Cisco ASA 5506-X with Version 9.4.1–Policy Based Routing

In early 2015, Cisco released the Cisco ASA 5506-X with FirePOWER Services that is one of ASA 5500-X series. This Model-ASA 5506-X was considered to replace the successful and smallest Security Solution, the ASA 5505. Designed for the Small Business and a new era of threat and advanced malware protection Cisco ASA with FirePOWER Services delivers an integrated threat defense for the entire attack continuum. BEFORE, DURING and AFTER.

More Info: Cisco ASA with FirePOWER Services: the ASA5506-X, ASA5506H-X, ASA5506W-X, ASA5508-X, ASA5512-X, ASA5515-X, ASA5516-X, ASA5525-X, ASA5545-X, ASA5555-X, ASA5585-X-SSP-10, ASA5585-X-SSP-20, ASA5585-X-SSP-40, and the ASA5585-X-SSP-60

Cisco-ASA-5506-X-1

As Desktop version, the Cisco ASA 5506-X builds an easy entry for a:

  •  Superior Multilayered Protection
    • Site-to-site and remote access VPN
    • Granular Application Visibility and Control (AVC)
    • Highly effective threat prevention and full contextual awareness
    • Reputation- and category-based URL filtering
    • AMP provides industry-leading breach detection effectiveness
  • Unprecedented Network Visbility
  • Reduced Costs and Complexity security Solution

On 28th May, the Cisco Adaptive Security Appliance Software for the ASA 5506-X Version 9.4.1 was released. In this Interim Release they included a really great Feature for all the Small Business Customers.

Cisco ASA now supports policy based routing (PBR). Formerly the ASA routing decision was based on the destination of the traffic. This limitation makes it hard to change the routing behavior for specific traffic. Now with Policy Based Routing (PBR) there are different criteria to define the routing behavior:

  • Source Network
  • Destination Network
  • Source Address
  • Destination Address
  • Source Port
  • Destination Port
  • Protocol
  • Packet Size
  • Packet Classification

Many Implementations of the Internet Edge from Small Business Companies here in Germany/Europe are based on two ISP Connections. Very common are a DSL Connections combined with a Leased Line. The Leased Line is used for business critical services (E-Mail Traffic, VPN, Microsoft ActiveSync (Mail Push) and the second DSL Connection is used for Webtraffic. With this scenario the use of PBR is essential. In the past we realized this commonly when a Cisco ISR Router were PBR were widely spread.

Cisco-ASA-5506-X-2

With the Version 9.4.1 we can now consolidated the WAN Connections directly on the ASA with the same flexibility. Furthermore, it reduces Costs and Complexity.

Reference from http://blogs.cisco.com/perspectives/like-chalk-and-cheese-cisco-asa-5506-x-with-release-9-4-1-policy-based-routing

 

More Related

Why Cisco ASA Clustering?

What are the Considerations While Buying a Cisco Next-Generation Firewall?

Cisco ASA 5500-X Series’ New Features & Main Model Comparison

ASA 5506-X/SecurityPlus, 5506W-X & 5506H-X, Cisco ASA with FirePOWER Services, What’s New Here?

ASA 5508-X and ASA 5516-X Overview

The New Cisco ASA 5506-X, More Comparisons

How to Start a Cisco ASA 5506-X?

Cisco ASA 5585-X Comparison

How to Start a Cisco ASA 5585-X Series

Share This Post

Post Comment