Home > PIX \ ASA > ASA 8.4 – first look

ASA 8.4 – first look

Just under a year since the last major ASA version, Cisco released a new version: 8.4(x)

While this version came earlier than I would expect, there are some exciting new features, some of them definitely worth upgrading for. I have no intention telling the full story (or chewing the release notes for you ;)) but I do want to go over some of the features and the new commands they bring to the world:

EtherChannel support – up to 48 802.3ad EtherChannels of eight active interfaces each
new commands: channel-group, lacp port-priority, interface port-channel, lacp max-bundle, port-channel min-bundle, port-channel load-balance, lacp system-priority, clear lacp counters, show lacp, show port-channel.

Show Top CPU Processes – You can now monitor the processes that run on the CPU to obtain information related to the percentage of the CPU used by any given process.
new command: show process cpu-usage sorted

TCP Ping Enhancement – you can specify a source IP address and a port and source interface to send pings to a hostname or an IPv4 address
new command: command: ping tcp

Stateful Failover with Dynamic Routing Protocols – Routes that are learned through dynamic routing protocols (such as OSPF and EIGRP) on the active unit are now maintained in a Routing Information Base (RIB) table on the standby unit.
modified command: show failover, show route, show route failover.

Host Scan Package Support – support for the ASA to install or upgrade a Host Scan package and enable or disable Host Scan
new command: csd hostscan image path

These are only few changes that I find exciting and they show Cisco’s commitment to this product. If you’re running ASA (or even an old PIX) in your environment I highly recommend spending the time and reading the release notes. even if you’re not going to upgrade any time soon, it is always good to know what are the available options – you never know when you’ll need it.
If you already upgrade your ASA to 8.4 or even better – upgraded and used one of the new features, we want to hear about it!

  1. Steve
    February 11, 2011 at 7:00 pm

    I do not know why I do this as I must like to be on the knifes edge, but moving from 8.32 to 8.41 as I may use the Stateful Failover with Dynamic Routing Protocols feature soon. Applyed to edge 5505’s with no issues – watching blogs etc to make sure ok 0n 5510’s and above. Will move to it on a 5510 next weekend. SO far so good.

    • February 11, 2011 at 7:44 pm

      First good luck
      Second, we’d like to hear more about Your experience – either in a comment or private email to me (top right area of the blog) – and I’ll post your comments

  1. February 14, 2011 at 5:36 pm

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: