[c-nsp] 6500 with IOS Firewall - Any experiences?
Gustavo Novais
gustavo.novais at novabase.pt
Mon Jun 4 15:59:47 EDT 2007
Hi,
I currently have a customer who is buying a 6500 with redundant SUP720,
but he doesn't want to use the SUP for L3 (only L2) because currently
all of its L3 is done on a PIX525, on which he has lots of rules, and is
able to manage by ASDM.
He does not wish to buy a FWSM, so I told him that eventually IOS
firewall feature set would do the trick, with the CBAC features, etc.
What I'd like to know from the list experience is if indeed trading a
PIX525 (with fastethernet interfaces) and ASDM for management for a
sup720 with IOS Firewall and ____________ (fill in the blanks) for
management, is worth it or not.
I've already alerted him to eventual scalability issues, but his
deployment is not that big, only around a dozen vlans, and nothing much
else.
Any suggestions are welcome...
I've checked if we could manage that type of features (namely CBAC) with
CiscoView, but didn't reach any conclusion...
Thanks
Gustavo Novais
More information about the cisco-nsp
mailing list