The Cisco ASA 5540 appliances provide security services to medium to large enterprises. The Cisco ASA 5540 model supports a higher number of security contexts (50) to provide more flexibility and compartmentalized control of security policies. It also provides support for up to 10 appliances in a VPN cluster, supporting a maximum of 50,000 IPSec VPN peers per cluster (25,000 for WebVPN).
Cisco ASA 5540 is also a 1RU device. The external front and back layouts of Cisco ASA 5540 appliance are identical to those of the Cisco ASA 5510 and 5520 appliances. Figure 3-5 illustrates the front view of Cisco ASA 5540.
Figure 3-5. Cisco ASA 5540 Front View
Figure 3-6 illustrates the back view of Cisco ASA 5540.
Figure 3-6. Cisco ASA 5540 Back View
Table 3-3 lists the capabilities of the Cisco ASA 5540 appliance and its performance and connection limit numbers.
Description |
Without VPN Plus License |
With VPN Plus License |
With VPN Premium License |
---|---|---|---|
Firewall throughput |
Up to 650 Mbps |
Up to 650 Mbps |
Up to 650 Mbps |
3DES/AES IPSec VPN throughput |
Up to 325 Mbps |
Up to 325 Mbps |
Up to 325 Mbps |
Connections |
280,000 |
280,000 |
280,000 |
IPSec VPN peers |
500 |
2000 |
5000 |
WebVPN peers |
500 |
1250 |
2500 |
Interfaces |
Four Gigabit Ethernet ports for security services and one Fast Ethernet port for OOB management |
Four Gigabit Ethernet ports for security services and one Fast Ethernet port for OOB management |
Four Gigabit Ethernet ports for security services and one Fast Ethernet port for OOB management |
Virtual interfaces (VLANs) |
100 |
100 |
100 |
High availability |
Active/Active and Active/Standby |
Active/Active and Active/Standby |
Active/Active and Active/Standby |
VPN scalability |
VPN clustering and load balancing |
VPN clustering and load balancing |
VPN clustering and load balancing |
Threat mitigation throughput (IPS, firewall, and Anti-X) |
Up to 450 Mbps with AIP-SSM-20 |
Up to 450 Mbps with AIP-SSM-20 |
Up to 450 Mbps with AIP-SSM-20 |
Security contexts |
Up to 50 |
Up to 50 |
Up to 50 |
Part I: Product Overview
Introduction to Network Security
Product History
Hardware Overview
Part II: Firewall Solution
Initial Setup and System Maintenance
Network Access Control
IP Routing
Authentication, Authorization, and Accounting (AAA)
Application Inspection
Security Contexts
Transparent Firewalls
Failover and Redundancy
Quality of Service
Part III: Intrusion Prevention System (IPS) Solution
Intrusion Prevention System Integration
Configuring and Troubleshooting Cisco IPS Software via CLI
Part IV: Virtual Private Network (VPN) Solution
Site-to-Site IPSec VPNs
Remote Access VPN
Public Key Infrastructure (PKI)
Part V: Adaptive Security Device Manager
Introduction to ASDM
Firewall Management Using ASDM
IPS Management Using ASDM
VPN Management Using ASDM
Case Studies