Jump to content

Cisco ASA alternative? / New firewall

Sir Asvald
By Sir Asvald
in Networking
 Share
Posted

Hello everyone. I'm currently using a Cisco ASA 5505. It's very old. I'd like to replace with something more modern. I'm located in the UK. My budget is around £150-200. It must have VPN option and gigabit Ethernet. The ASA only has 100mbps. Uses old RSA encryption with isn't the best. I'd like something that can be configured easily.

 

Thanks.

CPU: AMD Ryzen 5 5600X | CPU Cooler: Stock AMD Cooler | Motherboard: Asus ROG STRIX B550-F GAMING (WI-FI) | RAM: Corsair Vengeance LPX 16 GB (2 x 8 GB) DDR4-3000 CL16 | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 1TB  | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 24" Samsung  | OS: Win 10 Pro

 

Audio: Behringer Q802USB Xenyx 8 Input Mixer |  U-PHORIA UMC204HD | Behringer XM8500 Dynamic Cardioid Vocal Microphone | Sound Blaster Audigy Fx PCI-E card.

 

Home Lab:  Lenovo ThinkCenter M82 ESXi 6.7 | Lenovo M93 Tiny Exchange 2019 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5506 firewall  | Cisco Catalyst 3750 Gigabit Switch | Cisco 2960C-LL | HP MicroServer G8 NAS | Custom built SCCM Server.

 

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted

I’m assuming based on what you wrote that you aren’t concerned with an actively updated security subscription (what they call FirePower or FirePower-X on Cisco ASA). Therefore how about an x86 based firewall appliance (one good brand is Protectli) and run PFSense or OPNSense or Untangle on it? Or get a NetGate SG-1100 which has PFSense preinstalled. 

Looking to buy GTX690, other multi-GPU cards, or single-slot graphics cards: 

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
  • Author
25 minutes ago, brwainer said:

I’m assuming based on what you wrote that you aren’t concerned with an actively updated security subscription (what they call FirePower or FirePower-X on Cisco ASA). Therefore how about an x86 based firewall appliance (one good brand is Protectli) and run PFSense or OPNSense or Untangle on it? Or get a NetGate SG-1100 which has PFSense preinstalled. 

I know about the new FirePower. I didn't mention them because they are so expensive. I've got a spare pc which I can use

CPU: AMD Ryzen 5 5600X | CPU Cooler: Stock AMD Cooler | Motherboard: Asus ROG STRIX B550-F GAMING (WI-FI) | RAM: Corsair Vengeance LPX 16 GB (2 x 8 GB) DDR4-3000 CL16 | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 1TB  | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 24" Samsung  | OS: Win 10 Pro

 

Audio: Behringer Q802USB Xenyx 8 Input Mixer |  U-PHORIA UMC204HD | Behringer XM8500 Dynamic Cardioid Vocal Microphone | Sound Blaster Audigy Fx PCI-E card.

 

Home Lab:  Lenovo ThinkCenter M82 ESXi 6.7 | Lenovo M93 Tiny Exchange 2019 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5506 firewall  | Cisco Catalyst 3750 Gigabit Switch | Cisco 2960C-LL | HP MicroServer G8 NAS | Custom built SCCM Server.

 

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted

Do you need gigabit throughput or would like 500Mbps throughput be okay?

Current Network Layout:

Current Build Log/PC:

Prior Build Log/PC:

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
  • Author
24 minutes ago, Lurick said:

Do you need gigabit throughput or would like 500Mbps throughput be okay?

500Mbps will be fine for me.

CPU: AMD Ryzen 5 5600X | CPU Cooler: Stock AMD Cooler | Motherboard: Asus ROG STRIX B550-F GAMING (WI-FI) | RAM: Corsair Vengeance LPX 16 GB (2 x 8 GB) DDR4-3000 CL16 | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 1TB  | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 24" Samsung  | OS: Win 10 Pro

 

Audio: Behringer Q802USB Xenyx 8 Input Mixer |  U-PHORIA UMC204HD | Behringer XM8500 Dynamic Cardioid Vocal Microphone | Sound Blaster Audigy Fx PCI-E card.

 

Home Lab:  Lenovo ThinkCenter M82 ESXi 6.7 | Lenovo M93 Tiny Exchange 2019 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5506 firewall  | Cisco Catalyst 3750 Gigabit Switch | Cisco 2960C-LL | HP MicroServer G8 NAS | Custom built SCCM Server.

 

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
4 hours ago, Abdul201588 said:

I know about the new FirePower. I didn't mention them because they are so expensive. I've got a spare pc which I can use

I wanted to buy one for homelabbing until I saw the price tags. haha

 

Even Fortigate would cost a fair bit for 500Mb/s

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
3 hours ago, Abdul201588 said:

500Mbps will be fine for me.

Maybe look at Firewalla, it's not near as feature rich as the ASA or anything but provides about 500Mbps of throughput and has a VPN functionality too.

Current Network Layout:

Current Build Log/PC:

Prior Build Log/PC:

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
  • Author
1 hour ago, Lurick said:

Maybe look at Firewalla, it's not near as feature rich as the ASA or anything but provides about 500Mbps of throughput and has a VPN functionality too.

Hmm. Is it available outside the US? Also Anything that can be virtualised? I'm trying to keep power to a minimum. 

CPU: AMD Ryzen 5 5600X | CPU Cooler: Stock AMD Cooler | Motherboard: Asus ROG STRIX B550-F GAMING (WI-FI) | RAM: Corsair Vengeance LPX 16 GB (2 x 8 GB) DDR4-3000 CL16 | GPU: Nvidia GTX 1060 6GB Zotac Mini | Case: K280 Case | PSU: Cooler Master B600 Power supply | SSD: 1TB  | HDDs: 1x 250GB & 1x 1TB WD Blue | Monitors: 24" Acer S240HLBID + 24" Samsung  | OS: Win 10 Pro

 

Audio: Behringer Q802USB Xenyx 8 Input Mixer |  U-PHORIA UMC204HD | Behringer XM8500 Dynamic Cardioid Vocal Microphone | Sound Blaster Audigy Fx PCI-E card.

 

Home Lab:  Lenovo ThinkCenter M82 ESXi 6.7 | Lenovo M93 Tiny Exchange 2019 | TP-LINK TL-SG1024D 24-Port Gigabit | Cisco ASA 5506 firewall  | Cisco Catalyst 3750 Gigabit Switch | Cisco 2960C-LL | HP MicroServer G8 NAS | Custom built SCCM Server.

 

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
1 hour ago, Abdul201588 said:

Hmm. Is it available outside the US? Also Anything that can be virtualised? I'm trying to keep power to a minimum. 

It's about a 2" by 2" cube and is available outside the US, USB powered so very small power draw.

Current Network Layout:

Current Build Log/PC:

Prior Build Log/PC:

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
9 hours ago, scottyseng said:

I wanted to buy one for homelabbing until I saw the price tags. haha

 

Even Fortigate would cost a fair bit for 500Mb/s

If you are looking for 500Mb/s without UTM even the low end models can do that.

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
Just now, Acedia said:

If you are looking for 500Mb/s without UTM even the low end models can do that.

I'm not sure how many features OP will be using, so I just assumed worst case scenario. haha

Link to comment
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Networking

×