Cisco VPN Security Routers Setting the Standard in Site-to-Site VPN Solutions



Similar documents
Cisco IOS Public-Key Infrastructure: Deployment Benefits and Features

CISCO PIX SECURITY APPLIANCE LICENSING

Cisco Conference Connection

How To Get A New Phone System For Your Business

CISCO METRO ETHERNET SERVICES AND SUPPORT

THE BUSINESS CASE FOR MANAGED SERVICES IN SMALL AND MEDIUM-SIZED BUSINESSES

CISCO CONTENT SWITCHING MODULE SOFTWARE VERSION 4.1(1) FOR THE CISCO CATALYST 6500 SERIES SWITCH AND CISCO 7600 SERIES ROUTER

Cisco 2600XM DSL Router Bundles

Cisco CNS NetFlow Collection Engine Version 4.0

Cisco 2-Port OC-3/STM-1 Packet-over-SONET Port Adapter

CISCO IPSEC VPN SERVICES MODULE FOR THE CISCO CATALYST 6500 SERIES AND CISCO 7600 SERIES

THE CISCO CRM COMMUNICATIONS CONNECTOR GIVES EMPLOYEES SECURE, RELIABLE, AND CONVENIENT ACCESS TO CUSTOMER INFORMATION

CISCO NETWORK CONNECTIVITY CENTER

CISCO IOS IP SERVICE LEVEL AGREEMENT

Cisco CNS NetFlow Collection Engine Version 5.0

PUBLIC KEY INFRASTRUCTURE CERTIFICATE REVOCATION LIST VERSUS ONLINE CERTIFICATE STATUS PROTOCOL

CISCO IP PHONE SERVICES SOFTWARE DEVELOPMENT KIT (SDK)

It looks like your regular telephone.

CISCO MDS 9000 FAMILY PERFORMANCE MANAGEMENT

Cisco 7200 Series Enterprise WAN Aggregation Application

CISCO SMALL AND MEDIUM BUSINESS CLASS VOICE SOLUTIONS: CISCO CALLMANAGER EXPRESS BUNDLES

Cisco Secure Access Control Server Solution Engine

NetFlow Feature Acceleration

Cisco IT Data Center and Operations Control Center Tour

CISCO WIRELESS SECURITY SUITE

CISCO 7304 SERIES ROUTER PORT ADAPTER CARRIER CARD

Cisco Systems GigaStack Gigabit Interface Converter

IS YOUR OLD PHONE SYSTEM HANGING UP YOUR DISTRICT? CISCO K 12 DIRECT LINE SOLUTION FOR IP COMMUNICATIONS

CISCO ATA 186 ANALOG TELEPHONE ADAPTOR

CISCO IOS SOFTWARE RELEASES 12.4 MAINLINE AND 12.4T FEATURE SETS FOR THE CISCO 3800 SERIES ROUTERS

Cisco 7200 and 7500 Series Routers

CISCO IOS SOFTWARE FEATURE PACKS FOR THE CISCO 1700 SERIES MODULAR ACCESS ROUTERS AND CISCO 1800 SERIES (MODULAR) INTEGRATED SERVICES ROUTERS

HIGH-DENSITY PACKET VOICE DIGITAL SIGNAL PROCESSOR MODULE FOR CISCO IP COMMUNICATIONS SOLUTION

Cisco Router and Security Device Manager File Management

Cisco Router and Security Device Manager Dial-Backup Solution

Cisco IOS Telephony Services Survivable/Standby Remote Site Telephony

NETWORK AVAILABILITY IMPROVEMENT SUPPORT OPERATIONAL RISK MANAGEMENT ANALYSIS

E-Seminar. Financial Management Internet Business Solution Seminar

Combined voice and data solution supports Orange s ongoing success in the UK business market

CISCO ATA 188 ANALOG TELEPHONE ADAPTOR

Cisco PIX Device Manager v3.0

IP Networking and the Advantages of consolidation

Cisco IOS Firewall Intrusion Detection System

Cisco GLBP Load Balancing Options

CISCO ISDN BRI S/T WIC FOR THE CISCO 1700, 1800, 2600, 2800, 3600, 3700, AND 3800 SERIES

CISCO IOS SOFTWARE RELEASES 12.4 MAINLINE AND 12.4T FEATURE SETS FOR THE CISCO 2800 SERIES ROUTERS

Cisco Blended Agent: Bringing Call Blending Capability to Your Enterprise

How To Outtask Metro Ether To A Managed Service Provider

Serial Connectivity Network Modules for the 2600, 3600, and 3700 Series (NM-1HSSI, NM-4T, NM-4A/S, NM-8A/S, NM-16A/S, NM-16A, NM-32A)

Cisco WebEx Social Compatibility Guide

CISCO CATALYST 3750 SERIES SWITCHES

Cisco AVVID Network Enterprise Data Center Solution Overview

CISCO NETWORK CONNECTIVITY CENTER MPLS MANAGER 1.0

Cisco Catalyst 6500 Series/Cisco 7600 Series Supervisor Engine 720-3BXL

CISCO CATALYST 6500 SERIES CONTENT SWITCHING MODULE

CISCO AIRONET POWER INJECTOR

CISCO ISDN BRI S/T WIC FOR THE CISCO 1700, 1800, 2600, 2800, 3600, 3700, AND 3800 SERIES

Figure 1. The Cisco Aironet Power Injectors Provide Inline Power to Cisco Aironet Access Points and Bridges

Cisco Intelligent Contact Management Enterprise Edition

IP Communications for Small Offices Using Cisco CallManager Express and Cisco Unity Express

CISCO SFP OPTICS FOR PACKET-OVER-SONET/SDH AND ATM APPLICATIONS

Cisco SMB Class Solutions Your Next Phone System Purchase

SOUTH BAY BMW ACHIEVES UNMATCHED AVAILABILITY AND SECURITY WITH ITS CISCO NETWORK

PREVENTING WORM AND VIRUS OUTBREAKS WITH CISCO SELF-DEFENDING NETWORKS

Cisco PBX Interoperability: Lucent/Avaya Definity G3si V7 PBX with CallManager using Analog FXS and FXO Interfaces as an MGCP Gateway

E-Seminar. E-Commerce Internet Business Solution Seminar

networks (VPNs). models, the Cisco 800 series of routers addresses wide range Figure 1 Cisco 800 Series Routers give Small Offices and Corporate

The Palace of Versailles Goes Digital, Increasing Revenue and Enhancing Overall Visitor Experience

Cisco Aironet 1130AG Series

CISCO CATALYST 6500 SUPERVISOR ENGINE 32

CISCO MEETINGPLACE MANAGED SERVICE

Internal IT Staff at a Serbian Children s Hospital Takes Innovative Approach to Outpatient Care

Cisco Secure Policy Manager Version 3.1

CISCO MEETINGPLACE FOR OUTLOOK 5.3

Cisco Solution Incentive Program Asia Pacific

Cisco Business Communications Solution. Brochure

Cisco Outbound Option

CISCO IP PHONE EXPANSION MODULE 7914

Enabling High Availability for Voice Services in Cable Networks

What is network convergence all about?

Optical Service Modules: OC-3/STM-1, OC-12/STM-4 and OC-48/STM-16 POS, OC-12/STM-4 ATM, Gigabit Ethernet WAN, Channelized T3 (CT3) and OC12/STM-4

CISCO CALLMANAGER EXPRESS 3.2

CISCO 100BASE-X SFP FOR FAST ETHERNET SFP PORTS

DATA SHEET. GigaStack GBIC THE CISCO SYSTEMS GIGASTACK GIGABIT INTERFACE CONVERTER (GBIC) IS A VERSATILE, LOW-COST,

Cisco Systems Brings World-Class Online Banking Solutions to State Bank of India

SERIAL AND ASYNCHRONOUS HIGH-SPEED WAN INTERFACE CARDS FOR CISCO 1800, 2800, AND 3800 SERIES INTEGRATED SERVICES ROUTERS

Cisco CSS Series Content Services Switch

CISCO 7609 ROUTER ENHANCED 9-SLOT CHASSIS

Cisco VPN Solution Center 2.2

How To Connect A Cisco Aironet 350 Series Wireless Bridge To A Network With A Wireless Bridge

CISCO 10GBASE X2 MODULES

CISCO NETWORK ANALYSIS SOFTWARE 3.4

Cisco IT Data Center and Operations Control Center Tour

CISCO DISTRIBUTED DENIAL OF SERVICE PROTECTION SOLUTION: LEADING DDOS PROTECTION FOR SERVICE PROVIDERS AND THEIR CUSTOMERS

CISCO SMARTNET SUPPORT AND CISCO SMARTNET ONSITE

Transcription:

Data Sheet Cisco VPN Security Routers Setting the Standard in Site-to-Site VPN Solutions Site-to-site virtual private networks (VPNs) are an alternative WAN infrastructure that replace or augment existing private networks using leased lines, Frame Relay, or ATM to connect remote and branch offices and central sites more cost-effectively and with increased flexibility. Interconnecting multiple sites requires a network manager to accommodate diverse traffic types and network topologies, ensure reachability and reliability of all devices in the network, provide a framework for managing numerous geographically dispersed devices and, of course, scale the network at the VPN aggregation hub site. Many of today s VPN devices lack the depth of networking features to accommodate these specific site-to-site VPN requirements. Figure 1 Cisco IOS VPN Routers Built on Cisco IOS Software, Cisco VPN security routers take advantage of best-in-market wide-area networking services to set the standard in site-to-site VPN solutions. Important site-to-site VPN features of Cisco VPN security routers include: Support for diverse networking environments IP security (IPSec) is a unicast, IP-only protocol. Cisco VPN security routers, using Cisco IOS Software features, accommodate multicast and multiprotocol traffic, as well as routing across the VPN, delivering flexible solutions for the most diverse VPN environments. Cisco VPN security routers also support manageable and scalable meshed VPN topologies. The Cisco Dynamic Multipoint VPN (DMVPN) feature makes deployment of meshed VPNs easier by automating provisioning of connections between spoke sites. Furthermore, DMVPN dynamically sets up connections based on network traffic patterns, increasing scalability of meshed deployments. Timely, reliable delivery of latency-sensitive traffic Bandwidth management features of Cisco VPN security routers enable traffic to be prioritized up to the application layer, facilitating differentiated quality-of-service (QoS) policies by true application type, not just TCP port number. The result is increased transmission reliability and better response time of business-critical applications running across the VPNs. All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 1 of 6

Voice and Video-Enabled IPSec VPN (V3PN) Solution The Cisco V3PN solution combines advanced QoS, telephony, networking, and VPN features of Cisco IOS Software with purpose-built hardware platforms to deliver a VPN infrastructure capable of transporting converged data, voice, and video traffic across a secure IPSec network. Unlike many VPN devices on the market, Cisco VPN devices accommodate the diverse network topology and traffic requirements of multiservice IPSec VPNs, thereby ensuring the VPN infrastructure does not break productivity-enhancing multiservice applications deployed now or in the future. Site-specific VPN scalability Cisco provides the broadest range of VPN devices, ranging from dedicated head-end VPN routers to single-unit, remote-office VPN router solutions, complete with WAN interfaces and stateful firewall. Cost-effective overlay broadband VPN devices for use behind carrier-provided DSL and cable devices are also an integral part of the Cisco VPN security router portfolio. Comprehensive VPN features Cisco VPN security routers support all features essential to VPNs IPSec data encryption, tunneling, broad certificate authority support for public key infrastructure (PKI) and advanced features such as stateful VPN failover, certificate auto-enrollment, stateful firewall, intrusion detection, and service-level validation. All-encompassing site-to-site VPN management framework Managing multiple VPN devices over multiple sites requires not only robust VPN configuration management and monitoring capabilities, but also device inventory and software version management features. Cisco delivers comprehensive enterprise-class VPN configuration and monitoring via CiscoWorks VPN/Security Management Solution (VMS). CiscoWorks VMS is an integral part of the Cisco SAFE Blueprint for network security. It combines Web-based tools for configuring, monitoring, and troubleshooting enterprise VPNs, firewalls, and network- and host-based intrusion detection systems (IDSs). For large enterprise and service provider deployments, Cisco VPN Solutions Center provides comprehensive VPN provisioning and management as well as integrated QoS and MPLS management. All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 2 of 6

Table 1 Cisco VPN Security Router Portfolio Site Model VPN Performance Tunnels Embedded Interfaces Modular Interface Options Integrated Broadband SOHO Cisco 830 Cisco 900 6 Mbps 6 Mbps <50 <50 10BaseT + DSL -or- 10BaseT + ISDN 10BaseT + Cable Overlay Broadband SOHO Cisco 830 Cisco 1700 6 Mbps 8 Mbps <50 100 Dual 10BaseT Dual 10BaseT Remote Office Cisco 1700 Cisco 2600XM 8 Mbps 14 Mbps 100 800 10BaseT Single -or- Serial, DSL, ISDN, Ethernet, Voice Branch Office Cisco 2691 Cisco 7400 Cisco 3725 80 Mbps 120 Mbps 150 Mbps 1000 5000 2000 Single -or- Dual 10/100/1000BaseT None, Single, -or- Central Hub Site Cisco 7400 Cisco 3745 120 Mbps 180 Mbps 5000 2000 Dual 10/100/1000BaseT None, Single, -or- Cisco 7200 225 Mbps 5000 Dual 10/100/1000BaseT Serial, POS, ATM, ISDN, E/FE/GE, Voice VPN Performance is determined using IPSec Triple Data Encryption Standard (3DES) HMAC-SHA1 on 1400-byte packets Site-to-Site VPN Benefits and Applications Reduce WAN Costs, Increase WAN Flexibility Using Internet transport, VPNs cut recurring WAN costs by 50 percent or more compared with traditional WAN technologies such as Frame Relay. And unlike Frame Relay, VPNs can be easily and quickly extended to new locations and extranet business partners. Deliver New, Revenue-Enhancing Applications via VPNs VPNs enable secure use of cost-effective, high-speed links such as DSL to deliver revenue-generating applications such as in-store online catalogs and ordering and efficiency tools such as online training. Increase Data and Network Security Traditional WANs using Frame Relay, leased lines, or ATM provide traffic segregation, not transport security. VPNs encrypt and authenticate traffic traversing the WAN to deliver true network security in an insecure, networked world. All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 3 of 6

Features VPN Tunneling IPSec (RFC 2401-2411, 2451) GRE (RFC 1701-1702) L2TP (RFC 2661) PPTP (RFC 2637) Encryption ESP DES, 3DES, and AES (RFC 2406, 2451) MPPE RC4 (40/128 bit) Authentication X.509 digital certificates (RSA signatures) Shared secrets Simple Certificate Enrollment Protocol RADIUS (RFC 2138) TACACS+ CHAP/PAP (RFC 1994) Integrity HMAC-MD5 & HMAC-SHA-1 (RFC 2403-2404) Key Management Internet Key Exchange (RFC 2407-2409) IKE-XAUTH IKE-CFG-MODEIP Compression IPPCP-LZS (RFC 2401-2402) Certificate Authority Support Entrust Verisign Microsoft iplanet Baltimore Technologies All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 4 of 6

Bandwidth Management/QoS Network-Based Application Recognition (NBAR) content-aware classification Class/Flow-based Weighted Fair Queuing (WFQ) Generic Traffic Shaping (GTS) Rate Limiting (Committed Access Rate [CAR]) Congestion Avoidance (Weighted Random Early Detection [WRED]) Resiliency Hot Standby Router Protocol (HSRP) IKE Keep-Alives Routing across IPSec Dynamic Multipoint for IPSec Management Options CiscoWorks VPN/Security Management Solution (VMS) The CiscoWorks Router Management Center, a component of Cisco VMS, provides scalable security management for the configuration and deployment of VPN connections. Cisco VPN Solution Center for Service Provider Networks Secure command-line interface using secure shell (SSH) or kerberized telnet Routing Protocols BGP4 RIP/RIP2 OSPF EIGRP/IGRP NHRP IS-IS Security Context Based Access Control (CBAC) stateful firewall Java blocking Active audit intrusion detection Denial-of-service detection and prevention Security Certifications FIPS-140-1, level 2 ICSA IPsec Common Criteria IPSec For more information, visit http://www.cisco.com/warp/public/779/largeent/issues/security/secvpncert.html All contents are Copyright 1992 2002 All rights reserved. Important Notices and Privacy Statement. Page 5 of 6

Corporate Headquarters 170 West Tasman Drive San Jose, CA 95134-1706 USA www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 European Headquarters Cisco Systems International BV Haarlerbergpark Haarlerbergweg 13-19 1101 CH Amsterdam The Netherlands www-europe.cisco.com Tel: 31 0 20 357 1000 Fax: 31 0 20 357 1100 Americas Headquarters 170 West Tasman Drive San Jose, CA 95134-1706 USA www.cisco.com Tel: 408 526-7660 Fax: 408 527-0883 Asia Pacific Headquarters Capital Tower 168 Robinson Road #22-01 to #29-01 Singapore 068912 www.cisco.com Tel: +65 317 7777 Fax: +65 317 7799 Cisco Systems has more than 200 offices in the following countries and regions. Addresses, phone numbers, and fax numbers are listed on the Cisco Web site at www.cisco.com/go/offices Argentina Australia Austria Belgium Brazil Bulgaria Canada Chile China PRC Colombia Costa Rica Croatia Czech Republic Denmark Dubai, UAE Finland France Germany Greece Hong Kong SAR Hungary India Indonesia Ireland Israel Italy Japan Korea Luxembourg Malaysia Mexico The Netherlands New Zealand Norway Peru Philippines Poland Portugal Puerto Rico Romania Russia Saudi Arabia Scotland Singapore Slovakia Slovenia South Africa Spain Sweden Switzerland Taiwan Thailand Turkey Ukraine United Kingdom United States Venezuela Vietnam Zimbabwe All contents are Copyright 1992 2002, All rights reserved. Cisco, Cisco Systems, Cisco IOS, and the Cisco Systems logo are registered trademarks or trademarks of and/or its affiliates in the U.S. and certain other countries. All other trademarks mentioned in this document or Web site are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0208R) LW3851 11/02

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information