Cisco ASA5510 vs Ubiquiti ERPro-8
-
I'm working on building up my home lab. I managed to score a pretty nice Cisco 3560X PoE+ to use as a L2 or L3 (if needed) switch. All I need networking wise is something to sit between it and the Internet. I've managed to get access to both a Cisco ASA5510 and a Ubiquiti EdgeRouter Pro 8. I can't decide which one I want to go with.
Advantages the ERPro-8
- Power consumption. I have not plugged the ASA into my Kill-A-Watt meter, but I have connected the ERPro-8 and after boot it idles at around 18 watts. My hunch is the ASA wouldn't come close (my instinct says 50-60 watts at idle).
- Footprint. The ERPro-8 is significantly smaller and lighter. However, this is a minor benefit as they will be installed in a rack.
- Noise. The ASA is much louder than the ERPro-8. However, this is a minor benefit as the rack they will live in will be located in my garage.
I'm looking to lean on more of the firewall capabilities than the routing capabilities of whichever device I choose. I currently have 75Mbps/7Mbps service through AT&T, but will likely upgrade this to one of Charter's offerings in my area which will be at minimum 100Mbps.
To help with the comparison, the ASA5510 has 1 GB RAM, so it can run the latest ASA software (which I have), has a 4GE SSM module (which gives you 4 gigabit interfaces on top of 4 built-in 10/100 interfaces), and it comes with the "Security Plus" license.
I've always been fond of Cisco gear (but not the price-tag), likely because it's what I "cut my teeth on" when first starting out as a network administrator.
Curious what y'all think.
EDIT: Obtaining one of the devices will only cost me gas to get it home, I just have to pick one.
-
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
The ERPro8 would perform more of a firewall role than a "router" role.
I know you are using quotes here, but I have no idea what you mean. Neither the literal words, nor any figurative implication, are apparent.
-
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
The ERPro8 would perform more of a firewall role than a "router" role.
I know you are using quotes here, but I have no idea what you mean. Neither the literal words, nor any figurative implication, are apparent.
Edited that sentence to: "I'm looking to lean on more of the firewall capabilities than the routing capabilities of whichever device I choose."
Not sure why I used the quotes either.
-
The Ubiquiti is the more powerful and higher quality (IMHO) gear. The Cisco has no applicability in the SMB market, but is widely used by shops getting sold gear by resellers. The skill set of the Cisco is more sellable, the skill set of the Ubiquiti is more useful. The Ubiquiti is better for actually using at home, the Cisco is better in the singular case of wanting to learn more about Cisco.
-
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
The ERPro8 would perform more of a firewall role than a "router" role.
I know you are using quotes here, but I have no idea what you mean. Neither the literal words, nor any figurative implication, are apparent.
Edited that sentence to: "I'm looking to lean on more of the firewall capabilities than the routing capabilities of whichever device I choose."
Not sure why I used the quotes either.
Wouldn't that make them equal in that sense, then?
-
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
The ERPro8 would perform more of a firewall role than a "router" role.
I know you are using quotes here, but I have no idea what you mean. Neither the literal words, nor any figurative implication, are apparent.
Edited that sentence to: "I'm looking to lean on more of the firewall capabilities than the routing capabilities of whichever device I choose."
Not sure why I used the quotes either.
Wouldn't that make them equal in that sense, then?
Possibly, but I'm not sure. I'm sure they perform different depending on what they are being configured to do (NAT, PAT, ACLs, etc.) but it may or may not be noticeable in my environment. If I decided to set up different firewall zones, I know for a fact that the ASA will throw traffic across the zones at just about wirespeed (gigabit). I don't have this experience in the Ubiquiti world (perhaps this is an an opportunity to test that).
-
Easy decision for me. I have no need to learn Cisco stuff because I don't have any clients with a Cisco router. What is your client base/environment?
-
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
The ERPro8 would perform more of a firewall role than a "router" role.
I know you are using quotes here, but I have no idea what you mean. Neither the literal words, nor any figurative implication, are apparent.
Edited that sentence to: "I'm looking to lean on more of the firewall capabilities than the routing capabilities of whichever device I choose."
Not sure why I used the quotes either.
Wouldn't that make them equal in that sense, then?
Possibly, but I'm not sure. I'm sure they perform different depending on what they are being configured to do (NAT, PAT, ACLs, etc.) but it may or may not be noticeable in my environment. If I decided to set up different firewall zones, I know for a fact that the ASA will throw traffic across the zones at just about wirespeed (gigabit). I don't have this experience in the Ubiquiti world (perhaps this is an an opportunity to test that).
Firewall "zones" is just normal routing. Normally the Ubiquiti is a bit faster than the ASAs.
-
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
The Ubiquiti is the more powerful and higher quality (IMHO) gear. The Cisco has no applicability in the SMB market, but is widely used by shops getting sold gear by resellers. The skill set of the Cisco is more sellable, the skill set of the Ubiquiti is more useful. The Ubiquiti is better for actually using at home, the Cisco is better in the singular case of wanting to learn more about Cisco.
Well, to a certain extent, I do need to keep my resume as sellable as possible.
I am curious to know...how is knowing EdgeOS is more useful than ASA software?
-
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
I am curious to know...how is knowing EdgeOS is more useful than ASA software?
Because one is the "most applicable to the SMB market" of any product in the category. The other borders on being the least
-
@mike-davis said in Cisco ASA5510 vs Ubiquiti ERPro8:
Easy decision for me. I have no need to learn Cisco stuff because I don't have any clients with a Cisco router. What is your client base/environment?
Well, I'm not an MSP or work for one, or contractor of any sort, so my one client (my organization) uses Cisco switches and routers across the board (I would change this if it were within my power, but it's a long story), and Fortinet firewalls. Previous to the Fortinets we were using ASAs.
-
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
@mike-davis said in Cisco ASA5510 vs Ubiquiti ERPro8:
Easy decision for me. I have no need to learn Cisco stuff because I don't have any clients with a Cisco router. What is your client base/environment?
Well, I'm not an MSP or work for one, or contractor of any sort, so my one client (my organization) uses Cisco switches and routers across the board (I would change this if it were within my power, but it's a long story), and Fortinet firewalls. Previous to the Fortinets we were using ASAs.
So that pretty much answers that. Neither applies at all, so use what is good for you
-
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
@mike-davis said in Cisco ASA5510 vs Ubiquiti ERPro8:
Easy decision for me. I have no need to learn Cisco stuff because I don't have any clients with a Cisco router. What is your client base/environment?
Well, I'm not an MSP or work for one, or contractor of any sort, so my one client (my organization) uses Cisco switches and routers across the board (I would change this if it were within my power, but it's a long story), and Fortinet firewalls. Previous to the Fortinets we were using ASAs.
So that pretty much answers that. Neither applies at all, so use what is good for you
Well, the point of my post was to get the (very appreciated) feedback from y'all.
I want to continually improve my skill set in ways that directly benefts my current employer, but I also don't want to be someone who wears blinders to the various options one has for solutions to things like network gear and whatnot.
I'll probably go with the ERPro-8 mostly for the fact that it's nowhere near as power hungry as the ASA. I'm currently using an ERPoe-5 in my home setup and have no complaints. It has served me well.
-
If you already have experience with Cisco gear, then give Ubiquiti a run.
-
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
I want to continually improve my skill set in ways that directly benefts my current employer, but I also don't want to be someone who wears blinders to the various options one has for solutions to things like network gear and whatnot.
I'll probably go with the ERPro8 mostly for the fact that it's nowhere near as power hungry as the ASA. I'm currently using an ERPro PoE in my home setup and have no complaints. It has served me well.
Well think of it this way... your employer currently uses neither. So learning either for your employer's current needs is moot. One is highly applicable as to something that would be a great choice for your employer in the future; the other is not.
-
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
I am curious to know...how is knowing EdgeOS is more useful than ASA software?
Because one is the "most applicable to the SMB market" of any product in the category. The other borders on being the least
Thinking SMB, this makes perfect sense. No way in [insert expletive] I would make a SMB sell their soul for Cisco gear when other gear would be just as good (or better) at a fraction of the cost.
-
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
I am curious to know...how is knowing EdgeOS is more useful than ASA software?
Because one is the "most applicable to the SMB market" of any product in the category. The other borders on being the least
Thinking SMB, this makes perfect sense. No way in [insert expletive] I would make a SMB sell their soul for Cisco gear when other gear would be just as good (or better) at a fraction of the cost.
Does getting bigger than SMB suddenly make ASA make sense when it does less?
-
My point there being... Cisco does make gear for the enterprise, but the ASA isn't one of those items.
-
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
I want to continually improve my skill set in ways that directly benefts my current employer, but I also don't want to be someone who wears blinders to the various options one has for solutions to things like network gear and whatnot.
I'll probably go with the ERPro8 mostly for the fact that it's nowhere near as power hungry as the ASA. I'm currently using an ERPro PoE in my home setup and have no complaints. It has served me well.
Well think of it this way... your employer currently uses neither. So learning either for your employer's current needs is moot. One is highly applicable as to something that would be a great choice for your employer in the future; the other is not.
Hm, I suppose this is one way to think about it.
-
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
@scottalanmiller said in Cisco ASA5510 vs Ubiquiti ERPro8:
@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:
I want to continually improve my skill set in ways that directly benefts my current employer, but I also don't want to be someone who wears blinders to the various options one has for solutions to things like network gear and whatnot.
I'll probably go with the ERPro8 mostly for the fact that it's nowhere near as power hungry as the ASA. I'm currently using an ERPro PoE in my home setup and have no complaints. It has served me well.
Well think of it this way... your employer currently uses neither. So learning either for your employer's current needs is moot. One is highly applicable as to something that would be a great choice for your employer in the future; the other is not.
Hm, I suppose this is one way to think about it.
What's the other way? LOL
