The vs ASA55xx 800 series routers

Can someone give me a kind of overview of the differences between the devices of the ASA and 800 series routers (specifically 871)?

Mainly interested in VPN and security, but everything that can give me an idea of which one fits my scenario is greatly appreciated.

I have several agencies that I'll set up, a few small (1 WinXP), support (WinXP 5-15, 1-10 VPN), some big (for me) (10-100 WinXP, 10-50 VPN).

I am also interested in the same question.

You may want to look at

http://www.Cisco.com/application/PDF/en/us/guest/products/ps2030/C1650/ccmigration_09186a00801daa53.PDF

ASA firewalls are certainly faster than the 800 series routers, but for small offices (10 users), it may be not important. I like the ASA 5505 because there a switch 8 ports built-in, while the 871 has a 4 port switch.

One thing to remember is that, although the ASA has a FEW abilities of routing... it is first a firewall. So, you lose some flexibility by going with an ASA you may have a router. (for example: I don't think that the SAA can be a "router on a stick" with packets routed in & out on the same interface)

However, on the router 871 with all the features of firewall, to ensure that firewall features are enabled and configured... by default the SAA is a firewall... not to not do anything except plug it in and the firewall features are run automatically.

That's my opinion anyway

Thomas

Tags: Cisco Security

Similar Questions

  • 800 series and VPN

    Hi all

    I have searched high and low for answering this question and came from far away confused.

    Should I DMVPN in order to use a VPN endpoint behind a perfomring NAT router?

    ISP---> Internet router---> 800

    In addition, if the answer is no, then can al of the 800 series and soho routers support this?

    I appreciate really all help with that.

    I'm glad to hear that.

    If you have any other questions, let us know

    Please evaluate the useful messages.

    Federico.

  • Australian release for HP IQ 800 series date - someone has an idea?

    The touchsmart IQ800 series computers were available in the markets of USA, Europe and Asia for almost a year. Despite several requests remained unanswered, in August 2009, the uncompromising HP still refuses to give Australian clients a final release date. The 800 series is clearly an important step of the 500 series, throughout all the technical characteristics of the product.  If, like me, you're interested in investing in one, the only option available to Australian customers at the moment, is to import from Asia or USA at risk and cost.  Having expressed my dissatisfaction, someone at - he a clue regarding when this model will be available in this country?

    HP headquarters informed me today that the IQ818a is available through Harvey Norman on special order only.

    As a solution to this issue, they also advised a new IQ series (record still forthcoming) version will be available on the market in October 2009.

  • 800 series vpn site to site?

    Hello, I have a brand new pair of 851w with ios version 12.4 (15) T7. I can't seem to get a vpn site-to set up, I was able to use these seccessfully 800 series in the past. I have stripped the configs down to the essentials and still cannot be established.

    When I do a crypto session see the everything seems okay, but the connection is "down".

    I'm not 100% sure on my cryptographic transformation

    "crypto ipsec transform-set esp - aes AES-SHA-compression hmac-sha-esp computer-lzs" I'm not sure that the 800 series will support encryption or if I should use something else.

    I have attached the configs.

    You must change the configuration of: -.

    the IP nat inside source 1 interface 4 overload list

    TO

    IP nat inside source overload map route interface FastEthernet4 sheep

    HTH >

  • IRiver ifp - 800 series drive work in Windows 7 is?

    Can I change the title: iriver ifp-800 driver

    No matter who makes the ifp-800 series iRiver player work in Windows 7?

    Hello

    Unfortunately, iRiver iFP-800 is not compatible with Windows 7.

    For your reference: http://www.microsoft.com/windows/compatibility/windows-7/en-us/Search.aspx?l=en-us&type=Hardware&s=iriver%20ifp-800%20&os=64-bit

    http://www.iriver.com/product/view.asp?pcode=003&pNo=28

    Hope this information is useful.

  • 800 series Router and ASA will not create a tunnel

    Hey everybody, what had confused me for a week now, and I feel that it is something small that im overlooking. My 800 router and my ASA will not pass traffic through a VPN. Here are my configs (less sensitive data of course). I also removed irrelevant data to narrow down the config.

    800 series router:

    DHCP excluded-address 192.168.2.1 IP 192.168.2.100

    !

    IP dhcp pool internaldhcp

    network 192.168.2.0 255.255.255.0

    x.x.x.x where x.x.x.x DNS server

    default router 192.168.2.1

    !

    !

    IP cef

    no ip domain search

    domain IP (domain here)

    Server name x.x.x.x IP

    Server name x.x.x.x IP

    No ipv6 cef

    !

    !

    crypto ISAKMP policy 1

    BA 3des

    md5 hash

    preshared authentication

    Group 2

    address key (password) crypto isakmp (ip WAN of ASA)

    !

    !

    Crypto ipsec transform-set esp-3des esp-sha-hmac 3des-sha

    Crypto ipsec transform-set esp-3des esp-md5-hmac 3des-md5

    Crypto ipsec transform-set esp-3des esp-md5-hmac distance

    !

    !

    map KentonMap 1 ipsec-isakmp crypto

    defined peer (ASAs WAN IP)

    the value of the transform-set 3des-sha

    match address 110

    !

    !

    !

    !

    !

    interface FastEthernet0

    no ip address

    !

    interface FastEthernet1

    no ip address

    !

    interface FastEthernet2

    no ip address

    !

    interface FastEthernet3

    no ip address

    !

    interface FastEthernet4

    Description outside the int

    (Local WAN) 255.255.255.252 IP address

    NAT outside IP

    IP virtual-reassembly in

    automatic duplex

    automatic speed

    card crypto KentonMap

    service-policy output VoiceLLQ

    !

    interface Vlan1

    IP 192.168.2.1 255.255.255.0

    IP nat inside

    IP virtual-reassembly in

    Fair/fair-queue

    !

    !

    IP nat pool insidepool (WAN IP) (WAN IP) netmask 255.255.255.252

    IP nat inside source list 100 insidepool pool overload

    IP route 0.0.0.0 0.0.0.0 (Next Hop)

    !

    access-list 100 permit ip 192.168.2.0 0.0.0.255 any

    Note access-list 110 VPN ACL

    access-list 110 permit ip 192.168.2.0 0.0.0.255 192.168.24.0 0.0.0.255

    !

    The ASA config:

    interface Ethernet0/0

    switchport access vlan 2

    !

    interface Ethernet0/1

    !

    interface Ethernet0/2

    !

    interface Ethernet0/3

    !

    interface Ethernet0/4

    !

    interface Ethernet0/5

    !

    interface Ethernet0/6

    !

    interface Ethernet0/7

    !

    interface Vlan1

    nameif inside

    security-level 100

    IP 192.168.24.1 255.255.255.0

    !

    interface Vlan2

    nameif outside

    security-level 0

    (LOCAL WAN) 255.255.255.252 IP address

    !

    permit same-security-traffic intra-interface

    IP 192.168.24.0 allow Access - list extended sheep 255.255.255.0 192.168.2.0 255.255.255.0

    Access extensive list ip 192.168.24.0 LimatoKenton allow 255.255.255.0 192.168.2.0 255.255.255.0

    OutsideIn list extended access permit tcp any interface outside eq 3389

    Global 1 interface (outside)

    NAT (inside) 0 access-list sheep

    NAT (inside) 1 192.168.24.0 255.255.255.0

    Route outside 0.0.0.0 0.0.0.0 (Next Hop) 1

    Server enable SNMP traps snmp authentication linkup, linkdown cold start

    Crypto ipsec transform-set esp-3des esp-sha-hmac 3des-sha

    life crypto ipsec security association seconds 28800

    Crypto ipsec kilobytes of life - safety 4608000 association

    card crypto LimaMap 1 corresponds to the address LimatoKenton

    card crypto LimaMap 1 defined peer (800 WAN router)

    card crypto LimaMap 1 the value transform-set 3des-sha

    LimaMap interface card crypto outside

    crypto isakmp identity address

    crypto ISAKMP allow outside

    crypto ISAKMP policy 1

    preshared authentication

    3des encryption

    md5 hash

    Group 2

    life 86400

    tunnel-group (800 WAN router) type ipsec-l2l

    tunnel-group (800 WAN router)

    IPSec-attributes

    pre-shared key *.

    ISAKMP crypto release:

    ASA

    Type: L2L role: initiator

    Generate a new key: no State: MM_ACTIVE

    Router

    DST CBC conn-State id

    (Local WAN)    (ASA WAN)   ACTIVE QM_IDLE 2003

    Hello, Benjamin.

    I guess that your router does NAT same for site traffic to site.

    So, you have to deny traffic between ACL 100 sites.

    PS: If this does not resolve your problem, could you please share isakmp/ipsec its on both sides?

  • The Apple Watch edition series 2 have Nickel in it?

    I wonder if the Apple Watch edition series 2, a ceramic white, contains any Nickel

    Hello

    Apple says that the magnets in Apple Watch and strips contain some nickel.

    If you want to specify any information specifically regarding Apple Watch Edition (series 2, with ceramic case), I suggest that you contact the Apple Store sales support:

    http://www.Apple.com/contact/

  • How many gigabytes of data storage has the new Apple Watch series 2 and how many GB are free for music?

    How many gigabytes of data storage has the new Apple Watch series 2 and how many GB are free for music?

    Hello

    Apple has not yet announced the capacity of storage or the music of Apple Watch series 2 storage limit.

  • Satellite A300 - 1 MM-can I make the memory at 800 MHz?

    My TOSHIBA Satellite A300 - 1 MM has 3072 MB of DDR2 800 MHz memory, but the memory running at 667 MHz. is there a possibility to make the memory at 800 MHz?
    Given that my laptop came with ddr2 800, why not work natively at this frequency?

    Perhaps a future update of the BIOS will solve this problem.

    As far as I know the speed of the FSB is not editable and there is nothing you can do to force the RAM modules to work with faster speed.
    Same BIOS update will not help you change anything.

  • What to do if you have called the alert number 800-741-4144 Virus?

    What to do if you have called the alert number 800-741-4144 Virus?

    Don't tell them anything, don't let them access your Mac.

    It's a scam & fraud... Hope that you didn't call.

    This is referred to as bogus ransomware.

    The browser itself must be smoking, use force him to leave in the main menu of the Apple.

    • Force an app to close on your Mac - Apple Support

    Choose Safari, click on force quit. If this does not work at first, read more:

    See the details in this trick created by a member and contributor here to ASC:

    Phony 'technical support' / 'ransomware' popups and web pages

    To see or read what is said on the deletion of the browser and maybe

    similar objects associated with adware and popups, this covers Safari browser.

    •Arretez pop-up ads and advertising on Safari - Apple Support

    I hope that you are not fallen to pay...

    Good luck!

  • Satellite 4080 Xcdt, small image after changing the resolution to 800 x 600

    Hello.
    After changing the resolution to 800 x 600 or less (while playing an older game BACK), the screen is reduced to the size of the postcard.
    Someone at - it an idea to solve this problem, (another driver display or s.th.)?

    Greetings, r.

    Hi Ralf,.

    In my view, there is a setting in the BIOS to force the screen image to stretch to fit the available space.

    Kind regards

  • 4th AppleTV is from Gen home - menu Date broken - missing the names of TV series

    Unlike the 3rd generation, on the part of House, when browsing on the television a day, the names of TV series are missing, making it virtually impossible to tell that you are in this menu.

    If you have any suggestions that you think might improve Apple TV you can send your feedback here at Apple

  • How to generate the clock 8,192 MHz on the labview FPGA 7854R series card?

    Hello

    I use the NI PXI-7854R series card that has 5 FPGA from Xilinx Vertex on him. I'm drifting clockwork 8,192 MHz to 40 MHz on board the FPGA clock. But he ended up giving me a single clock 8 MHz. is it possible to access the PLL located on FPGA Xilinx?

    Concerning

    If you are familiar with VHDL you can make your own "component-level IP' (aka CLIP) with a PLL Xilinx inside.  There are topics for help and examples of how to define a CLIP.  Here's one that shows how instantiate a DCM (similar to a PLL) in a CLIP:

    http://zone.NI.com/reference/en-XX/help/371599F-01/lvfpgahelp/fpga_clip_clock_ex_code/

  • XP does not detect the webcam VX-800

    Windows XP SP3 32, detects not VX - 800, not found drivers.

    Page: http://www.microsoft.com/hardware/en-us/d/lifecam-vx-800

    There is no way to download the software

    Thanks for your help

    Hey Paco, Lara 6,

    There is no software available or needed for the LifeCam VX - 800. To troubleshoot common LifeCam questions please refer to the link below

    Common issues LifeCam VX-800.

    http://www.Microsoft.com/hardware/en-us/help/support/troubleshooting/webcam/LifeCam-Setup

    Advanced troubleshooting tips for general USB for Windows XP problems.

    http://support.Microsoft.com/kb/310575

    Let us know if this helped.

  • I just bought the wireless desktop 800 Windows keyboard and mouse it does not work on the Windows XP desktop

    I just bought the wireless desktop 800 Windows keyboard and mouse. It works fine on my Win7 laptop but not on my XP desktop even if it says it is compatible with XP. Any advice?

    Hello

     

    Thanks to join Microsoft Community where you will find all necessary information about the Windows operating systems.

    You cannot use the Wireless Desktop 800 keyboard and mouse.

    The problem may occur if the devices are not detected.

    What exactly happens when you try to use the devices?

    A fixit could be used if the devices are not detected.

    See the site:

    Hardware devices do not work or are not detected in Windows

    http://support.Microsoft.com/mats/hardware_device_problems/en-us

    I hope this helps. If the problem persists, or if you have problems of Windows in the future, let us know and we would be happy to help you.

Maybe you are looking for

  • I lost all my contacts.

    All of a sudden I lost all my contacts that have been linked to my iphone via outlook.com. And I tried to unplug the outlook account and adding one more time, but it did not work. All contacts are always available on outlook. Help, please. Thank you!

  • Smart mailboxes endangered, but get offered in context menu search

    Hello community, I use a lot "letters/smart folders boxes" to organize e-mail. Sometimes a "mailbox smart" simply disappeared from the sidebar, but when I search via the search box (top right) the context menu search watch box missing mailbox and whe

  • Satellite A500-18 x - don't wake up from sleep mode

    I've had this laptop for a little over a week and when it goes into mode 'sleep' trying to wake him up, all the lights on the keyboard lights up and I hear it works but the screen remains black. I updated display drivers and that fixed it for a few d

  • HP Photosmart 7760 was working fine but suddenly will not print

    Original title: HP Photosmart 7760 HP Photosmart installed at the HP Pavilion g7 by my computer tech station - has worked well for a few days.  Today, he will not accept a print command.  Everything seems to be connected correctly. What should I do?

  • How can I get my files in alphabetical order again

    How can I get my files in alphabetical order again?  They always used to be, but now some are and some are random. Thank you