Feature Licenses And Specifications
A P P E N D I XAFeature Licenses and SpecificationsThis appendix describes the feature licenses and specifications. This appendix includes the followingsections: Supported Platforms and Feature Licenses, page A-1 Security Services Module Support, page A-9 VPN Specifications, page A-10Supported Platforms and Feature LicensesThis software version supports the following platforms; see the associated tables for the feature supportfor each model:Note ASA 5505, Table A-1 ASA 5510, Table A-2 ASA 5520, Table A-3 ASA 5540, Table A-4 ASA 5550, Table A-5 PIX 515/515E, Table A-6 PIX 525, Table A-7 PIX 535, Table A-8Items that are in italics are separate, optional licenses that you can replace the base license. You can mixand match licenses, for example, the 10 security context license plus the Strong Encryption license; orthe 500 WebVPN license plus the GTP/GPRS license; or all four licenses together.Cisco Security Appliance Command Line Configuration GuideOL-10088-02A-1
Appendix AFeature Licenses and SpecificationsSupported Platforms and Feature LicensesTable A-1ASA 5505 Adaptive Security Appliance License FeaturesASA 5505Users, concurrent1Base LicenseSecurity Plus1010Optional Licenses:50Security ContextsUnlimitedOptional Licenses:50UnlimitedNo supportNo support10 combined IPSec and WebVPN25 combined IPSec and WebVPNMax. IPSec Sessions1025Max. WebVPNSessions2VPN Sessions2Optional License: 102Optional License: 10VPN Load BalancingNo supportNo supportFailoverNoneActive/Standby (no Stateful Failover)GTP/GPRSNo supportNo supportMaximum VLANs/Zones3 (2 regular zones and 1 restricted zone thatcan only communicate with 1 other zone)20No supportUnlimited10 K25 KMax. Physical InterfacesUnlimited, assigned to VLANs/zonesUnlimited, assigned to VLANs/zonesEncryptionBase (DES)Base (DES)Minimum RAM128 MBMaximum VLAN TrunksConcurrent Firewall Conns3Optional license:Strong (3DES/AES)Optional license:Strong (3DES/AES)128 MB1. In routed mode, hosts on the inside (Business and Home VLANs) count towards the limit when they communicate with the outside (Internet VLAN),including when the inside initiates a connection to the outside as well as when the outside initiates a connection to the inside. Note that even when theoutside initiates a connection to the inside, outside hosts are not counted towards the limit; only the inside hosts count. Hosts that initiate traffic betweenBusiness and Home are also not counted towards the limit. The interface associated with the default route is considered to be the outside Internet interface.If there is no default route, hosts on all interfaces are counted toward the limit. In transparent mode, the interface with the lowest number of hosts iscounted towards the host limit. See the show local-host command to view host limits.2. Although the maximum IPSec and WebVPN sessions add up to more than the maximum VPN sessions, the combined sessions should not exceed the VPNsession limit. If you exceed the maximum VPN sessions, you can overload the security appliance, so be sure to size your network appropriately.Cisco Security Appliance Command Line Configuration GuideA-2OL-10088-02
Appendix AFeature Licenses and SpecificationsSupported Platforms and Feature Licenses3. The concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with one host and one dynamic translation for every fourconnections.Table A-2ASA 5510 Adaptive Security Appliance License FeaturesASA 5510Base LicenseSecurity PlusUsers, concurrentUnlimitedUnlimitedSecurity ContextsNo support2Optional Licenses:5VPN Sessions1250 combined IPSec and WebVPN250 combined IPSec and WebVPNMax. IPSec Sessions250250Max. WebVPNSessions2Optional Licenses:1025502100250Optional Licenses:102550100VPN Load BalancingNo supportNo supportFailoverNoneActive/Standby or Active/ActiveGTP/GPRSNo supportNo support5010050 K130 KMax. VLANsConcurrent Firewall Conns2250Max. Physical Interfaces(For 7.2(1)) 3 at 10/100 plus the Management Unlimitedinterface for management traffic only(For 7.2(3) and above) Ethernet 0/0 andEthernet 0/1 are used as Gigabit Ethernet(For 7.2(2) and above) Unlimitedinterfaces.EncryptionBase (DES)Min. RAM256 MBOptional license:Strong (3DES/AES)Base (DES)Optional license:Strong (3DES/AES)256 MB1. Although the maximum IPSec and WebVPN sessions add up to more than the maximum VPN sessions, the combined sessions should not exceed the VPNsession limit. If you exceed the maximum VPN sessions, you can overload the security appliance, so be sure to size your network appropriately.2. The concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with 1 host and 1 dynamic translation for every 4 connections.Cisco Security Appliance Command Line Configuration GuideOL-10088-02A-3
Appendix AFeature Licenses and SpecificationsSupported Platforms and Feature LicensesTable A-3ASA 5520 Adaptive Security Appliance License FeaturesASA 5520Base LicenseUsers, concurrentUnlimitedSecurity Contexts2Optional Licenses:5VPN Sessions1Unlimited1020750 combined IPSec and WebVPNMax. IPSec Sessions750Max. WebVPNSessions2Optional Licenses:102550VPN Load BalancingSupportedFailoverActive/Standby or Active/ActiveGTP/GPRSNoneMax. VLANsConcurrent Firewall Conns100250500750Optional license: Enabled1502280 KMax. Physical InterfacesUnlimitedEncryptionBase (DES)Min. RAM512 MBOptional license: Strong (3DES/AES)1. Although the maximum IPSec and WebVPN sessions add up to more than the maximum VPN sessions, the combined sessions should not exceed the VPNsession limit. If you exceed the maximum VPN sessions, you can overload the security appliance, so be sure to size your network appropriately.2. The concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with 1 host and 1 dynamic translation for every 4 connections.Cisco Security Appliance Command Line Configuration GuideA-4OL-10088-02
Appendix AFeature Licenses and SpecificationsSupported Platforms and Feature LicensesTable A-4ASA 5540 Adaptive Security Appliance License FeaturesASA 5540Base LicenseUsers, concurrentUnlimitedSecurity Contexts2Optional licenses:5VPN Sessions1Unlimited1020505000 combined IPSec and WebVPNMax. IPSec Sessions5000Max. WebVPNSessions2Optional Licenses:102550100VPN Load BalancingSupportedFailoverActive/Standby or Active/ActiveGTP/GPRSNoneMax. VLANsConcurrent Firewall Conns25050075010002500Optional license: Enabled2002400 KMax. Physical InterfacesUnlimitedEncryptionBase (DES)Min. RAM1 GBOptional license: Strong (3DES/AES)1. Although the maximum IPSec and WebVPN sessions add up to more than the maximum VPN sessions, the combined sessions should not exceed the VPNsession limit. If you exceed the maximum VPN sessions, you can overload the security appliance, so be sure to size your network appropriately.2. The concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with 1 host and 1 dynamic translation for every 4 connections.Cisco Security Appliance Command Line Configuration GuideOL-10088-02A-5
Appendix AFeature Licenses and SpecificationsSupported Platforms and Feature LicensesTable A-5ASA 5550 Adaptive Security Appliance License FeaturesASA 5550Base LicenseUsers, concurrentUnlimitedSecurity Contexts2Optional licenses:5VPN Sessions11020505000 combined IPSec and WebVPNMax. IPSec Sessions5000Max. WebVPNSessions2Optional Licenses:102550100VPN Load BalancingSupportedFailoverActive/Standby or Active/ActiveGTP/GPRSNoneMax. VLANsConcurrent Firewall Conns250500750100025005000Optional license: Enabled2502650 KMax. Physical InterfacesUnlimitedEncryptionBase (DES)Min. RAM4 GBOptional license: Strong (3DES/AES)1. Although the maximum IPSec and WebVPN sessions add up to more than the maximum VPN sessions, the combined sessions should not exceed the VPNsession limit. If you exceed the maximum VPN sessions, you can overload the security appliance, so be sure to size your network appropriately.2. The concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with 1 host and 1 dynamic translation for every 4 connections.Cisco Security Appliance Command Line Configuration GuideA-6OL-10088-02
Appendix AFeature Licenses and SpecificationsSupported Platforms and Feature LicensesTable A-6PIX 515/515E Security Appliance License FeaturesPIX 515/515ER (Restricted)UR (Unrestricted)FO (Failover)1FO-AA nlimitedUnlimitedUnlimitedSecurityContextsNo support2 Optional license: 52 Optional license: 52 Optional license: 5IPSec Sessions2000200020002000WebVPNSessionsNo supportNo supportNo supportNo supportVPN LoadBalancingNo supportNo supportNo supportNo supportFailoverNo tive/StandbyActive/ActiveGTP/GPRSNone Optional license:EnabledNone Optional license:EnabledNone Optional license:EnabledNone Optional license:EnabledMax. VLANs10252525Concurrent48 KFirewall Conns2130 K130 K130 KMax. PhysicalInterfaces3666EncryptionNone Optional licenses: None Optional licenses: None Optional licenses: None Optional licenses:Base(DES)Min. RAM64 MBStrong(3DES/AES)Base(DES)128 MBStrong(3DES/AES)Base(DES)Strong(3DES/AES)128 MBBase(DES)Strong(3DES/AES)128 MB1. This license can only be used in a failover pair with another unit with a UR license. Both units must be the same model.2. The concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with 1 host and 1 dynamic translation for every 4 connections.Cisco Security Appliance Command Line Configuration GuideOL-10088-02A-7
Appendix AFeature Licenses and SpecificationsSupported Platforms and Feature LicensesTable A-7PIX 525 Security Appliance License FeaturesPIX 525R (Restricted)UR (Unrestricted)FO (Failover)1FO-AA nlimitedUnlimitedUnlimitedSecurityContextsNo support2 Optional licenses:2 Optional licenses:2 Optional licenses:IPSec Sessions2000200020002000WebVPNSessionsNo supportNo supportNo supportNo supportVPN LoadBalancingNo supportNo supportNo supportNo supportFailoverNo tive/StandbyActive/ActiveGTP/GPRSNone Optional license:EnabledNone Optional license:EnabledNone Optional license:EnabledNone Optional license:EnabledMax. VLANs25100100100Concurrent140 KFirewall Conns2280 K280 K280 KMax. PhysicalInterfaces6101010EncryptionNone Optional licenses: None Optional licenses: None Optional licenses: None Optional licenses:5Base(DES)Min. RAM128 MBStrong(3DES/AES)10 20Base(DES)256 MB50Strong(3DES/AES)510 20Base(DES)50Strong(3DES/AES)256 MB51020Base(DES)50Strong(3DES/AES)256 MB1. This license can only be used in a failover pair with another unit with a UR license. Both units must be the same model.2. The concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with 1 host and 1 dynamic translation for every 4 connections.Cisco Security Appliance Command Line Configuration GuideA-8OL-10088-02
Appendix AFeature Licenses and SpecificationsSecurity Services Module SupportTable A-8PIX 535 Security Appliance License FeaturesPIX 535R (Restricted)UR (Unrestricted)FO (Failover)1FO-AA nlimitedUnlimitedUnlimitedSecurityContextsNo support2 Optional licenses:2 Optional licenses:2 Optional licenses:IPSec Sessions2000200020002000WebVPNSessionsNo supportNo supportNo supportNo supportVPN LoadBalancingNo supportNo supportNo supportNo supportFailoverNo tive/StandbyActive/ActiveGTP/GPRSNone Optional license:EnabledNone Optional license:EnabledNone Optional license:EnabledNone Optional license:EnabledMax. VLANs50150150150Concurrent250 KFirewall Conns2500 K500 K500 KMax. PhysicalInterfaces8141414EncryptionNone Optional licenses: None Optional licenses: None Optional licenses: None Optional licenses:5Base(DES)Min. RAM512 MB10 20Strong(3DES/AES)Base(DES)505Strong(3DES/AES)1024 MB10 20Base(DES)50Strong(3DES/AES)1024 MB51020Base(DES)50Strong(3DES/AES)1024 MB1. This license can only be used in a failover pair with another unit with a UR license. Both units must be the same model.2. The concurrent firewall connections are based on a traffic mix of 80% TCP and 20% UDP, with 1 host and 1 dynamic translation for every 4 connections.Security Services Module SupportTable A-9 shows the SSMs supported by each platform:Table A-9SSM SupportPlatformSSM ModelsASA 5505No supportASA 5510AIP SSM 10AIP SSM 20CSC SSM 10CSC SSM 204GE SSMCisco Security Appliance Command Line Configuration GuideOL-10088-02A-9
Appendix AFeature Licenses and SpecificationsVPN SpecificationsTable A-9SSM Support (continued)PlatformSSM ModelsASA 5520AIP SSM 10AIP SSM 20CSC SSM 10CSC SSM 204GE SSMASA 5540AIP SSM 10AIP SSM 20CSC SSM 101CSC SSM 2014GE SSMASA 5550No support (4GE SSM is built-in and not user-removable)PIX 515/515ENo supportPIX 525No supportPIX 535No support1. The CSC SSM licenses support up to 1000 users while the Cisco ASA 5540 Series appliance can support significantly moreusers. If you deploy CSC SSM with an ASA 5540 adaptive security appliance, be sure to configure the security appliance tosend the CSC SSM only the traffic that should be scanned. For more information, see the “Determining What Traffic to Scan”section on page 22-9 for more information.VPN SpecificationsThis section describes the VPN specifications for the security appliance. This section includes thefollowing topics: Cisco VPN Client Support, page A-11 Cisco Secure Desktop Support, page A-11 Site-to-Site VPN Compatibility, page A-11 Cryptographic Standards, page A-12Cisco Security Appliance Command Line Configuration GuideA-10OL-10088-02
Appendix AFeature Licenses and SpecificationsVPN SpecificationsCisco VPN Client SupportThe security appliance supports a wide variety of software and hardware-based Cisco VPN clients, asshown in Table A-10.Table A-10Cisco VPN Client SupportClient TypeClient VersionsSSL VPN clientsCisco SSL VPN client, Version 1.1 or higherSoftware IPSec VPN clientsCisco VPN client for Windows, Version 3.6 or higherCisco VPN client for Linux, Version 3.6 or higherCisco VPN client for Solaris, Version 3.6 or higherCisco VPN client for Mac OS X, Version 3.6 or higherHardware IPSec VPN clients (CiscoEasy VPN remote)Cisco VPN 3002 hardware client, Version 3.0 or higherCisco IOS Software Easy VPN remote, Release 12.2(8)YJCisco PIX 500 series security appliance, Version 6.2 or higherCisco ASA 5500 series adaptive security appliance, Version 7.0or higherCisco Secure Desktop SupportThe security appliance supports CSD software Version 3.1.1.16.Site-to-Site VPN CompatibilityIn addition to providing interoperability for many third-party VPN products, the security applianceinteroperates with the Cisco VPN products for site-to-site VPN connectivity shown in Table A-11.Table A-11Site-to-Site VPN CompatibilityPlatformsSoftware VersionsCisco ASA 5500 series adaptive security appliancesVersion 7.0(1) or higherCisco IOS routersRelease 12.1(6)T or higherCisco PIX 500 series security appliancesVersion 5.1(1) or higherCisco VPN 3000 series concentratorsVersion 3.6(1) or higherCisco Security Appliance Command Line Configuration GuideOL-10088-02A-11
Appendix AFeature Licenses and SpecificationsVPN SpecificationsCryptographic StandardsThe security appliance supports numerous cryptographic standards and related third-party products andservices, including those shown in Table A-12.Table A-12Cryptographic StandardsTypeDescriptionAsymmetric (public key) encryption algorithmsRSA public/private key pairs, 512 bits to 4096 bitsDSA public/private key pairs, 512 bits to 1024 bitsSymmetric encryption algorithmsAES—128, 192, and 256 bitsDES—56 bits3DES—168 bitsRC4—40, 56, 64, and 128 bitsPerfect forward secrecy (Diffie-Hellman keynegotiation)Group 1— 768 bitsGroup 2—1024 bitsGroup 5— 1536 bitsGroup 7—163 bits (Elliptic Curve Diffie-Hellman)Hash algorithmsMD5—128 bitsSHA-1—160 bitsX.509 certificate authoritiesCisco IOS softwareBaltimore UniCERTEntrust AuthorityiPlanet/Netscape CMSMicrosoft Certificate ServicesRSA KeonVeriSign OnSiteX.509 certificate enrollment methodsSCEPPKCS #7 and #10Cisco Security Appliance Command Line Configuration GuideA-12OL-10088-02
† ASA 5505, Table A-1 † ASA 5510, Table A-2 † ASA 5520, Table A-3 † ASA 5540, Table A-4 † ASA 5550, Table A-5 † PIX 515/515E, Table A-6 † PIX 525, Table A-7 † PIX 535, Table A-8 Note Items that are in italics are separate, optional license s that you can replace the base license. You can mixFile Size: 453KB
Quick Start: View Licenses, Services and Order History Microsoft Volume Licensing 2 View your licenses and online services When you first go to the Licenses, Services and Benefits section of the Business Center, it will open by default to the Licenses and Services tab. (There is also a tab on the page called Software Assurance and Services Benefits where you
over 172,000 active licenses issued under chapter 493, Florida Statutes. This represents a drop in active licenses, with private investigator licenses being the only type that have increased. The Bureau of Regulation and Enforcement suspended over 1,700 licenses and revoked 95 licenses. Additionally,
5 10 feature a feature b (a) plane a b 0 5 10 0 5 10 feature a feature c (b) plane a c 0 5 10 0 5 10 feature b feature c (c) plane b c Figure 1: A failed example for binary clusters/classes feature selection methods. (a)-(c) show the projections of the data on the plane of two joint features, respectively. Without the label .
Table 5: Feature-Based Licenses for the Cisco Nexus 5000 and Nexus 5500 Series Feature License Product ID Features N5548-EL2-SSK9 FabricPath N5596-EL2-SSK9 . Table 6: Feature-Based Licenses for the Cisco Nexus 4000 Series Feature License Product ID Features Basi
6. In the Welcome wizard, click Host Name, DNS IP Address, and Time Zone. 7. In Host Name, enter the host name. 8. In DNS IP Address, enter the address 192.168.80.1. 9. In Time Zone, select the time zone and click Done. 10. In the Welcome wizard, click Licenses. 11. Add your licenses and click Reboot. The licenses in the following illustration are Citrix test licenses.
The licenses were free, however prudent licensees paid for surveys in anticipation of eventual purchase. The licenses were freely transferrable. After the treaty, the concept of “land licensing” was obsolete and no more licenses were issued. Notes on the Hans Kagi Connection to Blunston Licensing Based on The Search for Hans Kagi’s Land
COLORADO PARKS & WILDLIFE roadway Denver CO . cpw.state.co.us. 1. 2021 SECODAR DRAW: ELK LICESES. Elk licenses for the hunt codes in the list . below did not sell out during the primary . draw, and there are licenses remaining . in these units. These licenses are made available first through the
duplicate of the same type will not be allowed (e.g. Broker license type can't be created in the example below). All Licenses The all licenses section displays the licenses that are active or within the renewal period. If there are no active licenses then a Salesperson and/or a Broker license may be applied for. If a
