Table Of Contents
ASA 5510, ASA 5520, ASA 5540, and ASA 5550
Product Overview
Memory Requirements
Installing the Chassis
Rack-Mounting the Chassis
Setting the Chassis on a Desktop
Connecting the Interface Cables
ASA 5510, ASA 5520, ASA 5540, and ASA 5550
Read through the entire guide before beginning any of the procedures in this chapter.
Warning 
Only trained and qualified personnel should install, replace, or service this equipment. Statement 49
Caution Read the safety warnings in the
Regulatory Compliance and Safety Information for the Cisco ASA 5500 Series and follow proper safety procedures when performing these steps.
This chapter describes the product, memory requirements, and rack-mount and installation procedures, and includes the following topics:
•Product Overview
•Memory Requirements
•Installing the Chassis
Note The illustrations in this chapter show the Cisco ASA 5540 adaptive security appliance. The ASA 5510 and ASA 5520 adaptive security appliance look identical, containing the same back panel features and indicators. The ASA 5550 has a fixed configuration with an embedded 4GE slot as shown in Figure 3-3.
Product Overview
This section describes the front and rear panels. Figure 3-1 shows the front panel LEDs.
Figure 3-1 Front Panel LEDs
| |
LED
|
Color
|
State
|
Description
|
1
|
Power
|
Green
|
On
|
The system has power.
|
2
|
Status
|
Green
|
Flashing
|
The power-up diagnostics are running or the system is booting.
|
Solid
|
The system has passed power-up diagnostics.
|
Amber
|
Solid
|
The power-up diagnostics have failed.
|
3
|
Active
|
Green
|
Flashing
|
There is network activity.
|
4
|
VPN
|
Green
|
Solid
|
VPN tunnel is established.
|
5
|
Flash
|
Green
|
Solid
|
The CompactFlash is being accessed.
|
Figure 3-2 shows the rear panel.
Figure 3-2 Rear Panel LEDs and Ports (AC Power Supply Model Shown)
1
|
Management port1
|
6
|
USB 2.0 interfaces2
|
11
|
VPN LED
|
2
|
External CompactFlash slot
|
7
|
Network interfaces3
|
12
|
Flash LED
|
3
|
Serial Console port
|
8
|
Power indicator LED
|
13
|
AUX port
|
4
|
Power switch
|
9
|
Status indicator LED
|
14
|
Power connector
|
5
|
Power indicator LED
|
10
|
Active LED
|
|
|
For more information about the Management port, see themanagement only command in the Cisco Security Appliance Command Reference.
The ASA 5550 has a fixed configuration with an embedded 4GE slot as shown in Figure 3-3.
Figure 3-3 Rear Panel LEDs and Ports for the ASA 5550
1
|
RJ-45 ports1
|
9
|
USB 2.0 interfaces2
|
17
|
AUX port
|
2
|
RJ-45 Link LED
|
10
|
Management port3
|
18
|
External CompactFlash slot
|
3
|
RJ-45 Speed LED
|
11
|
Network interfaces4
|
19
|
Serial Console port
|
4
|
Power LED
|
12
|
Power indicator LED
|
20
|
Power switch
|
5
|
Status LED
|
13
|
Status indicator LED
|
21
|
Power indicator LED
|
6
|
SFP ports5
|
14
|
Active LED
|
22
|
Power connector
|
7
|
SFP Link LED
|
15
|
VPN LED
|
|
|
8
|
SFP Speed LED
|
16
|
Flash LED
|
|
|
Table 3-1 4GE SSM LEDs for the ASA 5550
| |
LED
|
Color
|
State
|
Description
|
2, 7
|
LINK
|
Green
|
Solid
Flashing
|
There is an Ethernet link.
There is Ethernet activity.
|
|
3, 8
|
SPEED
|
Off
Green
Amber
|
10 MB
100 MB
1000 MB (GigE)
|
There is no network activity.
There is network activity at 100 Mbps.
There is network activity at 1000 Mbps.
|
|
|
4
|
POWER
|
Green
|
On
|
The system has power.
|
5
|
STATUS
|
Green
Green
Amber
|
Flashing
Solid
Solid
|
The system is booting.
The system booted correctly.
The system diagnostics failed.
|
|
|
|
Table 3-1 describes the 4GE SSM LEDs.
Figure 3-4 shows the adaptive security appliance rear panel LEDs.
Figure 3-4 Rear Panel Link and Speed Indicator LEDs
1
|
MGMT indicator LEDs
|
2
|
Network interface LEDs
|
Table 3-2 lists the rear MGMT and Network interface LEDs.
Table 3-2 Link and Speed LEDs
Indicator
|
Color
|
Description
|
Left side
|
Solid green
Green flashing
|
Physical link
Network activity
|
Right side
|
Not lit
Green
Amber
|
10 Mbps
100 Mbps
1000 Mbps
|
Note The ASA 5510 adaptive security appliance supports only 10/100BaseTX. The ASA 5520 and the ASA 5540 support 1000BaseT.
Memory Requirements
Table 3-3 lists the CPU and the memory specifications for each model.
Table 3-3 CPU and Memory Specifications
Model
|
CPU
|
DRAM
|
ASA 5510
|
1.6 GHz Celeron
|
256 MB
|
ASA 5520
|
2.0 GHz Celeron
|
512 MB
|
ASA 5540
|
2.0 GHz Pentium 4
|
1024 MB
|
ASA 5550
|
3.0 GHz Pentium 4
|
4096 MB
|
In a failover configuration, the two units must have the same hardware configuration. They must be the same model, have the same number and types of interfaces, and the same amount of RAM.
Note The two units do not have to have the same size Flash memory. If using units with different Flash memory sizes in your failover configuration, make sure the unit with the smaller Flash memory has enough space to accommodate the software image files and the configuration files. If it does not, configuration synchronization from the unit with the larger Flash memory to the unit with the smaller Flash memory will fail.
For more information, see the Configuring Failover chapter in the Cisco Security Appliance Command Line Configuration Guide.
Installing the Chassis
This section describes how to rack-mount and install the adaptive security appliance. You can mount the adaptive security appliance in a 19-inch rack (with a 17.5- or 17.75-inch opening).
Warning To prevent bodily injury when mounting or servicing this unit in a rack, you must take special precautions to ensure that the system remains stable. The following guidelines are provided to ensure your safety: This unit should be mounted at the bottom of the rack if it is the only unit in the rack.When mounting this unit in a partially filled rack, load the rack from the bottom to the top with the heaviest component at the bottom of the rack.If the rack is provided with stabilizing devices, install the stabilizers before mounting or servicing the unit in the rack. Statement 1006
The following information can help plan equipment rack installation:
• Allow clearance around the rack for maintenance.
•If the rack contains stabilizing devices, install the stabilizers prior to mounting or servicing the unit in the rack.
• When mounting a device in an enclosed rack, ensure adequate ventilation. Do not overcrowd an enclosed rack. Make sure that the rack is not congested, because each unit generates heat.
• When mounting a device in an open rack, make sure that the rack frame does not block the intake or exhaust ports.
•If the rack contains only one unit, mount the unit at the bottom of the rack.
•If the rack is partially filled, load the rack from the bottom to the top, with the heaviest component at the bottom of the rack.
This section contains the following topics:
•Rack-Mounting the Chassis
•Setting the Chassis on a Desktop
•Connecting the Interface Cables
Rack-Mounting the Chassis
Use the mounting brackets to mount the chassis to the front or the back of the rack, with the front panel or the rear panel of the chassis facing outward. The part number for ordering a rack-mount kit for the ASA 5510, ASA 5520, ASA 5540, and ASA 5550 is ASA5500-HW=. To rack-mount the chassis, perform the following steps:
Step 1 Attach the rack-mount brackets to the chassis using the supplied screws. Attach the brackets to the holes as shown in Figure 3-5. After the brackets are secured to the chassis, you can rack-mount it.
Figure 3-5 Installing the Right and Left Brackets
Step 2 Attach the chassis to the rack using the supplied screws, as shown in Figure 3-6.
Figure 3-6 Rack-Mounting the Chassis
.
To remove the chassis from the rack, remove the screws that attach the chassis to the rack, and then remove the chassis.
Setting the Chassis on a Desktop
To set the chassis on a desktop, perform the following steps:
Step 1 Locate the rubber feet on the black adhesive strip that shipped with the chassis.
Figure 3-7 Identifying the Rubber Feet
1
|
Rubber feet
|
2
|
Black adhesive strip
|
Step 2 Place the chassis upside down, on a smooth, flat surface.
Step 3 Peel off the rubber feet from the black adhesive strip and press them adhesive-side down onto the bottom four corners of the chassis, see Figure 3-8.
Figure 3-8 Attaching the Rubber Feet
Step 4 Place the chassis right-side up on a flat, smooth, secure surface.
Step 5 Connect the interface cables. See the "Connecting the Interface Cables" section for more information.
Connecting the Interface Cables
This section describes how to connect the cables to the Console, Auxiliary, Management, 4GE SSM, and SSM ports. In this document, SSM refers to an intelligent SSM, the AIP SSM or CSC SSM.
Note You can use any unused Ethernet interface on the device as the failover link. The failover link interface is not configured as a normal networking interface; it should only be used for the failover link. You can connect the LAN-based failover link by using a dedicated switch with no hosts or routers on the link or by using a crossover Ethernet cable to link the units directly. For more information, see the Configuring Failover chapter in the Cisco Security Appliance Command Line Configuration Guide.
Warning Only trained and qualified personnel should install, replace, or service this equipment. Statement 49
Caution Read the safety warnings in the
Regulatory Compliance and Safety Information for the Cisco ASA 5500 Series and follow proper safety procedures when performing these steps.
To connect cables to the ports perform the following steps:
Step 1 Place the chassis on a flat, stable surface, or in a rack (if you are rack-mounting it.)
Step 2 Before connecting a computer or terminal to the ports, check to determine the baud rate of the serial port. The baud rate must match the default baud rate (9600 baud) of the Console port of the adaptive security appliance. Set up the terminal as follows: 9600 baud (default), 8 data bits, no parity, 1 stop bits, and Flow Control (FC) = Hardware.
Step 3 Connect the cables to the ports.
a. Management port
The adaptive security appliance has a dedicated management interface referred to as the Management0/0 port. The Management0/0 port is a Fast Ethernet interface with a dedicated port used only for traffic management.
Note You can configure any interface to be a management-only interface using the management-only command. You can also disable management-only mode on the management interface. For more information about this command, see the management-only command in the Cisco Security Appliance Command Reference.
–Connect one RJ-45 connector to the Management0/0 port, as shown in Figure 3-9.
–Connect the other end of the Ethernet cable to the management port on your computer or network device.
Figure 3-9 Connecting to the Management Port
1
|
Management port
|
2
|
RJ-45 to RJ-45 Ethernet cable
|
b. Console port
–Connect the serial console cable as shown in Figure 3-10. The console cable has a DB-9 connector on one end for the serial port on your computer, and the other end is an RJ-45 connector.
–Connect the RJ-45 connector to the Console port on the adaptive security appliance.
–Connect the other end of the cable, the DB-9 connector, to the console port on your computer.
Figure 3-10 Connecting to the Console Cable
1
|
RJ-45 Console port
|
2
|
RJ-45 to DB-9 console cable
|
c. Auxiliary port
–Connect the serial console cable as shown in Figure 3-10. The console cable has a DB-9 connector on one end for the serial port on your computer, and the other end is an RJ-45 connector.
–Connect the RJ-45 connector to the auxiliary port (labeled AUX) on the adaptive security appliance.
–Connect the other end of the cable, the DB-9 connector, to the serial port on your computer.
Figure 3-11 Connecting to the AUX Port
1
|
RJ-45 AUX port
|
2
|
RJ-45 to DB-9 console cable
|
d. 4GE SSM
•Ethernet port
–Connect one RJ-45 connector to the Ethernet port of the 4GE SSM.
–Connect the other end of the Ethernet cable to your network device, such as a router, switch or hub.
Note The 4GE SSM is optional, this connection is necessary only if you have installed the 4GE SSM on the adaptive security appliance.
Figure 3-12 Connecting to the RJ-45 port
1
|
Ethernet ports
|
2
|
RJ-45 connector
|
Note When using the 4GE SSM you can use the same numbered copper ports (RJ-45) and the SFP ports at the same time.
•SFP modules
–Insert and slide the SFP module into the SFP port until you hear a click. The click indicates that the SFP module is locked into the port.
–Remove the optical port plugs from the installed SFP as shown in Figure 3-13.
Figure 3-13 Removing the Optical Port Plug
1
|
Optical port plug
|
2
|
SFP module
|
–Connect the LC connector to the SFP module as shown in Figure 3-14.
Figure 3-14 Connecting the LC Connector
1
|
LC connector
|
2
|
SFP module
|
–Connect the other end to your network devices, such as routers, switches, or hubs.
e. SSM
–Connect one RJ-45 connector to the management port on the SSM, as shown in Figure 3-15.
–Connect the other end of the RJ-45 cable to your network devices.
Note SSMs are optional, this connection is necessary only if you have installed an SSM on the adaptive security appliance.
Figure 3-15 Connecting to the Management Port
1
|
SSM management port
|
2
|
RJ-45 to RJ-45 cable
|
f. Ethernet ports
–Connect the RJ-45 connector to the Ethernet port.
–Connect the other end of the Ethernet cable to your network device, such as a router, switch or hub.
Figure 3-16 Connecting Cables to Network Interfaces
1
|
RJ-45 Ethernet ports
|
2
|
RJ-45 connector
|
Step 4 Connect the power cord to the security appliance and plug the other end to the power source. For information on powering on a DC model, see the "Installing the DC Model" section on page B-8.
Step 5 Power on the chassis.
