foxy1977
Contributor
Contributor

Replacing physical firewalls with virtual

Hi there,

We are due to replace our two Cisco Pix firewalls with the latest equivalent from Cisco.  ASA's i believe.  I am also looking at options for replacing the physical firewalls with virtual ones.  Has anyone had any previous experiences of doing a similar thing.

We have 4 physcial ESX hosts running vsphere 4.1 enterprise licences.  I am interested in exploring the option of running the firewall and providing high availability using vmware HA.

Any thoughts, ideas or experiences? We are looking at working towards PCI compliance and I am a bit concerned that our whole solution would then be inscope of our PCI compliance.  We are hoping to descope our solution and have a seperate cardholder data environment.

Thanks in advance

0 Kudos
1 Reply
wpera
Contributor
Contributor

Hi,

If you like, ASA 1000V is a Virtual Appliance (http://www.cisco.com/en/US/products/ps12233/index.html). It's the extension of the ASA family to the cloud world.

But, you need Enterprise Plus and DVS Cisco 1000V.

BR.w

0 Kudos