[c-nsp] ASA limit for number of policies

Mick O'Rourke mkorourke at gmail.com
Wed Feb 6 15:42:57 EST 2013


This link has some detail on maximum connection profiles vs maximum VPN
tunnels

http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/vpn_groups.pdf

But i didnt see anything looking quickly on group policy - which is what I
assume your referring to by policy?

You've probably heard similar stories over the years about people running 1
to 2 million plus record access list policies on certain ASA models, the
draw back being added latency - for this particular config im thinking
of it was around 7ms from memory.

On Wednesday, 6 February 2013, Skeeve Stevens wrote:

> Hey all,
>
> Anyone know a document that lists how many policies can be created on Cisco
> ASA's - most interested in the 5505 and 5510, but would love a full matrix.
>
> Thanks.
> *
>
> *
> *Skeeve Stevens, CEO - *eintellego Pty Ltd
> skeeve at eintellego.net <javascript:;> ; www.eintellego.net
>
> Phone: 1300 753 383; Cell +61 (0)414 753 383 ; skype://skeeve
>
> facebook.com/eintellego ;  <http://twitter.com/networkceoau>
> linkedin.com/in/skeeve
>
> twitter.com/networkceoau ; blog: www.network-ceo.net
>
> The Experts Who The Experts Call
> Juniper - Cisco – IBM - Brocade - Cloud
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net <javascript:;>
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>


More information about the cisco-nsp mailing list