Chapter 5 VPN and Security Products

Key Features

Cisco VPN 3000 Concentrators Series

Support for industry standard IPSec DES/3DES/AES and Cisco IPSec/NAT for VPN Access through Port Address Translation firewalls

Unlimited-use license for Cisco VPN Client distribution included at no cost with multiple OS support including Windows, MAC OS X, Linux and Solaris; also integrates with Zone Alarms personal firewall

Supports standard authentication: RADIUS, SDI Tokens, and Digital Certificates

VPN load balancing allows for multiple units to cluster as a single shared pool

Cisco VPN 3002 Hardware Client supports up to 253 users/stations per VPN 3002

Works with most operating systems including Windows, Linux, Solaris, and MAC OS X

Auto-upgrade capability automates upgrades with no user intervention required

Client technology employs push policy and automatic address assignment from the central site concentrator, enabling virtually unlimited scalability

Competitive Products

• Nortel: Contivity products

 

 

• Nokia

 

 

• Netscreen: LAN to LAN environments

 

 

 

 

Specifications

 

 

 

 

 

 

Cisco VPN 3000 Series Concentrators

 

 

 

 

 

 

 

 

 

Feature

VPN 3005

VPN 3015

VPN 3030

VPN 3060

VPN 3080

 

 

 

 

 

 

 

Simultaneous Users

100

 

100

1500

5000

10,000

Encryption Throughput

4 Mbps

4 Mbps

50 Mbps

100 Mbps

100 Mbps

Encryption Method

Software

Software

Hardware

Hardware

Hardware

Encryption (SEP) Module

0

 

0

1

2

4

Redundant SEP

No

 

No

Optional

Optional

Yes

Expansion Slots

0

 

4

3

2

N/A

Upgradeable

No

 

Yes

Yes

N/A

N/A

Memory

32 MB

128 MB

128 MB

256 MB

256 MB

Hardware Configuration

1U, Fixed

2U, Scalable

2U, Scalable

2U, Scalable

2U

Power Supply

Single

Single, with a dual

Single, with a dual

Single, with a dual

Dual

 

 

 

option

option

option

 

Client License

Unlimited

Unlimited

Unlimited

Unlimited

Unlimited

LAN-to-LAN Connections

100

 

100

500

1000

1000

(internal user database)

 

 

 

 

 

 

Dimensions (HxWXD)

1.75 x 17.5 x 11.5 in.

3.5 x 17.5 x 14.5 in.

3.5 x 17.5 x 14.5 in.

3.5 x 17.5 x 14.5 in.

3.5 x 17.5 x 14.5 in.

Cisco VPN 3002 Hardware Client

 

 

 

 

 

 

 

 

 

Feature

 

VPN 3002 Hardware Client

 

 

Hardware Processor

 

Motorola PowerPC processor; Dual flash image architecture

 

Network Interfaces

 

CPVN3002-K9: One Public 10/100Mbps RJ-45 Ethernet Interface and One Private Port 10/100Mbps

 

 

RJ-45 Ethernet Interface

 

 

 

 

 

CVPN3002-8E-K9: One Public 10/100Mbps RJ-45 Ethernet Interface and Eight Private Port

 

 

10/100Mbps RJ-45

 

 

 

 

 

Ethernet Interfaces via AUTO-MDIX switch

 

 

Physical Dimensions

 

1.967 x 8.6 x 6.5 in. (5 x 8.6 x 16.51 cm)

 

 

Power Supply

 

External AC Operation: 100-240V at 50/60 Hz with universal power factor correction; 4 foot cord

 

 

included and international “pigtail” power cord selection

 

 

Tunneling Protocol Support

IPsec with IKE key management

 

 

 

Monitoring & Configuration

Event logging; SNMP MIB-II support

 

 

 

 

Embedded management interface is accessible via console port or local web browser; SSH/SSL

Encryption Algorithms, Key

56-bit DES (IPsec); 168-bit Triple DES (IPsec); AES 128 & 256-bit (IPsec)

 

Management & Authentication

 

 

 

 

 

Algorithms

 

 

 

 

 

 

Cisco VPN 3000 Family

5-6

Page 6
Image 6
Cisco Systems 2600, 3600, 3700, and 7200, Cisco 1700 manual Feature VPN 3002 Hardware Client

Cisco 1700, and 7200, 3700, 2600, 3600 specifications

Cisco Systems has been a leader in networking technology for decades, and among its extensive product lineup is the Cisco 1700 series routers. Introduced in the late 1990s, the Cisco 1700 series is designed to provide flexible, reliable, and secure connectivity for small to medium-sized businesses and branch offices. These routers offer a balance of performance and capability, making them an attractive choice for organizations looking to enhance their networking infrastructure.

One of the main features of the Cisco 1700 series is its modular architecture. The routers come with various slot options that allow users to customize their devices according to specific networking needs. This modularity enables enterprises to add features such as additional interfaces or Enhanced Service Modules (ESMs) as their networking requirements evolve. This means businesses can invest in a powerful router that can grow alongside their needs.

Another notable characteristic of the Cisco 1700 series is its comprehensive support for both data and voice services. It allows organizations to implement converged networks that support voice over IP (VoIP) applications, helping to streamline communication processes within businesses. With its Quality of Service (QoS) features, Cisco 1700 ensures that voice traffic is prioritized over less critical data flows, providing users with clear voice transmission and reducing latency.

The Cisco 1700 also incorporates a range of security features to safeguard data. It supports advanced firewall capabilities and can be configured with Virtual Private Network (VPN) options for secure remote access. This focus on security is essential in today's environment, where cyber threats are increasingly sophisticated.

Additionally, the Cisco 1700 series is equipped with the Cisco IOS operating system, which provides a comprehensive suite of networking commands and features. This includes advanced routing protocols, NAT (Network Address Translation), and a variety of dynamic routing options. Users benefit from a streamlined interface that allows for the easy configuration and management of network settings.

The routers also support various connectivity options, including multiple WAN interfaces, such as T1 or DSL connections, which facilitate easily accessible internet options. Coupled with its robust performance and reliability, the Cisco 1700 series remains a strong choice for organizations seeking to upgrade their communication infrastructures.

In summary, the Cisco 1700 series routers embody versatility, security, and performance. With their modular design, support for advanced voice and data services, and comprehensive security measures, they provide small to medium-sized businesses with a reliable solution to meet their networking needs. As enterprise requirements continue to grow, Cisco's 1700 series stands out as a dependable choice for achieving connectivity and operational efficiency.