?
Solved

User licensing on Cisco PIX firewall

Posted on 2008-10-20
7
Medium Priority
?
223 Views
Last Modified: 2010-04-09
Hello,

I want to buy a Cisco Firewall for my web server but m not sure as to what and how is the user license and the RAM on the firewall will effect my server. And how many user lincenses do i need.

thanks
0
Comment
Question by:UlHaq
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 2
7 Comments
 
LVL 57

Expert Comment

by:Pete Long
ID: 22756032
Cisco ASA is a hardware firewall appliance? there is no software Cisco firewall solution, you configure and mount the firewall (In from or beside your web server)
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 22756036
0
 

Author Comment

by:UlHaq
ID: 22756134
Thank you very much for your quick reply.

I have read the link you posted, but I m sorry I think you misunderstood my question. I was strugling with the amount of RAM and how many user lincenses are required for a Web server. Becuase I am not sure which firewall should i buy with how many user licenses and how much ram will be suitable for our web server with approximately 2000 hits per day.

Hope now I have clear my requirement.

Thanks
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 57

Expert Comment

by:Pete Long
ID: 22756897
User licences on Windows servers are not a problem for website connections
As for Server RAM - it depends on what else the Server is running? Web services don't have a great overhead, but if your running Databases that the web site uses on the same box then - you need more, also what version of server are you running? this will dictate how much memory can be addressed?

As for a firewall model - In you case Id suggest a Cisco 5510 with a security Plus Licence, then you can drop your Web server in a DMZ
0
 

Author Comment

by:UlHaq
ID: 22757360
Thank you for your reply.

It has given rise to another question in my mind and that is, the traffic is going to come to the webserver "first" then it will forward it to the firewall which in turn will forward request to the database and to the rest of the servers connected. Becuase in DMZ, normally an application server is kept in the middle of a webserver and database server. Am I right?

And What if I keep the webserver behind the firewall, will it effect the performance of my web application?

Thanks alot.
0
 
LVL 57

Accepted Solution

by:
Pete Long earned 2000 total points
ID: 22757597
>>is, the traffic is going to come to the webserver "first" then it will forward it to the firewall

no the firewall is an edge device, Internet traffic comes to the firewall, then the firewall sends it to the web server, it does not matter to the firewall if the web server is behind(inside) or beside (in a dmz).


>>And What if I keep the web server behind the firewall, will it effect the performance of my web application?

I have clients with Very active web servers sat in a DMZ that talk to Databases behind the firewall and they get thousands of hits a day, the firewall introduces next to no latency in the web traffic.

0
 
LVL 57

Expert Comment

by:Pete Long
ID: 22759261
ThanQ
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
WARNING:   If you follow the instructions here, you will wipe out your VTP and VLAN configurations.  Make sure you have backed up your switch!!! I recently had some issues with a few low-end Cisco routers (RV325) and I opened a case with Cisco TA…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question