Cisco 1760V Router Guide - Page 16

Security Example, When To Deploy, Platform Overview, Benefits & Advantages, Security Features - vlan

Get Cisco 1760V PDF manuals and user guides
UPC - 746320825786
View all Cisco 1760V manuals
Add to My Manuals
Save this manual to your list of manuals

Page 16 highlights

Cisco 1800 Series B E N E F I T S & A DVA N TAG E S continued most comprehensive security services embedded within the router that can be enabled with a Cisco IOS Security Image. This provides customers with a single, resilient platform to rapidly deploy secure networks and applications.The Cisco 1800 Series was designed with integrated security to provide a tight coupling among security, routing, and other integrated services throughout the network. With a Cisco IOS Software-based VPN, firewall, and intrusion prevention system (IPS), as well as optional enhanced VPN acceleration, and network admission control (NAC) support for anti-virus defense, the Cisco 1841 offers a robust and adaptable security solution for branch-office routers. Every Cisco 1800 Series router comes with the factory-installed Cisco Router and Security Device Manager (SDM). Cisco SDM is an intuitive, Web-based device manager that offers easy router configuration and monitoring, startup wizards for quick deployment and lockdown, smart wizards to help enable security and routing features, Cisco Technical Assistance Center (TAC)-approved router configurations, and subject-related educational content. Integrated Services By providing integrated services, as well as great modular density and high performance, the Cisco 1841 router provides security, versatility, scalability, and flexibility for multiple applications to the small-to-medium-sized business, small enterprise branch office, and the service provider customer edge. The Cisco 1841 router easily accommodates several network applications, such as secure branch-office data access (including NAC for antivirus defense), VPN access and firewall protection, businessclass DSL, IPS support, inter-VLAN routing, and serial device concentration. The Cisco 1841 router provides customers with the industry's most flexible, secure, and adaptable infrastructure to meet both today's and tomorrow's business requirements for maximum investment protection. S E C U RITY FEATURES Cisco IOS Software Firewall • Stateful, application-based filtering (context-based access control) • Per-user authentication and authorization • Real-time alerts • Transparent firewall • IPv6 firewall VPN • Advanced Encryption Standard (AES) 128, 192, and 256 ; Triple Data Encryption Standard (3DES), and DES cryptology support • Embedded hardware-based VPN acceleration on the motherboard • Support for optional higher-performance AIM-based security acceleration • Cisco Easy VPN remote and server support • Dynamic Multipoint VPN (DMVPN) Onboard USB 1.1 port • Future support for secure token and Flash memory IPS • More than 700 IPS signatures supported in Cisco IOS Software, with the ability to load and enable selected IPS signatures URL filtering • Local URL filtering in Cisco IOS Software based on external server Cisco SDM • Cisco Router and Security Device Manager (SDM) 28 SECURITY EXAMPLE V ���� ��� Cisco 1800 Series V Branch office Network Admission Control (NAC) helps ensure that every endpoint complies with network security policies before being granted access, protecting the network from viruses and worms. WHEN TO DEPLOY Deploy the Cisco 1800 Series when you need: • Performance and densities for concurrent data and security services up to one T1/E1/xDSL WAN connectivity rates • The flexibility to add or change WAN services to support changing needs and applications, including serial T1, E1, ISDN and broadband DSL, etc. • VPN connections, or plan to migrate to them over time • Low density (up to eight ports) of integrated 10/100 switching • Integrated security services as part of the Cisco Self-Defending Network, which enable network device protection, threat defense, secure connectivity, and endpoint protection and control • Advanced management for security, routing, quality of service (QoS), and switching services with Cisco SDM Version 2.0 P L AT F O R M OV E RV I E W Cisco 1841 Fixed LAN Ports 2 HWIC Slots 2 AIM Slots 1 PVDM* NME* Slots Slots 0 0 EVM* DRAM (MB) Slots Default Max 0 128 384 Flash (MB) Default Max 32 128 Power Supply AC * NME = Enhanced Network Module; EVM = Extension Voice Module; PVDM = Packet Voice/Digital Signal Processor Module 29

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
SECURITY EXAMPLE
Cisco 1800 Series
29
WHEN TO DEPLOY
Deploy the Cisco 1800 Series when you need:
• Performance and densities for concurrent data
and security services up to one T1/E1/xDSL
WAN connectivity rates
• The flexibility to add or change WAN services
to support changing needs and applications,
including serial T1, E1, ISDN and broadband
DSL, etc.
• VPN connections, or plan to migrate to them
over time
• Low density (up to eight ports) of integrated
10/100 switching
• Integrated security services as part of the
Cisco Self-Defending Network, which enable
network device protection, threat defense,
secure connectivity, and endpoint protection
and control
• Advanced management for security, routing,
quality of service (QoS), and switching
services with Cisco SDM Version 2.0
PLATFORM OVERVIEW
Fixed
LAN
Ports
HWIC
Slots
AIM
Slots
PVDM*
Slots
NME*
Slots
EVM*
Slots
DRAM (MB)
Default
Max
Flash (MB)
Default
Max
Power
Supply
Cisco
1841
2
2
1
0
0
0
128
384
32
128
AC
* NME = Enhanced Network Module; EVM = Extension Voice Module; PVDM = Packet Voice/Digital
Signal Processor Module
most comprehensive security services
embedded within the router that can be enabled
with a Cisco IOS Security Image. This provides
customers with a single, resilient platform to
rapidly deploy secure networks and applica-
tions. The Cisco 1800 Series was designed with
integrated security to provide a tight coupling
among security, routing, and other integrated
services throughout the network. With a Cisco
IOS Software-based VPN, firewall, and intrusion
prevention system (IPS), as well as optional
enhanced VPN acceleration, and network
admission control (NAC) support for anti-virus
defense, the Cisco 1841 offers a robust and
adaptable security solution for branch-office
routers. Every Cisco 1800 Series router comes
with the factory-installed Cisco Router and
Security Device Manager (SDM). Cisco SDM is
an intuitive, Web-based device manager that
offers easy router configuration and monitoring,
startup wizards for quick deployment and lock-
down, smart wizards to help enable security
and routing features, Cisco Technical Assistance
Center (TAC)-approved router configurations,
and subject-related educational content.
Integrated Services
By providing integrated services, as well as
great modular density and high performance,
the Cisco 1841 router provides security,
versatility, scalability, and flexibility for multiple
applications to the small-to-medium-sized
business, small enterprise branch office, and the
service provider customer edge. The Cisco 1841
router easily accommodates several network
applications, such as secure branch-office data
access (including NAC for antivirus defense),
VPN access and firewall protection, business-
class DSL, IPS support, inter-VLAN routing,
and serial device concentration. The Cisco 1841
router provides customers with the industry’s
most flexible, secure, and adaptable infra-
structure to meet both today’s and tomorrow’s
business requirements for maximum
investment protection.
Cisco IOS Software Firewall
• Stateful, application-based filtering (context-based access control)
• Per-user authentication and authorization
• Real-time alerts
• Transparent firewall
• IPv6 firewall
VPN
• Advanced Encryption Standard (AES) 128, 192, and 256 ;
Triple Data Encryption Standard (3DES), and DES cryptology support
• Embedded hardware-based VPN acceleration on the motherboard
• Support for optional higher-performance AIM-based security acceleration
• Cisco Easy VPN remote and server support
• Dynamic Multipoint VPN (DMVPN)
Onboard USB 1.1 port
• Future support for secure token and Flash memory
IPS
• More than 700 IPS signatures supported in Cisco IOS Software,
with the ability to load and enable selected IPS signatures
URL filtering
• Local URL filtering in Cisco IOS Software based on external server
Cisco SDM
• Cisco Router and Security Device Manager (SDM)
BENEFITS & ADVANTAGES
continued
Cisco 1800 Series
28
SECURITY FEATURES
ÿ´Ç¿´¹²³
ȳ¹¾É¼¹´²³´»
ʺ¹ËË
Ñ´¹±Í½
ÌÄÄÅͳ
Ò¹´Æ³
Ñ´¹±Í½
ÌÄÄÅͳ
Ñ´¹±Í½
ÌÄÄÅͳ
ÃŻͿ¸ÓÔÕÕ¸
�±²³´µ¶·¸¹º¶»¼
½½¾
³¿À
´Á³
ÃŻͿ¸Ö×ÕÕ¸
�±²³´µ¶·¸¹º¶»¼
ÃŻͿ¸Ø×ÙØ
ÃŻͿ¸Ô×ÕÕ
ʶ¸�¶¸µ¶·¸Ã¿´³
¶Êη
V
V
Branch office Network Admission Control (NAC) helps ensure that every endpoint complies with
network security policies before being granted access, protecting the network from viruses and worms.