manualshive.com logo in svg

Cisco Cisco ASA 5500 Series, Datasheet

Get your hands on the Cisco ASA 5500 Series datasheet and user manual for free! Explore the power and capabilities of this networking marvel by downloading the manual from our website. Gain easy access to in-depth information and unleash the potential of your Cisco ASA 5500 series device.

Share
Download
background image

 

 

© 2005 Cisco Systems, Inc. All rights reserved. 

Important notices, privacy statements, and trademarks of Cisco Systems, Inc. can be found on cisco.com. 

Page 14 of 20 

 
 

Feature 

 

Benefit

 

Flexible Syslog and 
Security Device Event 
Exchange (SDEE) 
Monitoring

 

 

Enables the real time monitoring of the Cisco ASA 5500 Series through the management console or through 
external syslog servers

 

 

Delivers accurate time stamping and numbering of syslog messages while supporting multiple syslog servers over 
either TCP or UDP as the transport protocol

 

 

Provides seven levels of syslog filtering to cater to the monitoring needs of businesses of all sizes

 

 

Ensures critical messages are not lost under busy network conditions by providing message buffering locally on 
the appliance

 

 

Supports fine-grain control over syslog messages through a variety of methods, including support for changing 
priority of syslog messages, the ability to disable specific syslog messages, enabling or suppressing logging on a 
per-ACL entry (ACE) basis, etc.

 

Software and Configuration 
File Import and Export

 

 

Provides the ability to import configuration and software files for rapid provisioning and deployment using Trivial 
File Transfer Protocol (TFTP), HTTP, HTTPS, or Secure Copy Protocol (SCP) 

 

Supports exporting configuration data through TFTP and SCP for off-device configuration storage

 

SSH and SCP

 

 

Includes support for using both SSHv1 and SSHv2 to remotely manage Cisco ASA 5500 Series appliances, 
providing improved compatibility with third-party SSH tools 

 

Provides SCP support as another secure method for transferring files, such as configuration and software images, 
to and from Cisco ASA 5500 Series appliances

 

Storage of multiple 
configurations and software 
images in flash memory

 

 

Enables administrators to perform configuration rollback and offers the ability to store and use multiple 
configurations and software images in compact flash memory

 

Secure Asset Recovery

 

 

Prevents unauthorized access to sensitive configuration data, certificates, and key material stored on Cisco ASA 
5500 Series appliances by automatically wiping flash memory contents if an asset recovery or password reset 
procedure occurs (if preconfigured to do so)

 

Scheduled System Reloads

 

 

Allows administrators to schedule a reload on a Cisco ASA 5500 Series appliance either at a specific time or at an 
offset from the current time, making it simpler to schedule network downtime and notify remote-access VPN users 
of an impending reboot

 

Dedicated Out-of-Band 
Management Interface

 

 

Enables businesses to implement the best practice of using out-of-band management for their Cisco ASA 5500 
Series appliances, as described in the SAFE Blueprint from Cisco, through the ability to designate the onboard 
Fast Ethernet 10/100 management interface to act only as an out-of-band management interface

 

Packet Capture

 

 

Gives administrators powerful troubleshooting capabilities by providing robust packet-capturing facilities on each 
interface of the Cisco ASA 5500 Series appliance 

 

Supports several methods of accessing captured packets, including through the console, secure Web access, or a 
file exported to a TFTP server

 

Extended ICMP Ping 
Services

 

 

Delivers useful troubleshooting methods through support for IPv6 addresses and extended ICMP options, 
including data pattern, Don't Fragment (DF) bit, repeat count, datagram size, timeout interval, verbose output, and 
sweep range of sizes

 

SMTP E-Mail Alerts

 

 

Provides a convenient method for alerting administrators when critical events are encountered, by sending e-mail 
alert messages to administrator defined e-mail addresses

 

 

PRODUCT LICENSING 

Cisco ASA 5500 Series appliances provide licensing options to enable features including security contexts, GTP inspection, strong cryptography, 

as well as increasing VPN peer capacity and platform capabilities. 

Feature Licenses 

Security Context Licenses 

The Cisco ASA 5520 and 5540 can support up to 10 and 50 security contexts, respectively, where each context has its own separate security policies 

and administrative domain. These appliances include two contexts by default, and those contexts can be used for either Active/Active high 

Summary of Contents for Cisco ASA 5500 Series

Page 1: ...network antivirus and IP Security Secure Sockets Layer IPSec SSL VPN technologies deliver robust application security user and application based access control worm and virus mitigation malware protection and remote user and site connectivity Extensible Adaptive Identification and Mitigation services architecture Taking advantage of a modular services processing and policy framework the Cisco Adap...

Page 2: ...k detection coupled with advanced analysis techniques resulting in highly accurate threat classification that helps ensure appropriate mitigation actions are taken with no impact on legitimate network traffic Advanced Detection Techniques To help ensure that threats do not go unnoticed the Cisco ASA 5500 Series offers numerous methods to identify policy violations anomalous activity and vulnerabil...

Page 3: ...ologies that deliver tailored solutions to suit connectivity requirements providing employees company managed desktops with robust customizable remote access through an IPSec VPN For situations where endpoints are not company managed such as extranets Internet kiosks or employee owned desktops the Cisco ASA 5500 Series delivers WebVPN for SSL based remote access Taking advantage of Cisco remote ac...

Page 4: ...ents that require simultaneous dual stack support of IPv4 and IPv6 Quality of Service QoS Low Latency Queuing LLQ and Traffic Policing features support applications with demanding QoS requirements such as voice or video helping ensure an end to end network QoS policy latency sensitive traffic can be prioritized ahead of file transfer and other more delay tolerant traffic IP phone zero touch provis...

Page 5: ...cess VPN capabilities Alternatively it serves equally well in the network interior for interdepartmental access control and to guard against worms viruses and other malicious code that internal users may unwittingly bring into a network In small business and branch office environments the Cisco ASA 5500 Series serves as an all in one solution offering comprehensive threat prevention and VPN servic...

Page 6: ...ty of desktop server and network security solutions to determine the actual attack path and provide mitigation options thus simplifying security incident management for environments where dedicated security analysts may not be available Additionally Cisco offers the CiscoWorks Security Information Management Solution CiscoWorks SIMS which is well suited for large enterprises and managed security s...

Page 7: ...e tracking response validation Multipurpose Internet Mail Extensions MIME type validation and content control Uniform Resource Identifier URI length enforcement and more Tunneling Application Control Provides advanced inspection services to detect and optionally block instant messaging peer to peer file sharing and other applications tunneling through Web application ports Blocks popular instant m...

Page 8: ...in real time networking environments TAPI JTAPI over CTIQBE Security Services Supports inspection of various Cisco TAPI and JTAPI based applications that use CTIQBE including Cisco IP SoftPhone and the Cisco Customer Response solution Fragmented and Segmented Multimedia Stream Inspection Enables inspection of H 323 SIP and SCCP based voice and multimedia streams that have been fragmented or segmen...

Page 9: ...ts inbound and outbound access control lists ACLs for interfaces time based ACLs and per user or group policies for improved control over network and application usage Simplifies management of security policies by giving administrators the ability to create reusable network and service object groups that can be referenced by multiple security policies simplifying initial policy definition and ongo...

Page 10: ...PN Client Available on wide range of platforms including Microsoft Windows 98 ME NT 2000 and XP Sun Solaris Intel based Linux distributions and Apple Macintosh OS X Provides many innovative features including dynamic security policy downloading from Cisco Easy VPN Server enabled products automatic failover to back up Easy VPN Servers administrator customizable distributions and more Integrates wit...

Page 11: ... of a system or network failure network sessions are automatically transitioned between firewalls with complete transparency to users Active Active Stateful Failover Provides a complementary solution to Active Standby failover where both systems in an Active Active failover pair actively pass network traffic simultaneously effectively doubling the throughput of the failover pair for bursty network...

Page 12: ...ath routes Routing Information Protocol RIP Dynamic Routing Enables secure integration in RIP based enterprise networks by learning routing updates for both versions 1 and 2 of the protocol Protects against RIP based reconnaissance activities and DoS attacks by supporting plaintext and keyed MD5 authentication methods for RIPv2 Multicast Routing Streamlines the delivery of multimedia traffic in vi...

Page 13: ...l user database or through integration with enterprise databases either directly using TACACS and RADIUS or indirectly with Cisco Secure Access Control Server ACS Supports up to 16 levels of customizable administrative roles so that businesses can grant administrators and operations personnel the appropriate level of access to each appliance for example monitoring only access read only access to t...

Page 14: ...configuration data certificates and key material stored on Cisco ASA 5500 Series appliances by automatically wiping flash memory contents if an asset recovery or password reset procedure occurs if preconfigured to do so Scheduled System Reloads Allows administrators to schedule a reload on a Cisco ASA 5500 Series appliance either at a specific time or at an offset from the current time making it s...

Page 15: ... a Security Plus license This license increases port density on the platform by enabling the fourth Fast Ethernet port and removing the restriction on the out of band management port so that it can be repurposed to a general traffic port if desired Integration into switched network environments is simplified with this license as support for up to 10 VLANs is enabled Furthermore this upgrade licens...

Page 16: ...products listed in Table 3 for site to site VPN connectivity Table 3 Site to Site VPN Compatibility Between Cisco ASA 5500 Series and VPN Products VPN Gateway Versions Supported Cisco ASA 5500 Series Appliances Cisco ASA Software Version 7 0 1 and later Cisco IOS Software Routers Cisco IOS Software Release 12 1 6 T and later Cisco PIX Security Appliances Cisco PIX Security Appliance Software Versi...

Page 17: ...forms Supported Cisco ASA 5510 Adaptive Security Appliance Cisco ASA 5520 Adaptive Security Appliance Cisco ASA 5540 Adaptive Security Appliance Minimum RAM Cisco ASA 5510 256 MB Cisco ASA 5520 512 MB Cisco ASA 5540 1024 MB Minimum System Flash Memory 64 MB Expansion Cards Supported Cisco AIP SSM AIP SSM 10 AIP SSM 20 ORDERING INFORMATION To place an order visit the Cisco Ordering Home Page or ref...

Page 18: ...sion 7 0 Cisco Adaptive Security Device Manager Version 5 0 SERVICE AND SUPPORT Cisco offers a wide range of services programs to accelerate customer success These innovative service programs are delivered through a unique combination of people processes tools and partners resulting in high levels of customer satisfaction Cisco services help you protect your network investment optimize network ope...

Page 19: ...ssia Saudi Arabia Scotland Singapore Slovakia Slovenia South Africa Spain Sweden Switzerland Taiwan Thailand Turkey Ukraine United Kingdom United States Venezuela Vietnam Zimbabwe Copyright 2005 Cisco Systems Inc All rights reserved CCSP CCVP the Cisco Square Bridge logo Follow Me Browsing and StackWise are trademarks of Cisco Systems Inc Changing the Way We Work Live Play and Learn and iQuick Stu...

Page 20: ... 2005 Cisco Systems Inc All rights reserved Important notices privacy statements and trademarks of Cisco Systems Inc can be found on cisco com Page 20 of 20 ...

Reviews:

No comments

Related manuals for Cisco ASA 5500 Series

Kerio Tech Control Box 1000 Serie Quick Manual preview
Control Box 1000 Serie
Brand: Kerio Tech Pages: 24
Nortel 5009 Notice preview
5009
Brand: Nortel Pages: 2
3Com 3CR3MFA-92 Installation Manual preview
3CR3MFA-92
Brand: 3Com Pages: 176
Fortinet FortiGate 240D Quick Start Manual preview
FortiGate 240D
Brand: Fortinet Pages: 12
Barracuda CloudGen F183R Manual preview
CloudGen F183R
Brand: Barracuda Pages: 7
Barracuda Networks NG FIREWALL 5.0.3 Release Notes preview
NG FIREWALL 5.0.3
Brand: Barracuda Networks Pages: 24
Watchguard Firebox M4800 Quick Start Manual preview
Firebox M4800
Brand: Watchguard Pages: 2
Mooltipass Mini BLE User Manual preview
Mini BLE
Brand: Mooltipass Pages: 28
Lundix It SPC SmartBox User Manual preview
SPC SmartBox
Brand: Lundix It Pages: 62

Brands by name

Popular brands

Load more brands