C H A P T E R 5

VPN and Security Products

VPN and Security Products at a Glance

Product

Features

Page

Cisco PIX Security Appliance

Market-leading, purpose-built appliances which provide broad range of integrated security

5-2

services

• Robust stateful inspection firewalling with application awareness

High-performance and scalable remote access and site-to-site VPN

• Intrusion protection with for real-time response to network attacks

• Enhanced routing and network integration

• Extensive support for multimedia and VoIP applications

Award-winning firewall stateful failover for enterprise-class resiliency

Firewall Blade for

Firewall Module is a high performance integrated stateful firewall solution for Catalyst 6500 family 2-22

Catalyst 6500

of switches with performance exceeding 5GB. It is based on proven PIX technology while

 

 

providing the following benefits to the customers

 

 

• Investment protection

 

 

• Low cost of ownership

 

 

• Ease of use

 

 

• Operational Consistency

 

 

• Scalability

 

 

See the Catalyst 6500 Series Switch in Chapter 2: LAN Switching, page 2-22, for more information

 

Cisco VPN 3000 Family

Remote access Virtual Private Network platform

5-5

 

• Has models for all size companies, from small to large enterprise organizations

 

 

• Reduces communications expenditures

 

 

• Enables users to easily add capacity and throughput

 

Cisco IDS Network Network-based, real-time intrusion detection system capable of monitoring an entire enterprise 5-8

Sensornetwork:

Capable of directing and forwarding alarms between local, regional, and headquarters-based monitoring consoles

Scalable architecture to allow the deployment of large numbers of sensors in order to provide comprehensive security coverage in large networks

Tight integration into the network through the delivery of the IDS Network Module for the Cisco Access Routers and the IDSM2 for the Catalyst 6500 switches

CTR (Cisco Threat Response) delivers adaptive scan techniques to minimize false alarms

Broad range of management options

Cisco Security Agent

The Cisco Security Agent provides threat protection for desktop and server computing systems 5-10

 

by identifying and preventing malicious activity. By acting on threats or attacks before they can

 

occur, Cisco Security Agent removes known and unknown security risks to enterprise networks

 

and applications:

 

• The Cisco Security Agent aggregates and extends multiple endpoint security functions by

 

providing host intrusion prevention, distributed firewall, malicious mobile code protection,

 

operating system integrity assurance, and audit log consolidation all within a single agent

 

package

 

• Protects against know and unknown attacks on both servers and desktops

Cisco Secure Access

A centralized identity networking solution that simplifies user-management experience across all 5-12

Control Server (ACS) for Cisco devices and security-management applications. An essential component of the Cisco

Windows and Cisco

Identity Based Networking Services (IBNS) architecture, it extends access security by combining

authentication, user and administrator access, and policy control from a centralized identity

Secure Access Control

networking framework. This allows greater flexibility and mobility, increased security, and user

Solution Engine

productivity gains. It helps ensure enforcement of assigned policies by allowing network

 

administrators to control: Who can log in to the network, Privileges each user has in the network,

 

and Security audit or account billing information that is recorded

SECURITY

CHAPTER 5

PRODUCTS

VPN AND

 

 

VPN and Security Products at a Glance

5-1

Page 1 Page 2
Page 1
Image 1
Cisco Systems 2600, 3600, 3700, and 7200 manual VPN and Security Products at a Glance, A P T E R, Product Features
Page 1 Page 2

Cisco 1700, and 7200, 3700, 2600, 3600 specifications

Cisco Systems has been a leader in networking technology for decades, and among its extensive product lineup is the Cisco 1700 series routers. Introduced in the late 1990s, the Cisco 1700 series is designed to provide flexible, reliable, and secure connectivity for small to medium-sized businesses and branch offices. These routers offer a balance of performance and capability, making them an attractive choice for organizations looking to enhance their networking infrastructure.

One of the main features of the Cisco 1700 series is its modular architecture. The routers come with various slot options that allow users to customize their devices according to specific networking needs. This modularity enables enterprises to add features such as additional interfaces or Enhanced Service Modules (ESMs) as their networking requirements evolve. This means businesses can invest in a powerful router that can grow alongside their needs.

Another notable characteristic of the Cisco 1700 series is its comprehensive support for both data and voice services. It allows organizations to implement converged networks that support voice over IP (VoIP) applications, helping to streamline communication processes within businesses. With its Quality of Service (QoS) features, Cisco 1700 ensures that voice traffic is prioritized over less critical data flows, providing users with clear voice transmission and reducing latency.

The Cisco 1700 also incorporates a range of security features to safeguard data. It supports advanced firewall capabilities and can be configured with Virtual Private Network (VPN) options for secure remote access. This focus on security is essential in today's environment, where cyber threats are increasingly sophisticated.

Additionally, the Cisco 1700 series is equipped with the Cisco IOS operating system, which provides a comprehensive suite of networking commands and features. This includes advanced routing protocols, NAT (Network Address Translation), and a variety of dynamic routing options. Users benefit from a streamlined interface that allows for the easy configuration and management of network settings.

The routers also support various connectivity options, including multiple WAN interfaces, such as T1 or DSL connections, which facilitate easily accessible internet options. Coupled with its robust performance and reliability, the Cisco 1700 series remains a strong choice for organizations seeking to upgrade their communication infrastructures.

In summary, the Cisco 1700 series routers embody versatility, security, and performance. With their modular design, support for advanced voice and data services, and comprehensive security measures, they provide small to medium-sized businesses with a reliable solution to meet their networking needs. As enterprise requirements continue to grow, Cisco's 1700 series stands out as a dependable choice for achieving connectivity and operational efficiency.
Top Page Image Contents