Anyone who have experience of replacing ASA5510 with mikrotik device. We sit with several ASA5510 that start to get aged and need to be replaced. Our ASA5510 setup is complex, failover and cisco vpn clients for access and also as firewall for many servers behind it etc, protocol washing etc etc.
We like and same time not like asa5510, we are used to them, but they consume LOT of power and generates LOT of heat plus they are expencive to maintain and support…
So natural step for us is to replace them with MT devices.
Depending on the complexity of you road-warrior VPN setup, it might be impossible to implement every one feature on MT. I’d been considering substituting a couple of ASA5505 by MT devices, and mobile VPN setup was a showstopper. Major issues: no mode-cfg support, no split-tunnel support, no split-dns support.
Okay, was afraid of it, we have same issue here, lot of VPN users, everything from experienced technicans and truckers to grandma…
My boss is now getting capex for a couple of new asa5510 even if I like it or not but all must work.