Cisco VPN Solution Center 2.2



Similar documents
Cisco CNS NetFlow Collection Engine Version 4.0

CISCO NETWORK CONNECTIVITY CENTER

Cisco IOS Public-Key Infrastructure: Deployment Benefits and Features

CISCO METRO ETHERNET SERVICES AND SUPPORT

Cisco CNS NetFlow Collection Engine Version 5.0

CISCO CONTENT SWITCHING MODULE SOFTWARE VERSION 4.1(1) FOR THE CISCO CATALYST 6500 SERIES SWITCH AND CISCO 7600 SERIES ROUTER

E-Seminar. Financial Management Internet Business Solution Seminar

NetFlow Feature Acceleration

Cisco Conference Connection

CISCO IOS IP SERVICE LEVEL AGREEMENT

How To Get A New Phone System For Your Business

Cisco Blended Agent: Bringing Call Blending Capability to Your Enterprise

CISCO IP PHONE SERVICES SOFTWARE DEVELOPMENT KIT (SDK)

Cisco 7200 and 7500 Series Routers

CISCO PIX SECURITY APPLIANCE LICENSING

CISCO MDS 9000 FAMILY PERFORMANCE MANAGEMENT

It looks like your regular telephone.

THE BUSINESS CASE FOR MANAGED SERVICES IN SMALL AND MEDIUM-SIZED BUSINESSES

CISCO SMALL AND MEDIUM BUSINESS CLASS VOICE SOLUTIONS: CISCO CALLMANAGER EXPRESS BUNDLES

Cisco IT Data Center and Operations Control Center Tour

Cisco 7200 Series Enterprise WAN Aggregation Application

IP Networking and the Advantages of consolidation

Cisco Router and Security Device Manager File Management

THE CISCO CRM COMMUNICATIONS CONNECTOR GIVES EMPLOYEES SECURE, RELIABLE, AND CONVENIENT ACCESS TO CUSTOMER INFORMATION

Cisco Secure Access Control Server Solution Engine

PUBLIC KEY INFRASTRUCTURE CERTIFICATE REVOCATION LIST VERSUS ONLINE CERTIFICATE STATUS PROTOCOL

E-Seminar. E-Commerce Internet Business Solution Seminar

CISCO IOS SOFTWARE FEATURE PACKS FOR THE CISCO 1700 SERIES MODULAR ACCESS ROUTERS AND CISCO 1800 SERIES (MODULAR) INTEGRATED SERVICES ROUTERS

IS YOUR OLD PHONE SYSTEM HANGING UP YOUR DISTRICT? CISCO K 12 DIRECT LINE SOLUTION FOR IP COMMUNICATIONS

Cisco IOS Telephony Services Survivable/Standby Remote Site Telephony

CISCO NETWORK CONNECTIVITY CENTER MPLS MANAGER 1.0

CISCO IOS SOFTWARE RELEASES 12.4 MAINLINE AND 12.4T FEATURE SETS FOR THE CISCO 3800 SERIES ROUTERS

Cisco 2-Port OC-3/STM-1 Packet-over-SONET Port Adapter

NETWORK AVAILABILITY IMPROVEMENT SUPPORT OPERATIONAL RISK MANAGEMENT ANALYSIS

Cisco GLBP Load Balancing Options

CISCO IOS SOFTWARE RELEASES 12.4 MAINLINE AND 12.4T FEATURE SETS FOR THE CISCO 2800 SERIES ROUTERS

CISCO 7304 SERIES ROUTER PORT ADAPTER CARRIER CARD

Combined voice and data solution supports Orange s ongoing success in the UK business market

HIGH-DENSITY PACKET VOICE DIGITAL SIGNAL PROCESSOR MODULE FOR CISCO IP COMMUNICATIONS SOLUTION

Cisco SMB Class Solutions Your Next Phone System Purchase

CISCO WIRELESS SECURITY SUITE

Figure 1. The Cisco Aironet Power Injectors Provide Inline Power to Cisco Aironet Access Points and Bridges

Cisco Intelligent Contact Management Enterprise Edition

Enterprise Reporting

Cisco Router and Security Device Manager Dial-Backup Solution

Cisco Systems GigaStack Gigabit Interface Converter

Cisco IOS Firewall Intrusion Detection System

Cisco CSS Series Content Services Switch

Cisco 2600XM DSL Router Bundles

Serial Connectivity Network Modules for the 2600, 3600, and 3700 Series (NM-1HSSI, NM-4T, NM-4A/S, NM-8A/S, NM-16A/S, NM-16A, NM-32A)

CISCO ISDN BRI S/T WIC FOR THE CISCO 1700, 1800, 2600, 2800, 3600, 3700, AND 3800 SERIES

Cisco WebEx Social Compatibility Guide

networks (VPNs). models, the Cisco 800 series of routers addresses wide range Figure 1 Cisco 800 Series Routers give Small Offices and Corporate

CISCO MEETINGPLACE MANAGED SERVICE

Sybase Solutions for Healthcare Adapting to an Evolving Business and Regulatory Environment

CISCO SFP OPTICS FOR PACKET-OVER-SONET/SDH AND ATM APPLICATIONS

CISCO CATALYST 6500 SERIES CONTENT SWITCHING MODULE

What is network convergence all about?

CONNECT TO COMPREHENSIVE NETWORK SECURITY SOLUTIONS WITH THE CISCO IP NETWORK DEFENDER PROGRAM.

IP Communications for Small Offices Using Cisco CallManager Express and Cisco Unity Express

Internal IT Staff at a Serbian Children s Hospital Takes Innovative Approach to Outpatient Care

PREVENTING WORM AND VIRUS OUTBREAKS WITH CISCO SELF-DEFENDING NETWORKS

Cisco Catalyst 6500 Series/Cisco 7600 Series Supervisor Engine 720-3BXL

Cisco AVVID Network Enterprise Data Center Solution Overview

CISCO CATALYST 3750 SERIES SWITCHES

CISCO IP PHONE EXPANSION MODULE 7914

Cisco Aironet 1130AG Series

Cisco Solution Incentive Program Asia Pacific

CISCO AIRONET POWER INJECTOR

Cisco Outbound Option

CISCO WAN MANAGER 15 DATA SHEET

Cisco PBX Interoperability: Lucent/Avaya Definity G3si V7 PBX with CallManager using Analog FXS and FXO Interfaces as an MGCP Gateway

Cisco Secure Policy Manager Version 3.1

CISCO ATA 186 ANALOG TELEPHONE ADAPTOR

How To Outtask Metro Ether To A Managed Service Provider

World Consumer Income and Expenditure Patterns

DATA SHEET. GigaStack GBIC THE CISCO SYSTEMS GIGASTACK GIGABIT INTERFACE CONVERTER (GBIC) IS A VERSATILE, LOW-COST,

CISCO MEETINGPLACE FOR OUTLOOK 5.3

CISCO CALLMANAGER EXPRESS 3.2

How To Connect A Cisco Aironet 350 Series Wireless Bridge To A Network With A Wireless Bridge

Cisco IT Data Center and Operations Control Center Tour

CISCO WAN MANAGER 15.1

Cisco PIX Device Manager v3.0

CISCO ATA 188 ANALOG TELEPHONE ADAPTOR

Enabling High Availability for Voice Services in Cable Networks

CISCO 10GBASE X2 MODULES

CISCO ISDN BRI S/T WIC FOR THE CISCO 1700, 1800, 2600, 2800, 3600, 3700, AND 3800 SERIES

Triple-play subscriptions to rocket to 400 mil.

The Palace of Versailles Goes Digital, Increasing Revenue and Enhancing Overall Visitor Experience

CISCO CATALYST 6500 SUPERVISOR ENGINE 32

Appendix 1: Full Country Rankings

Enterprise Mobility Suite (EMS) Overview

SOUTH BAY BMW ACHIEVES UNMATCHED AVAILABILITY AND SECURITY WITH ITS CISCO NETWORK

PANDUIT Physical Layer Infrastructure Management. EMC Smarts Integration Module

Transcription:

Whitepaper VPN Solution Center 2.2 Introduction The VPN Solution Center 2.2 (VPNSC 2.2) is a carrier-class network- and servicemanagement solution for the rapid and cost-effective delivery of IP virtual private network (VPN) services. VPN services based on Internet Protocol (IP) and targeted to enterprise customers can represent major revenue opportunities for service providers. Success in this highly competitive market requires the ability to effectively plan, provision, operate, and bill for IP VPN services. The VPN Solution Center offers both Multiprotocol Label Switching (MPLS) and Security (IPSec) IP VPN service providers a customizable service- and network-management solution to facilitate successful, profitable, and rapid VPN service deployment. For service providers using the IPSec or MPLS transport framework, the VPN Solution Center provides a full complement of provisioning, monitoring, and administration tools that simplify the inherent complexities of managing a VPN infrastructure. By streamlining virtually every process in the VPN life cycle, VPN Solution Center helps service providers quickly and cost-effectively meet evolving customer requirements for functionality, security, and quality of service (QoS). VPN Solution Center 2.2: MPLS Solution VPN Solution Center 2.2 provides management of IP VPN services throughout the service life cycle including service provisioning and activation on customer-edge and provider-edge routers, service auditing and service-level agreement (SLA). The set of well-defined Common Object Request Broker Architecture application programming interfaces (CORBA APIs) provide external operations support systems (OSSs) access to the full capability of the VPN Solution Center, allowing flow-through provisioning and SLA monitoring. The VPN Solution Center complements VPN solutions by simplifying the planning, provisioning, and service-assurance processes, thereby reducing the cost of deploying and operating VPN services. Operators and upstream systems can add, delete, or modify customer MPLS VPNs and define the associated VPN service topology (hub-and-spoke, full, and extranet) via VPN Solution Center user interface or APIs. Wizards assist service technicians by simplifying the process of entering requested VPN service-related information, including customer and SLA profiles and QoS parameters for the service. The software then translates the VPN service request information into configurations All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 1 of 7

that implement the VPN service and validates the configuration. The VPN Solution Center keeps track of the current VPN state, including error conditions, of the service request and scheduled tasks. VPN Solution Center also supports router console provisioning and templates to allow operators to stage customer-edge devices in a managed service environment. VPN Solution Center can be used to activate Layer 3 configuration of the VPN service from initial router configuration to VPN service activation. Figure 1 depicts the MPLS module of the VPN Solution Center. Figure 1 VPN Solution Center 2.2: MPLS Solution VPN Solution Center 2.2: Security (IPSec) Solution The VPN Solution Center 2.2 security module enables customers to efficiently manage IPSec VPN deployment by configuring Internet Key Exchange (IKE) and IPSec tunnels between routers based on IOS Software, VPN 3000 Series concentrators, or PIX Firewall devices automatically with just minimum high-level service input from the users. Automating otherwise time-consuming and complex tasks including resolving incompatible or inconsistent IPSec and IKE policies among devices and the routing protocols among sites that only worsen as the VPN scales in size. The VPN Solution Center helps customers more rapidly respond to expanding and evolving client requirements. VPN Solution Center provides management of VPN services throughout the service life cycle including service provisioning and activation on routers, service auditing, and SLAs. The set of well-defined CORBA APIs provide external OSSs access to the full capability of VPN Solution Center, allowing flow-through provisioning and SLA monitoring. The VPN Solution Center complements VPN solutions by simplifying the planning, provisioning, and service-assurance processes, thereby reducing the cost of deploying and operating VPN services. Operators and upstream systems can add, delete, or modify customer IPSec VPNs and define the associated VPN service topology (hub-and-spoke, full, and extranet) via the VPN All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 2 of 7

Solution Center user interface or APIs. VPN Solution Center then translates the VPN service request information into configurations that implement the VPN service and validates the configuration. VPN Solution Center keeps track of the current VPN state, including error conditions, of the service request and scheduled tasks. VPN Solution Center also supports router console provisioning and templates to allow operators to provision other security-related services such as firewall (for both IOS and PIX Firewall), Network Address Translation (NAT), or even quality of service (QoS). Figure 2 depicts an IPSec VPN module of VPN Solution Center. Figure 2 VPN VPN Solution Center 2.2: IPSec Solution The VPN Solution Center Approach: Integrated Service-Level Management The VPN Solution Center eliminates common deployment and management issues by elevating the service provider's role to that of business manager, as opposed to low-level device-specific policy manager and administrator. The VPN Solution Center implements a business-centric, service-level-management model that allows the service provider to define high-level policies, while the application of those policies to specific network devices is offloaded to the VPN Solution Center software (Figure 3). The VPN Solution Center IPSec module provides full support for the provisioning and management of LAN-to-LAN VPN services using IOS customer premises equipment (CPE), VPN 3000 Series concentrators, and PIX devices, as well as remote-access VPN services using VPN 3000 Series concentrators. The VPN Solution Center MPLS module provides full support for virtually all provider- and customer-edge devices available. All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 3 of 7

Figure 3 VPN Solution Center Architecture API and Life-Cycle Management Internal Application Info Center Provisioning Center Concord Visual Network WANDL OSS Interface TIBCO CORBA Java XML Creation GUI Report Monitoring Modification VPN Life-Cycle Management Provision API Audit Deployment Intellligent VPN Service Management Engine Distributed Transport Gateway Server M 800 to 7500 Series Router NetFlow Router 12000 Series Internet Router ubr Universal Broadband Router MGX 4260 IOS Firewall VPN Solution Center Solution: Full VPN Life-Cycle Management The VPN Solution Center offers full life-cycle management, from creating the VPN to real-time provisioning, service activation, service auditing, and service assurance. The VPN Solution Center effectively accommodates the dynamic nature of VPNs, facilitating fast device additions, upgrades, or relocations, and other changes that allow service providers to address the needs of corporate clients. Designed for reliability, scalability, and flexibility, VPN Solution Center uniquely enables service providers to maintain VPN services with no service disruptions. VPN Solution Center Solution Highlights The VPN Solution Center provides the provisioning tools that enable rapid deployment and fast time to market of VPN services. The solution also simplifies management of complex, multiaccess, multiplatform VPN services, helping to reduce the service provider's overall administration and management costs. The VPN Solution Center also features open APIs and OSS interfaces to enable integration of IP VPN services into existing service provider OSSs. The first layer includes the OSS fault, configuration, and performance applications pre-integrated with the VPN Solution Center. Fault Info Center Configuration Provisioning Center All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 4 of 7

Performance Concord Network Health Monitor The second layer highlights VPN Solution Center key OSS interfaces, TIBCO event bus for synchronization, (CORBA API) access, and Java and Extensible Markup Language (XML) formatted input/output. The third layer focuses on the VPN Solution Center VPN life-cycle management The VPN creation can be done via a graphical user interface (GUI), API, or both. The generation of the delta configuration with the intelligent service-management engine enables continuous VPN services; see data sheet for additional information A patent-pending, intelligent, service-management engine is the key to automatic generation of the required IOS Software commands to create the VPN for any protocol (MPLS or IPSec) for any devices, DSL, cable, and all devices. The distributed transport gateway server provides distributed and scalable architecture to communicate with thousands of devices. Key to VPN Solution Center life-cycle management is that maintains the VPN service during updates with the intelligent VPN Solution Center Service Management Engine. Key features of VPN Solution Center include: Real-time provisioning An intelligent provisioning module (the patented Intelligent Network Engine) captures the intent of the VPN service and translates that intent into an intelligent object model. Based on simple service-order-entry information, the module configures the device and generates the complex instruction sets required to create the VPN. During provisioning requests, the VPN Solution Center collects real-time configuration and object model information to ensure accuracy. Automating the complexities of provisioning eliminates many operator errors, shortens service startup times, and lowers the cost of provisioning. The VPN Solution Center allows customers to create VPN service requests through either GUI or API and manages the entire life cycle for each service request, from service creation to service deployment, service audit, service monitoring, and the service report. Before a VPN is physically deployed, the VPN Solution Center calculates the delta and generates configlets that contain only minimum necessary commands that the VPN-involved routers need to know to deliver such a VPN. The same thing happens to modify a VPN. Flexible service activation A task scheduler enables operators to schedule the exact date and time of day for service activation. IOS Software commands the appropriate network elements to activate and then test services. High-performance service auditing A high-performance auditor validates IP VPN service configuration, monitors performance, and identifies faults to ensure high network integrity and service quality. The VPN Solution Center can also generate reports on the status of service requests (requested, pending, deployed, or functional). Service quality assurance Service-assurance features ensure that VPN target devices remain provisioned correctly and that the VPN itself is operational. Reports and alarms can be generated based on designated requirements, such as SLA thresholds. SLA monitoring and reporting A SLA subsystem monitors VPN-aware SLAs for round-trip times, availability, and usage. Thresholds can be configured that allow violations to be reported. QoS provisioning and measurement for service differentiation QoS provisioning enables service providers to offer and monitor different classes of service. Using a template engine, the VPN Solution Center generates router configurations that allocate bandwidth to different classes of service and then measures SLA compliance. Templates for streamlined provisioning VPN Solution Center templates, accessible via the VPN Solution Center OSS interface or administrative console, allow smart, flexible provisioning of IOS Software commands. Templates streamline common provisioning functions, making it faster and easier for operators to: Add, delete, and modify routers above and beyond IP VPN provisioning Establish extranet relationships Provision QoS, core devices, NAT, Hot Standby Router Protocol (HSRP), IOS firewalls, and IOS Software command-line interface (CLI) commands Assure high levels of provisioning accuracy via a power scripting language with syntax checking All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 5 of 7

Application Integration and Flow-Through Provisioning The VPN Solution Center operates as a standalone application for the creation of VPNs, or it can be integrated within the larger business application environment for increased efficiencies. The VPN Solution Center, for example, enhances Service Management applications such as Provisioning Center and Info Center, making them VPN aware and extending VPN Solution Center capabilities to multivendor environments. The following features extend the functionality of VPN Solution Center to meet business application requirements and to streamline integration into real-world environments. OSS interface CORBA APIs, a TIBCO event bus, and Java and XML interfaces support OSS application integration and flow-through provisioning. Fault management The VPN Solution Center integrates with the Info Center to provide service-level fault-management functions. Element- and network-level alarms and events can be correlated with service-level information to generate VPN-aware messages. Performance and other extended management functionality The VPN Solution Center can be easily integrated with third-party applications to provide service-level performance management and other extended security and management functions. These applications, provided by OSS and business support system (BSS) partners through the Service Provider Solutions Ecosystem, offer service providers a wide range of complementary functionality. Example includes Concord s Network Health Monitor for VPN performance reporting, and Portal and Belle System for IP VPN usage-based billing. Business Benefits of VPN Solution Center The benefits of using VPN Solution Center for deploying and managing VPN services range from faster time to market to improved network quality, reduced operational costs, and a lower total cost of ownership (TCO). The comprehensive management functionality of the VPN Solution Center also enables service providers to minimize initial investments by taking full advantage of existing infrastructures and devices. VPN Solution Center provides flexibility as well, allowing service providers to implement the most suitable framework IPSec for traffic that requires robust authentication and confidentiality, and MPLS for broader connectivity and low costs. In terms of scalability, VPN Solution Center ensures that service providers can meet both current and future service requirements without having to do a complete equipment upgrade. New Features in VPN Solution Center 2.2 VPN Solution Center Release 2.2 offers new functionality, including: IPSec-related features: PIX VPN provisioning Easy VPN template IE 2100 integration for plug and play VPN deployment MPLS-related features: New ease-of-use provisioning GUI IE 2100 integration for plug-and-play VPN deployment For More Information The following Web site offers more information about the VPN Solution Center: http://www.cisco.com/warp/public/cc/pd/ nemnsw/ipvpn/ All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 6 of 7

Corporate Headquarters 170 West Tasman Drive San Jose, CA 95134-1706 USA www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 European Headquarters Systems Europe 11 Rue Camille Desmoulins 92782 Issy-les-Moulineaux Cedex 9 France www-europe.cisco.com Tel: 33 1 58 04 60 00 Fax: 33 1 58 04 61 00 Americas Headquarters 170 West Tasman Drive San Jose, CA 95134-1706 USA www.cisco.com Tel: 408 526-7660 Fax: 408 527-0883 Asia Pacific Headquarters Capital Tower 168 Robinson Road #22-01 to #29-01 Singapore 068912 www.cisco.com Tel: +65 317 7777 Fax: +65 317 7799 Systems has more than 200 offices in the following countries and regions. Addresses, phone numbers, and fax numbers are listed on the Web site at www.cisco.com/go/offices Argentina Australia Austria Belgium Brazil Bulgaria Canada Chile China PRC Colombia Costa Rica Croatia Czech Republic Denmark Dubai, UAE Finland France Germany Greece Hong Kong SAR Hungary India Indonesia Ireland Israel Italy Japan Korea Luxembourg Malaysia Mexico The Netherlands New Zealand Norway Peru Philippines Poland Portugal Puerto Rico Romania Russia Saudi Arabia Scotland Singapore Slovakia Slovenia South Africa Spain Sweden Switzerland Taiwan Thailand Turkey Ukraine United Kingdom United States Venezuela Vietnam Zimbabwe All contents are Copyright 1992 2002, All rights reserved., IOS, Systems, the Systems logo, MGX, and PIX are registered trademarks of and/or its affiliates in the U.S. and certain other countries. All other trademarks mentioned in this document or Web site are the property of their respective owners. The use of the word partner does not imply a partnership relationship between and any other company. (0203R) MH/CI/0502

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information