver behind the firewall, will it effect the performance of my web application?

Thanks alot.
0
 
LVL 57

Accepted Solution

by:
Pete Long earned 500 total points
ID: 22757597
>>is, the traffic is going to come to the webserver "first" then it will forward it to the firewall

no the firewall is an edge device, Internet traffic comes to the firewall, then the firewall sends it to the web server, it does not matter to the firewall if the web server is behind(inside) or beside (in a dmz).


>>And What if I keep the web server behind the firewall, will it effect the performance of my web application?

I have clients with Very active web servers sat in a DMZ that talk to Databases behind the firewall and they get thousands of hits a day, the firewall introduces next to no latency in the web traffic.

0
 
LVL 57

Expert Comment

by:Pete Long
ID: 22759261
ThanQ
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Wireless antenna advice/design 6 48
How do I grant a service account specific permissions to query Active Directory 3 50
Static Route 22 45
Cisco Prime and Maps 3 32
If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Overview The Cisco PIX 501, PIX 506e, ASA 5505 and ASA 5510 (most if not all of this information will be relevant to the PIX 515e but I do not have a working configuration handy to verify the validity) are primarily used within small to medium busi…
I designed this idea while studying technology in the classroom.  This is a semester long project.  Students are asked to take photographs on a specific topic which they find meaningful, it can be a place or situation such as travel or homelessness.…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now