EasyManuals Logo
Home>Cisco>Network Hardware>ASA Series

Cisco ASA Series User Manual

Cisco ASA Series
2164 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #68 background imageLoading...
Page #68 background image
1-6
Cisco ASA Series CLI Configuration Guide
Chapter 1 Introduction to the Cisco ASA
New Features
New Features in ASA 8.4(5)/ASDM 7.0(2)
Released: October 31, 2012
Table 1-4 lists the new features for ASA Version 8.4(5).
Management Features
The default Telnet password was removed To improve security for management access to the ASA, the default login
password for Telnet was removed; you must manually set the password before
you can log in using Telnet. Note: The login password is only used for Telnet
if you do not configure Telnet user authentication (the aaa authentication
telnet console command).
Formerly, when you cleared the password, the ASA restored the default of
“cisco.” Now when you clear the password, the password is removed.
The login password is also used for Telnet sessions from the switch to the
ASASM (see the session command). For initial ASASM access, you must use
the service-module session command, until you set a login password.
We modified the following command: passwd.
We did not modify any ASDM screens.
Table 1-3 New Features for ASA Version 9.0(2)/ASDM Version 7.1(2) (continued)
Feature Description
Table 1-4 New Features for ASA Version 8.4(5)
Feature Description
Firewall Features
EtherType ACL support for
IS-IS traffic (transparent
firewall mode)
In transparent firewall mode, the ASA can now pass IS-IS traffic using an EtherType ACL.
We modified the following command: access-list ethertype {permit | deny} is-is.
This feature is not available in 8.5(1), 8.6(1), 8.7(1), 9.0(1), or 9.1(1).
ARP cache additions for
non-connected subnets
The ASA ARP cache only contains entries from directly-connected subnets by default. You can
now enable the ARP cache to also include non-directly-connected subnets. We do not
recommend enabling this feature unless you know the security risks. This feature could
facilitate denial of service (DoS) attack against the ASA; a user on any interface could send out
many ARP replies and overload the ASA ARP table with false entries.
You may want to use this feature if you use:
Secondary subnets.
Proxy ARP on adjacent routes for traffic forwarding.
This feature is not available in 8.5(1), 8.6(1), or 8.7(1).
Increased maximum
connection limits for service
policy rules
The maximum number of connections for service policy rules was increased from 65535 to
2000000.
This feature is not available in 8.5(1), 8.6(1), or 8.7(1).
Remote Access Features

Table of Contents

Other manuals for Cisco ASA Series

Preview: Configuration Guide
Configuration Guide428 pages
Preview: Mount And Connect
Mount And Connect12 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco ASA Series and is the answer not in the manual?

Cisco ASA Series Specifications

General IconGeneral
BrandCisco
ModelASA Series
CategoryNetwork Hardware
LanguageEnglish

Related product manuals