Cisco Systems 850 IPSec VPN, Network Foundation Protection, Onboard USB 1.1 Port, Certifications

Page 18

Cisco 1800 Modular Series

Benefits and Advantages continued

Admission Control (NAC) support for anti-virus

great modular density and high performance,

 

defense, the Cisco 1841 offers a robust and

the Cisco 1841 router provides security,

 

adaptable security solution for branch-office

versatility, scalability, and flexibility for multiple

 

routers.. Every Cisco 1800 Series router comes

applications to the small- to-medium-sized

 

with the factory-installed Cisco Router and

business, small enterprise branch office, and

 

Security Device Manager (SDM).. Cisco SDM is

the service provider customer edge.. The Cisco

 

an intuitive, Web-based device manager that

1841 router easily accommodates several

 

offers easy router configuration and monitoring,

network applications, such as secure branch-

 

startup wizards for quick deployment and lock-

office data access (including NAC for antivirus

 

down, smart wizards to help enable security

defense), VPN access and firewall protection,

 

and routing features, Cisco Technical Assistance

business-class DSL, IPS support, inter-VLAN

 

Center (TAC)-approved router configurations,

routing, and serial device concentration.. The

 

and subject-related educational content..

Cisco 1841 router provides customers with the

 

 

industry’s most flexible, secure, and adaptable

 

Integrated Services

infrastructure to meet both today’s and

 

By providing integrated services, as well as

tomorrow’s business requirements for maximum

 

investment protection..

 

 

 

 

 

 

Security Features

 

 

 

 

 

IPSec VPN

 

 

Advanced Encryption Standard (AES) 128, 192, and 256; Triple Data Encryption Standard (3DES); and DES cryptology support

Embedded hardware-based VPN acceleration on the motherboard

Cisco Easy VPN remote

Cisco Easy VPN server

Dynamic Multipoint VPN (DMVPN)

Virtual Tunnel Interfaces (VTI)

802..1x

VPN QoS —Preclassification support

Support for up to 800 IPSec tunnels using the AIM-VPN/BPII-PLUS

Cisco 1800 Modular Series

Security Features continued

Network Foundation Protection

 

 

• Control Plane Policing (CPP)

• Access Control List (ACL)

• AutoSecure

Command Line Interface (CLI)

• Secure Shell (SSH)

Committed Access Rate (CAR)

URL Filtering

• Local URL filtering in Cisco IOS software based on external server

Onboard USB 1.1 Port

Single onboard USB 1..1 port

Secure token and Flash memory support

Security Solutions

• Network Admission Control (NAC)

Optional Security Modules

• VPN and Encryption Advanced Integration Modules (AIM-VPN/BPII-PLUS)

Cisco Router and Security Device Manager (SDM)

• Ships by default

Certifications

 

• ICSA IPSec

• Common Criteria IPSec (EAL4) (in process)

• ICSA Firewall

• Common Criteria Firewall (EAL4+) (in process)

 

• FIPS 140-2, Level 2 (in process)

Security Example

Multiprotocol Label Switching (MPLS) VPN Support

• Support for VRF-lite and VRF aware IPSec

Cisco IOS IPS

Inline ability to drop packet, reset connection, locally shun, or send an alarm

Dynamically load and enable selected attack signatures in the same manner as Cisco IPS Appliances

Cisco IOS Firewall

Corporate

Headquarters

PSTN

 

 

 

Cisco 7200

V

SS7

(VoIP-enabled)

 

IMT

Large

Branch

Office

 

 

 

 

V

Cisco 3800

PRI

 

(VoIP-enabled)

Feature rich, stateful firewall

Per-user authentication and authorization

Real-time alerts

Transparent firewall

IPv6 firewall

IOS WebVPN (SSL VPN)

VRF-Aware firewall

Advanced Application Inspection and Control

HTTP inspection engine

E-mail inspection engines (SMTP, ESMTP, IMAP, POP)

SP IP VPN Core

Small

Branch

Branch

Office

Office

 

Secure remote access for mobile users without installing PC client software

Integrated into the router—no separate appliance required

Cisco 1841 supports up to 25 users

Requires IOS WebVPN feature license FL-WEBVPN-10 or FL-WEBVPN-25

Requires an IOS security feature set (IOS security feature set is included in all secure router bundles)

Cisco 1841

Cisco 2800

Branch office Network Admission Control (NAC) helps ensure that every endpoint complies with network security policies before being granted access, protecting the network from viruses and worms..

32

33

Image 18
Contents Cisco Router Guide Cisco Router Guide Integrated Services Routers Series Overview Cisco 7200 Series Product Transition Matrix Cisco 1711 Cisco 1811 Transition MatrixCisco Cisco 1801, 1802 CiscoCisco 850 Series Integrated ServicesEasy Setup and Deployment Remote ManagementWhen to Deploy Security FeaturesWlan Features Series DistinctionsCisco 870 Series Deploy the Cisco 870 Series when you need Cisco 870 Security FeaturesCisco 870 VPN Features Following in a small remote office, orHigh-Availability Features Cisco 1800 Series Fixed-Configuration Benefits and AdvantagesSecurity Application Example Integrated Wireless LAN CapabilityWireless VPN Dram MB Wireless Example High-Availability Features Example WANCISCO1802W-AG-E/K9 CISCO1801CISCO1801W-AG-E/K9 CISCO1803W-AG-A/K9Market-leading Integrated Security Cisco 1800 Series ModularEnhanced Architecture Flexibility and Investment ProtectionIPSec VPN Security SolutionsMultiprotocol Label Switching Mpls VPN Support Network Foundation ProtectionAIM Product BundlesCISCO1841 NMEIntegrated Switching Cisco 2800 SeriesInvestment Protection and Versatility IP Telephony Features Security Features Series Features OverviewFeatures Details Secure NetworkingNME EVM AIM Hwic Pvdm Features Details Cisco Srst Up to 96 phonesDeploy the Cisco 2800 Series when you need Pstn WANOptional items Cisco 2800 Series Base Chassis Part NumbersVoice Bundles Security BundlesBroadband Bundles Cisco 3800 SeriesInvestment Protection and Versatility WAN Optimization BundlesMedia Authentication and Encryption EVM-HDIP Telephony Features Deploy the Cisco 3800 Series when you needSrst NMD NMENME-X NME-XDApplication Examples Secure Voice BundlesCisco 7200 Series Connectivity/Flexibility Feature-RichMaximum ROI Common Port AdaptersSecurity Solutions Example Security Solutions CertificationsApplication Example CISCO7201 7206VXR/VSA+VPNK9MPLS/IPV6 CPEKey features of the Cisco 7301 Router are Next-Generation Policy and Subscriber SolutionCisco 7301 Series Compact Form Factor VPN Support Low Power ConsumptionBenefits & Advantages Security Features Benefits & AdvantagesKey Application Service Providers When To Deploy Internet VPN Tunnels Cisco Router EnabledCisco 7301 Bundles and Other Part Numbers Power SuppliesKey Applications for Enterprise deployments BroadbandProduct Number Product Description Memory options Cisco 7301 AccessoriesCisco 7301 Feature Licenses FR-ISG73=High-performance IP/MPLS Services Cisco 7304 SeriesHighly Scalable and Available CISCO7304-CH Deploy the Cisco 7304 when you needCISCO7304 CISCO7304CH-NSE150PA-A6-OC3MM= PA-A3-8E1IMA=PA-A3-8T1IMA= PA-A6-OC3SMI=7300-4RU/RCKBRKT= Product Number Product Description Cisco 7304 AccessoriesHALFSLOTBLNK= CNTR-SPTUM=Device Protection Service ProtectionCisco 7600 Series Network ProtectionCisco 7613 Systems Cisco 7609 Systems Cisco 7606 SystemsCisco 7604 Systems SPA-24CHT1-CE-ATM SPA-1CHOC3-CE-ATM= Cisco 7603 Flexwan ModulesCISCO7603-S SPA-24CHT1-CE-ATM=WS-F6700-DFC3BXL WS-SUP32-GE-3BWS-SUP720-3BXL WS-F6K-DFC3BPA-H= PA-2H OSM-1CHOC12/T1-SI OSM-1CHOC12/T1-SI=PA-H PA-E3Cisco 7600/CATALYST 6500 Ethernet Modules Cisco 7600 Services Modules SFP-GE-Z= CWDM-OADM4-1= CWDM-OADM4-2=SFP-GE-Z SFP-OC3-IR1Cisco Catalyst Series Maximum Network UptimeIntegrated Security Services Integration and FlexibilityValidated Solutions Scalable PerformanceFeature Cisco 6503-E Cisco 6504-E Cisco 6506-E Cisco 6509-E Cisco 6513 SystemsCisco 6504-E Systems Cisco 6509-E SystemsCisco 6506-E Systems Cisco 6503-E SystemsCisco 7600 and Catalyst 6500 SIP Modules and SPA Modules WS-SVC-AON-1-K9 ACE10-6500-K9WS-SVC-IPSEC-1= WS-X6066-SLB-APC=Cisco Security Services Modules Network Analysis Module NM-16ESW CiscoModularNetworkAccessModulesRoutersLAN and Mixed Media Network Modules NM-16ESW-1GIGPPWR-DCARD- 16ESW 1GIGNME-16ES-1G-P NME-X-23ES-1G-PLAN Network Modules LAN and WIC Combo Network ModulesNM-CEM-4TE1 Circuit Emulation Over IP Network ModulesNM-1FE1R2W NM-2WHigh-Speed Serial Network Modules-Up to 52 Mbps Cisco Serial Connectivity Network ModulesSerial T3/E3 Network Modules NM-1T3/E3NM-4T Synchronous Serial Network Modules-Up to 8 MbpsAsynchronous Serial Network Modules-Up to 128 Kbps NM-4A/SCisco Channelized T1/E1 and Isdn Network Modules NM-1CE1T1-PRINM-2CE1T1-PRI ATM OC3 Network Modules Cisco ATM Network ModulesIsdn Basic Rate Interface Network Module ATM T3/E3 Network ModulesCisco Satellite Network Modules Way Satellite WAN Connectivity Network ModuleNM-1VSAT-GILAT NM-6DM Cisco Dial-up/Remote Access Network ModulesDigital Modem Network Modules NM-12DMNM-8AM-V2 Analog Modem Network ModulesNM-24DM NM-30DMNM-HD-1V Cisco Voice Network ModulesAnalog and Isdn Basic Rate Voice Network Modules NM-HD-2VNM-HDA-4FXS NM-HD-2VEEVM-HD-8FXS/DID EM-4BRI-NT/TET1/E1 Digital Voice Network Modules PVDM2-8 NM-HDV2Voice Mail Network Modules Cisco Services Network Modules Wireless LAN Controller ModuleNetwork Analysis And Monitoring Content Engine Network Modules WIC-1T Cisco Interface CardsSerial WICs WIC-2TWIC-1DSU-56K4 WIC-1DSU-T1-V2HWIC-4T HWIC-4A/SIsdn BRI WICs DSL WICs and HWICsWIC-1ADSL-I-DG WIC-1ADSL-DGHWIC-4SHDSL HWIC-1ADSLEthernet and High-speed Switching WICs Cable DOCSIS-based HWICsAnalog Modem WICs HWIC-D-9ESW-POE HWIC-1FEILPM-8= HWIC-2FE Hwic Wireless LAN Interface Cards and AccessoriesWireless LAN Antennas HWIC-AP-G and HWIC-AP-AGCables Wireless LAN AntennaCisco Voice Interface/WICs VWIC2-1MFT-T1/E1VWIC-2MFT-T1-DI VWIC2-2MFT-T1/E1VWIC-2MFT-T1 VWIC-1MFT-T1VWIC-2MFT-E1 VWIC-1MFT-E1VWIC-2MFT-E1-DI VWIC2-1MFT-G703VWIC2-2MFT-G703 VWIC-2MFT-G703VWIC-1MFT-G703 VIC-2DID Cisco Voice Interface CardsAnalog Voice Interface Cards VIC2-2FXSIsdn BRI Voice Interface Cards AIM-COMPR4 Cisco Advanced Integration Modules Security ModulesCompression Advanced Integration Modules AIM-COMPR2-V2Security Modules Voice Mail Advanced Integration ModulesATM Advanced Integration Modules MEMUSB-64FT Cisco Universal Serial Bus USB CardsUniversal Serial Bus USB Ports MEMUSB-128FTLAN Network Modules Ethernet Switching Network Modules AccessoriesCisco Network Module Compatibility Quick Look LAN and WIC Combo Network ModulesCisco Network Module Compatibility Quick Look Modem Digital Signal Processors DSPs High-density Digital Voice Network Modules and AccessoriesVoice Digital Signal Processors DSPs Services Network ModulesCisco Interface Card Compatibility Quick Look Serial WICsIsdn BRI WICs Cisco Interface Card Compatibility Quick Look Analog Voice Interface Cards Isdn BRI Voice Interface CardsVPN and Encryption Advanced Integration Modules Cisco Advanced Integration Module Compatibility Quick LookCompression Advanced Integration Modules Voice-mail Advanced Integration ModulesATM Advanced Integration Modules Cisco Port Adapter Compatibility Quick LookCisco Advanced Integration Module Compatibility Quick Look ATM Port AdaptersCisco Port Adapter Compatibility Quick Look Sonet PAs VPN Service AdaptersCisco Shared Port Adapter Compatibility Quick Look Other Port Adapters and SAsCisco USB Flash Memory Compatibility Quick Look Cisco Series Port Adapter Compatibility Quick LookUSB Flash Memory 210 211 USA