Cisco VPN 3000 Concentrator Series



Similar documents
Cisco VPN 3000 Series Concentrator

Cisco VPN 3000 Series Concentrator

General Computer Network VPN Solutions

Cisco RV082 Dual WAN VPN Router Cisco Small Business Routers

Cisco TelePresence Video Communication Server Starter Pack Express Bundle

Network Security Firewall

Cisco SR 520-T1 Secure Router

Introduction of Quidway SecPath 1000 Security Gateway

Cisco 7100 Series VPN Routers

Cisco RV 120W Wireless-N VPN Firewall

Cisco Nexus 7000 Series Supervisor Module

Cisco TelePresence Video Communication Server

Cisco Cisco 3845 X X X X X X X X X X X X X X X X X X

Integrated Services Router with the "AIM-VPN/SSL" Module

Cisco TelePresence Video Communication Server Expressway

Gigabit SSL VPN Security Router

Cisco TelePresence Video Communication Server

Cisco 1600 Series Modular Desktop Access Routers

EdgeRouter Lite 3-Port Router. Datasheet. Model: ERLite-3. Sophisticated Routing Features. Advanced Security, Monitoring, and Management

Cisco TelePresence MSE 8000

Gigabit Multi-Homing VPN Security Router

Securing Networks with PIX and ASA

Public Internet Access Done the Right Way

Datasheet. Advanced Network Routers. Models: ERPro-8, ER-8, ERPoe-5, ERLite-3. Sophisticated Routing Features

Cisco TelePresence Video Communication Server

Cisco Which VPN Solution is Right for You?

Advanced Network Routers. Datasheet. Model: ERLite-3, ERPoe-5. Sophisticated Routing Features. Advanced Security, Monitoring, and Management

Professional Integrated SSL-VPN Appliance for Small and Medium-sized businesses

Integrated Services Router with the "AIM-VPN/SSL" Module

Cisco Easy VPN on Cisco IOS Software-Based Routers

QuickSpecs. Models. Features and benefits Application highlights. HP 7500 SSL VPN Module with 500-user License

Cisco TelePresence MSE 8000

Unified Services Routers

Cisco RV220W Network Security Firewall

Cisco TelePresence ISDN GW MSE 8321

SonicWALL Advantages Over WatchGuard

Cisco TelePresence Video Communication Server

Cisco TelePresence Video Communication Server

QuickSpecs. Models. Features and benefits Configuration. HP VCX x3250m2 IP Telecommuting Module. HP VCX x3250m2 IP Telecommuting Module Overview

How To Use The Cisco Wide Area Application Services (Waas) Network Module

Cisco Communication Media Module

Virtual Private Network and Remote Access Setup

WANic 800 & or 2 HSSI ports Up to 52 Mbps/port. WANic 850 & or 2 T3 or E3 ports Full-speed CSU/DSU. WANic 880.

Cisco TelePresence MSE 8000

Cisco RV220W Network Security Firewall

Cisco M-Series Content Security Management Appliance for and Web Security Appliances

Load Balance Router R258V

AP-GSS3000 TM 512Ch GSM SIM Server

CENTRAL MONITORING AND MANAGEMENT. CMX SERIES DATASHEET CENTRALIZED MANAGEMENT

How To Use A Cisco Wvvvdns4400N Wireless-N Gigabit Security Router For Small Businesses

Cisco Application Networking Manager Version 2.0

APV9650. Application Delivery Controller

Unified Services Routers

- Introduction to PIX/ASA Firewalls -

Centralized Orchestration and Performance Monitoring

TK C -25 C 95% RH EMC TK701G TK701U TK704G TK704U TK704W. TK-Series Cellular Router

Table of Contents. 1 Overview 1-1 Introduction 1-1 Product Design 1-1 Appearance 1-2

Understanding the Cisco VPN Client

Ixia Director TM. Powerful, All-in-One Smart Filtering with Ultra-High Port Density. Efficient Monitoring Access DATA SHEET

QuickSpecs. HP Compaq t5525 Thin Client. Overview

TABLE OF CONTENTS NETWORK SECURITY 2...1

WAN Failover Scenarios Using Digi Wireless WAN Routers

ALLNET ALL-VPN10. VPN/Firewall WLAN-N WAN Router

Cisco TelePresence IP GW MSE 8350

Other VPNs TLS/SSL, PPTP, L2TP. Advanced Computer Networks SS2005 Jürgen Häuselhofer

Unified Services Routers

Cisco 2600 Series Modular Access Routers

Nokia IP Security Platforms Technical Specifications Guide Nokia Enterprise Solutions

ENHWI-N n Wireless Router

Cisco VPN Internal Service Module for Cisco ISR G2

Cisco WRVS4400N Wireless-N Gigabit Security Router: Cisco Small Business Routers

Specifications. Cisco CSS Benefits. Cisco CSS Benefits. Hardware

Cisco RV110W Wireless-N VPN Firewall

APV x600 Series. Application Delivery Controller APV1600, APV2600, APV4600, APV5600, APV6600, APV8600, APV9600

Content Switching Module for the Catalyst 6500 and Cisco 7600 Internet Router

BRC-W14VG-BT Wireless BitTorrent Download Router

Monitoring Remote Access VPN Services

Emerson Smart Firewall

Ixia xstream TM 10. Aggregation, Filtering, and Load Balancing for qgbe/10gbe Networks. Aggregation and Filtering DATA SHEET

The Alteon isd SSL Accelerator, V2.0

NLoad Balancing Stackable Switch

Cisco TelePresence Conductor

Break Internet Bandwidth Limits Higher Speed. Extreme Reliability. Reduced Cost.

Sophos SG Series Appliances

Table of Contents. Cisco Cisco VPN Client FAQ

NetScreen Security Appliances

How To Set Up A Cisco Rv110W Wireless N Vpn Network Device With A Wireless Network (Wired) And A Wireless Nvv (Wireless) Network (Wireline) For A Small Business (Small Business) Or Remote Worker

Implementing Secured Converged Wide Area Networks (ISCW) Version 1.0

Cisco RV110W Wireless-N VPN Firewall

TechGuard Firewall Products Specs/Parts/Competitive Analysis

Virtual Private Network and Remote Access

EdgeMarc 4508T4/4508T4W Converged Networking Router

Appendix A: Configuring Firewalls for a VPN Server Running Windows Server 2003

Wireless Controller DWC-1000

NXC5200/ NWA5000-N Series Wireless LAN Controller/ a/b/g/n Managed Access Point

UTT Technologies offers an effective solution to protect the network against 80 percent of internal attacks:

Quidway AR 18-1X Series Router Datasheet

NCP Secure Enterprise Management Next Generation Network Access Technology

Infoblox DDI Appliances. Hardware and Performance Specifications

Virtual Private Networks

Transcription:

Cisco VPN 3000 Concentrator Series Product Overview The Cisco VPN 3000 Concentrator Series is a best-of-breed, remote-access VPN solution for enterprise-class deployment. A standards-based, easy-to-use VPN client and scalable VPN tunnel termination devices are included as well as a management system that enables corporations to easily install, configure and monitor their remote access VPNs. Incorporating the most-advanced, high-availability capabilities with a unique purpose-built, remote-access architecture, the Cisco VPN 3000 Concentrator allows corporations to build high-performance, scalable, and robust VPN infrastructures to support their mission-critical, remote-access applications. Unique to the industry, it is the only scalable platform to offer components that are field-swappable and can be upgraded by the customer. These components, called Scalable Encryption Processing (SEP) modules, enable users to easily add capacity and throughput. The Cisco VPN 3000 Concentrator supports the widest range of VPN client software implementations, including the Cisco VPN Client, VPN 3002 Hardware Client, the Microsoft Windows 2000 L2TP/IPsec Client and the Microsoft PPTP for Windows 95, Windows 98, Windows NT, and Windows 2000. The Cisco VPN 3000 Concentrator is available in five different models to support any business: Cisco VPN 3005 Concentrator The 3005 is a VPN platform designed for small- to medium-sized organizations with bandwidth requirements up to fullduplex T1/E1 (4Mbps maximum performance) and up to 100 simultaneous sessions. Encryption processing is performed in software. The 3005 does not have built-in upgrade capability. Cisco VPN 3015 Concentrator The 3015 is a VPN platform designed for small- to medium-sized organizations with bandwidth requirements up to full-x T1/E1 (4Mbps maximum performance) and up to 100 simultaneous sessions. Like the 3005, encryption processing is performed in software, but the 3015 is also field-upgradeable to models 3030,3060, and 3080. Cisco VPN 3030 Concentrator The 3030 is a VPN platform designed for medium- to large-sized organizations with bandwidth requirements from full T1/ E1 through fractional T3 (50 Mbps maximum performance) and up to 1500 simultaneous sessions. Specialized SEP modules perform hardware-based acceleration. The 3030 is field-upgradeable to the 3060. Redundant and non-redundant configurations are available. Cisco VPN 3060 Concentrator The 3060 is a VPN platform designed for large organizations demanding the highest level of performance and reliability, with high-bandwidth requirements from fractional T3 through full T3/E3 or greater (100 Mbps maximum performance) and up to 5000 simultaneous sessions. Specialized SEP modules perform hardware-based acceleration. Redundant and nonredundant configurations are available. Cisco VPN 3080 Concentrator The 3080 is optimized to support large enterprise organizations that demand the highest level of performance combined with support for up to 10,000 simultaneous remote access sessions. Specialized SEP modules perform hardware-based acceleration. The VPN 3080 is available in a fully redundant configuration only. Cisco VPN Client Simple to deploy and operate, the Cisco VPN Client is used to establish secure, end-to-end encrypted tunnels to compliant* Cisco Remote Access VPN devices. This thin design, IPSec-compliant implementation is available via CCO download for use with any compliant* Cisco Remote Access VPN product and is included free of charge with the Cisco VPN 3000 Concentrator. The client can be pre-configured for mass deployments and initial logins require very little user intervention. Visit Cisco Connection Online at www.cisco.com 1

VPN access policies and configurations are downloaded from the central gateway and pushed to the client when a connection is established, allowing simple deployment and management. The Cisco VPN client provides support for Windows 95, 98, ME, NT 4.0, and 2000. The Cisco VPN Client is compatible with the following Cisco product versions (compliant Cisco Remote Access products): Cisco VPN 3000 Concentrator Release 3.0 IOS-based platforms (future availability) Cisco VPN 5000 Concentrator Release 6.2 and greater (future availability) PIX Firewalls Release 6.0 and greater (future availability) Key Features and Benefits Cisco VPN 3000 Concentrator Series Features Table 19-6: Feature Summary for the Cisco VPN 3000 Series Feature Cisco 3005 Cisco 3015 Cisco 3030 Cisco 3060 Cisco 3080 Simultaneous Users 100 100 1500 5000 10000 Encryption Throughput 4 Mbps 4 Mbps 50 Mbps 100 Mbps 100 Mbps Encryption Method Software Software Hardware Hardware Hardware Encryption (SEP) Module 0 0 1 2 4 Redundant SEP N/A N/A Option Option Yes Available Expansion Slots 0 4 3 2 N/A Upgrade Capability No Yes Yes N/A N/A System Memory 32 MB (fixed) 64 MB 128 MB 256 MB 256 MB T1 WAN Module Fixed option Option Option Option Option Hardware 1U, Fixed 2U, Scalable 2U, Scalable 2U, Scalable 2U Dual Power Supply Single Option Option Option Yes Client License Unlimited Unlimited Unlimited Unlimited Unlimited The Cisco VPN 3000 Concentrator Series supports the entire range of enterprise applications. Product Highlights High-Performance, Distributed-Processing Architecture Cisco SEP modules provide hardware-based encryption, ensuring consistent performance throughout the rated capacity (3030-3080). Large-scale tunneling support provided for IPsec, PPTP and L2TP/IPSec connections. Scalability (3015-3080) Modular design (four expansion slots) provides investment protection, redundancy and a simple upgrade path. System architecture is designed to supply consistent, high-availability performance. All digital design provides the highest reliability and 24-hour continuous operation. Robust instrumentation package provides run-time monitoring and alerts. Microsoft compatibility offers large-scale client deployment and seamless integration with related systems. Security 2 Cisco Product Catalog, June, 2002

Full support of current and emerging security standards allows for integration of external authentication systems and interoperability with third-party products. Firewall capabilities through stateless packet filtering and address translation to assure the required security of a corporate LAN. User and group level management offers maximum flexibility. High Availability Redundant subsystems and multi-chassis fail-over capabilities ensure maximum system uptime. Extensive instrumentation and monitoring capabilities provide network managers with real-time system status and early-warning alerts. Robust Management The Cisco VPN 3000 Concentrators can be managed using any standard Web browser (HTTP or HTTPS), as well as by Telnet, Secure Telnet, SSH, and via a console port. Configuration and monitoring capability is provided for both the enterprise and the service provider. Access levels are configurable by user and groups, allowing easy configuration and maintenance of security policies. s Hardware Table 19-7: Technical s for Cisco VPN 3000 Series Description Processor Ports Memory Encryption Embedded LAN Interfaces Instrumentation Motorola PowerPC Processor Console port-asynchronous serial (DB-9) Redundant system images (Flash) Variable memory options (see chart) 3005, 3015: Software encryption 3030, 3060, 3080: Hardware encryption 3005: Two auto-sensing, full-duplex 10/100BaseTX Fast Ethernet (public/untrusted, private/trusted) 3015-3080: Three auto-sensing, full-duplex 10/100BaseTX Fast Ethernet (public/untrusted, private/trusted and DMZ) 3005 Front panel: Unit status indicator 3005 Rear panel: Status light-emitting diodes (LED) for Ethernet ports 3015-3080 Front panel: Status LEDs for system, expansion modules, power supplies, Ethernet modules, fan 3015-3080 Rear panel: Status LEDs for Ethernet modules, expansion modules, power supplies 3015-3080:Activity monitor displays number of sessions, aggregate throughput, or CPU utilization; pushbutton selectable Table 19-8: Power Requirements for Cisco VPN 3000 Series Description 3005 3015-3080 Nominal 15 watts (51.22BTU/hr) 35 watts (119.50BTU/hr) Maximum 25 watts (85.36BTU/hr) 50 watts (170.72BTU/hr) Input Voltage 100-240VAC 100-240VAC Frequency 50/60 Hz 50/60 Hz Power Factor Correction Universal Universal Visit Cisco Connection Online at www.cisco.com 3

Table 19-9: Physical and Environmental Characteristics for Cisco VPN 3000 Series Description 3005 3015 3030 3060 3080 Dimensions (HxWxD) 1.75 x 17.5 x 11.5 in. (4.45 x 44.45 x 29.21 cm) 3.5 x 17.5 x 14.5 in. (8.89 x 44.45 x 36.83 cm) Same as 3015 Same as 3015 Same as 3015 Weight 8.5 lbs (3.9 kg) 27 lbs (12.3 kg) 28 lbs (12.7 kg) 33 lbs (15 kg) 33 lbs (15 kg) Operating Temperature 32 to 131 F (0 to 55 C) Same as 3005 Same as 3005 Same as 3005 Same as 3005 Storage Temperature -4 to 176 F (-20 to 80 C) Same as 3005 Same as 3005 Same as 3005 Same as 3005 Humidity 0-to-95% non-condensing Same as 3005 Same as 3005 Same as 3005 Same as 3005 Table 19-10: Regulatory Approvals for Cisco VPN 3000 Series Description Regulatory Compliance Safety EMC CE Marking UL 1950, CSA FCC Part 15 (CFR 47) Class A, EN 55022 Class A, EN 50082-1, AS/NZS 3548 Class A, VCCI Class A Software Table 19-11: Software Requirements for Cisco VPN 3000 Series Description Compatibility Client Software Compatibility Tunneling Protocols Encryption/ Authentication Key Management Routing Protocols Third-Party Compatibility High Availability Cisco VPN Client (IPsec) for Windows 95, 98, ME, NT 4.0 and Windows 2000, including centralized splittunneling control and data compression Cisco VPN 3002 Hardware Client Microsoft PPTP/MPPE/MPPC Microsoft L2TP/IPsec for Windows 2000 MovianVPN (Certicom) Handheld VPN Client with ECC IPsec, PPTP, L2TP, L2TP/IPsec, NAT Transparent IPsec IPsec Encapsulating Security Payload (ESP) using DES/3DES (56/168-bit) with MD5 or SHA, MPPE using 40/128-bit RC4 Internet Key Exchange (IKE) RIP, RIP2, OSPF, Static, Automatic endpoint discovery, Network Address Translation (NAT), Classless Interdomain Routing (CIDR) Certicom, ipass Ready, Funk Steel Belted RADIUS certified, NTS TunnelBuilder VPN Client (Mac and Windows), Microsoft Internet Explorer, Netscape Communicator, Entrust, GTE Cybertrust, Baltimore, RSA Keon, Verisign VRRP protocol for multi-chassis redundancy and fail-over Destination pooling for client-based fail-over and connection re-establishment Redundant SEP modules (optional), power supplies, and fans (3015-3060) Redundant SEP modules, power supplies, and fans (3080) 4 Cisco Product Catalog, June, 2002

Description Management Configuration Embedded management interface is accessible via console port, Telnet, SSH, and Secure HTTP Administrator access is configurable for five levels of authorization. Authentication can be performed externally via TACACS+ Role-based management policy separates functions for service provider and end-user management Security Monitoring Authentication and Accounting Servers Internet-Based Packet Filtering Policy Management Event logging and notification via e-mail (SMTP) Automatic FTP backup of event logs SNMP MIB-II support Configurable SNMP traps Syslog output System status Session data General statistics Support for redundant external authentication servers: - RADIUS (Remote Authentication Dial-In User Service) - Microsoft NT Domain authentication - RSA Security Dynamics (SecurID Ready) Internal Authentication server for up to 100 users TACACS+ Administrative user authentication X.509v3 Digital Certificates RADIUS accounting Source and destination IP address Port and protocol type Fragment protection FTP session filtering By individual user or group - Filter profiles - Idle and maximum session timeouts - Time and day access control - Tunneling protocol and security authorization profiles -IP Pool Authentication Servers Ordering Information Product Part Numbers All part descriptions and part numbers for Cisco products can be accessed using the online Cisco Pricing Tool at http://www.cisco.com/cgi-bin/order/pricing_root.pl Visit Cisco Connection Online at www.cisco.com 5

6 Cisco Product Catalog, June, 2002

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information