[nsp] Pix max conn

Charlie Winckless CharlieW at netarch.com
Thu Mar 27 15:03:58 EST 2003 

 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

PDM breaks at a 1.5k configuration, I believe.

I'm not sure there's a (documented) limit on the
number of rules...


> 
> Good Post.
> Any idea how many rules you can put into the thing before it 
> chokes and
> dies?
> 
> 
> Regards,
> 
> 
>    Mike Gabriel, Network Architect
>    IBM Global Services
>    3039 Cornwallis Road,   PO Box 12195
>    RTP,  NC 27709-2195
>    919-993-4503
>    mgabriel at us.ibm.com
> 
> 
> "There is no try.  Only do, or not do"        ...Yoda
> 
> 
> "Voll, Scott" <Scott.Voll at wesd.org>@puck.nether.net on 
> 03/27/2003 03:56:17
> PM
> 
> Sent by:    cisco-nsp-bounces at puck.nether.net
> 
> 
> To:    "Tim D." <zsolutions at cogeco.ca>, <cisco-nsp at puck.nether.net>
> cc:
> Subject:    RE: [nsp] Pix max conn
> 
> 
> 
> According to the book "Cisco PIX Firewalls" by Richard Deal.  The
> 525 can have 280,000 normal connections.  2,000 VPN connections.
> 
> Hope that helps.
> 
> Scott Voll
> Network Analyst, CCNA
> Willamette ESD
> scott.voll at wesd.org
> 
> 
> 
> -----Original Message-----
> From: Tim D. [mailto:zsolutions at cogeco.ca]
> Sent: Thursday, March 27, 2003 3:28 PM
> To: cisco-nsp at puck.nether.net
> Subject: [nsp] Pix max conn
> 
> 
> What is the maximum number of connections/sessions that can 
> pass through
> a Pix 525 concurrently? Trying to find this on Cisco's site, 
> but having
> very little luck.
> 
> Thanks,
> 
> Tim
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/cisco-nsp
>  archive at http://puck.nether.net/pipermail/cisco-nsp/
> 
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> 

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0.4

iQA/AwUBPoN1Q8rtF6HAen5cEQKa2QCfZGmt8TlD2gMVRmpv1ea0QPDiStsAnAnQ
6085NRvOpupfRgnpV4cQqCaR
=Oc0C
-----END PGP SIGNATURE-----

More information about the cisco-nsp mailing list