New Features
Table 1-3
New Features for ASDM Version 6.3(2)/ASA Version 8.3(2) (Unless Otherwise Noted) (continued)
Feature
General Features
No Payload Encryption
image for export
New Features in Version 6.3(1)/8.3(1)
Cisco ASA 5500 Series Configuration Guide using ASDM
1-6
Description
For export to some countries, payload encryption cannot be enabled on the Cisco ASA 5500
series. For version 8.3(2), you can now install a No Payload Encryption image
(asa832-npe-k8.bin) on the following models:
ASA 5505
•
ASA 5510
•
ASA 5520
•
•
ASA 5540
•
ASA 5550
Features that are disabled in the No Payload Encryption image include:
•
Unified Communications.
Strong encryption for VPN (DES encryption is still available for VPN).
•
VPN load balancing (note that the GUI is still present; the feature will not function,
•
however).
Downloading of the dynamic database for the Botnet Traffic Filer (Static black and
•
whitelists are still supported. Note that the GUI is still present; the feature will not
function, however.).
Management protocols requiring strong encryption, including SSL, SSHv2, and SNMPv3.
•
You can, however, use SSL or SNMPv3 using base encryption (DES). Also, SSHv1 and
SNMPv1 and v2 are still available.
If you attempt to install a Strong Encryption (3DES/AES) license, you see the following
warning:
WARNING: Strong encryption types have been disabled in this image; the
VPN-3DES-AES license option has been ignored.
Chapter 1
Introduction to the Cisco ASA 5500 Series Adaptive Security Appliance
OL-20339-01