Cisco ASA 5580 Adaptive Security Appliance Command Line Configuration Guide, Version 8.1
Feature Licenses and Specifications
Downloads: This chapterpdf (PDF - 91.0KB) The complete bookPDF (PDF - 16.73MB) | Feedback

Feature Licenses and Specifications

Table Of Contents

Feature Licenses and Specifications

Supported Platforms and Feature Licenses

VPN Specifications


Feature Licenses and Specifications


This appendix describes the feature licenses and specifications. This appendix includes the following sections:

Supported Platforms and Feature Licenses

VPN Specifications


Note The ASA 5580 adaptive security appliance does not support security service modules (SSMs).


Supported Platforms and Feature Licenses

This software version supports the ASA 5580 adaptive security appliance; see the following table for the feature support for this model.


Note Items that are in italics are separate, optional licenses that you can replace the base license. You can mix and match licenses, for example, the 10 security context license plus the Strong Encryption license; or the 500 Clientless SSL VPN license plus the GTP/GPRS license; or all four licenses together.


Table A-1 ASA 5580 Adaptive Security Appliance License Features 

ASA 5580
Base License

Users, concurrent

Unlimited

Security Contexts

2

Optional licenses:

5

10

20

50

VPN Sessions1

5000 combined IPSec and SSL VPN

Max. IPSec Sessions

5000

Max. SSL VPN Sessions

2

Optional licenses:

10

25

50

100

250

500

750

1000

2500

5000

Optional VPN Flex licenses:2

250

750

1000

2500

5000

VPN Load Balancing

Supported

Advanced Endpoint Assessment

None

Optional license: Enabled

TLS Proxy for SIP and Skinny Inspection3

Supported

Failover

Active/Standby or Active/Active4

GTP/GPRS

None

Optional license: Enabled

Max. VLANs

Version 8.1(1): 100

Version 8.1(2) and later: 250

Concurrent Firewall Conns

5580-20: 1,000 K

5580-40: 2,000 K

Max. Physical Interfaces

Unlimited

Encryption

Base (DES)

Optional license: Strong (3DES/AES)

Min. RAM

4 GB (default)

1 Although the maximum IPSec and Clientless SSL VPN sessions add up to more than the maximum VPN sessions, the combined sessions should not exceed the VPN session limit. If you exceed the maximum VPN sessions, you can overload the adaptive security appliance, so be sure to size your network appropriately.

2 Available in Version 8.1(2) and later.

3 Other Unified Communications features are not supported in Version 8.1.

4 You cannot use Active/Active failover and VPN; if you want to use VPN, use Active/Standby failover.


VPN Specifications

For VPN specifications, see the Cisco ASA 5500 Series VPN Compatibility Reference.