I recently bought a Cisco ASA 5500 for my home office. I was planning on installing and configuring it this weekend, but it only just occurred to me that it probably doesn't support UPnP, and that I've grown quite fond of the UPnP stuff I have on my network (mostly using my PS3 to connect to my media server).
So, does anyone know if there is a way to do UPnP on an ASA (google didn't seem to think so), or if it's possible to somehow enable UPnP on a network that uses an ASA? I'm unsure if the router is integral to UPnP or if I could like setup a service on a machine, similar to how most people use their router for DHCP but I could just as easily run a DHCP service on one of my servers on the network to accomplish the same thing.
They can't, and probably never will, offer this function sorry. This may seem rude, it's not meant to be, but ASA's are professional kit, UPNP is a home oriented protocol - you'll rarely find pro kit doing things that people want in their homes and vice versa.
Yeah...ummmmm...that's not going to happen. I can't think of any respectable network engineer who would consider UPNP a feature and not a glaring security hole in their firewall. Remember that the ASA is not a home internet sharing gateway. It is a professional firewall designed to protect your network. Letting any unauthenticated client open up ports in the firewall would just be stupidity for Cisco to allow.
If you PS3 and your media server are on the same subnet, your ASA will not need to be involved at all. UPnP discovery is multicast, which doesn't need the participation or cooperation of your firewall as long as it's on the same segment.
If it is on different segments (that is, different interfaces off the firewall), you can probably still make it happen by configuring PIM on the ASA.
Re: other answers; the port-forwarding feature is definitely a "no-way-in-hell", I agree, but the multicast device discovery for media streaming should be just fine.