Data Sheet
Data Sheet
© 2011 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 4 of 22
compartmentalized control of security policies on a departmental level. This virtualization strengthens security and
reduces overall management and support costs while consolidating multiple security devices into a single appliance.
Businesses can extend their SSL and IPsec VPN capacity to support a larger number of mobile workers, remote
sites, and business partners. Up to 250 AnyConnect and/or clientless VPN peers can be supported on each Cisco
ASA 5510 by installing an Essential or a Premium AnyConnect VPN license; up to 250 IPsec VPN peers are
supported on the base platform.
VPN capacity and resiliency can also be increased by taking advantage of the Cisco ASA 5510's integrated VPN
clustering and load-balancing capabilities (available with a Security Plus license). The Cisco ASA 5510 supports up to
10 appliances in a cluster, offering a maximum of 2500 AnyConnect and/or clientless VPN peers or 2500 IPsec VPN
peers per cluster. For business continuity and event planning, the Cisco ASA 5510 can also benefit from the Cisco
VPN FLEX licenses, which enable administrators to react to or plan for short-term bursts of concurrent Premium VPN
remote-access users, for up to a 2-month period.
Table 2 lists features of the Cisco ASA 5510.
Table 2. Cisco ASA 5510 Adaptive Security Appliance Platform Capabilities and Capacities
Feature
Description
Firewall Throughput
Up to 300 Mbps
Maximum Firewall and IPS Throughput
●
Up to 150 Mbps with AIP SSM-10
●
Up to 300 Mbps with AIP SSM-20
VPN Throughput
Up to 170 Mbps
Concurrent Sessions
50,000; 130,000
*
IPsec VPN Peers
250
Premium AnyConnect VPN Peer License Levels
**
2,10, 25, 50, 100, or 250
Security Contexts
Up to 5
***
Interfaces
*
5 Fast Ethernet ports; 2 Gigabit Ethernet + 3 Fast Ethernet
*
Virtual Interfaces (VLANs)
50; 100
*
Scalability
*
VPN clustering and load balancing
High Availability
Not supported; Active/Active
****
, Active/Standby
*
Performance numbers tested and validated with Cisco ASA Software Release 7.2.
Cisco ASA 5520 Adaptive Security Appliance
The Cisco ASA 5520 Adaptive Security Appliance delivers security services with Active/Active high availability and
Gigabit Ethernet connectivity for medium-sized enterprise networks in a modular, high-performance appliance. With
four Gigabit Ethernet interfaces and support for up to 100 VLANs, businesses can easily deploy the Cisco ASA 5520
into multiple zones within their network. The Cisco ASA 5520 Adaptive Security Appliance scales with businesses as
their network security requirements grow, delivering solid investment protection.
Businesses can extend their SSL and IPsec VPN capacity to support a larger number of mobile workers, remote
sites, and business partners. Up to 750 AnyConnect and/or clientless VPN peers can be supported on each Cisco
ASA 5520 by installing an Essential or a Premium AnyConnect VPN license; 750 IPsec VPN peers are supported on
the base platform. VPN capacity and resiliency can be increased by taking advantage of the Cisco ASA 5520's
integrated VPN clustering and load-balancing capabilities. The Cisco ASA 5520 supports up to 10 appliances in a
cluster, offering a maximum of 7500 AnyConnect and/or clientless VPN peers or 7500 IPsec VPN peers per cluster.
*
Upgrade available with Cisco ASA 5510 Security Plus license
**
Separately licensed feature; includes two with the base system
***
Separately licensed feature; includes two with the Cisco ASA 5510 Security Plus license
****
Available for the firewall feature set