[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


ASA 5510-K9

Posted on 2009-04-16
Medium Priority
Last Modified: 2012-06-22

I have this asa firewall, sh ver is attached.
It shows that it has only 50 VPN peers, is it supposed to have 250 vpn??. VPN-3DES is disabled and vpn is 50, so what exactly the name of this ASA,

how to upgrade to 250 VPN and 3 DES enabled

thank you
# sh ver
Cisco Adaptive Security Appliance Software Version 7.0(5)
Device Manager Version 5.0(5)
Compiled on Mon 10-Apr-06 14:40 by builders
System image file is "disk0:/asa705-k8.bin"
Config file at boot was "startup-config"
ciscoasa up 19 hours 31 mins
Hardware:   ASA5510, 256 MB RAM, CPU Pentium 4 Celeron 1600 MHz
Internal ATA Compact Flash, 256MB
BIOS Flash AT49LW080 @ 0xffe00000, 1024KB
Encryption hardware device : Cisco ASA-55x0 on-board accelerator (revision 0x0)
                             Boot microcode   : CNlite-MC-Boot-Cisco-1.2
                             SSL/IKE microcode: CNlite-MC-IPSEC-Admin-3.03
                             IPSec microcode  : CNlite-MC-IPSECm-MAIN-2.04
 0: Ext: Ethernet0/0         : address is 0018.7317.9454, irq 9
 1: Ext: Ethernet0/1         : address is 0018.7317.9455, irq 9
 2: Ext: Ethernet0/2         : address is 0018.7317.9456, irq 9
 3: Ext: Not licensed        : irq 9
 4: Ext: Management0/0       : address is 0018.7317.9453, irq 11
 5: Int: Not licensed        : irq 11
 6: Int: Not licensed        : irq 5
Licensed features for this platform:
Maximum Physical Interfaces : 4
Maximum VLANs               : 10
Inside Hosts                : Unlimited
Failover                    : Disabled
VPN-DES                     : Enabled
VPN-3DES-AES                : Disabled
Security Contexts           : 0
GTP/GPRS                    : Disabled
VPN Peers                   : 50
This platform has a Base license.
Serial Number: JMX1XXXXXXXXX
Configuration register is 0x1
Configuration last modified by enable_15 at 14:04:06.079 UTC Tue Apr 14 2009

Open in new window

Question by:yeerduran
  • 2

Accepted Solution

Donboo earned 2000 total points
ID: 24159995
The reason is that the first version 7.0.x only allowed 50 VPN peers and 10 VLANs.

So if you upgrade to either version 7.2.x or 8.x then it will display the correct VPN peers which is 250 as you say and 100 VLANs (I think it is).


Author Comment

ID: 24160018
Thanks Donboo,

What about 3DES option, should it be enabled?

Expert Comment

ID: 24161108
If I remember correct then 3des will be enabled in 7.1 or 7.2 and later since they changed the roadmap for licensing when they changed the VPN peers and VLANs but kept the security plus licens. I recently configured 2 ASA5510 with base licens and they had 3DES and AES enabled so I am pretty sure that if you upgrade you should have everything you need except Security contexts, GTP/GPRS and failover.

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When speed and performance are vital to revenue, companies must have complete confidence in their cloud environment.
A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month18 days, 20 hours left to enroll

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question