Cisco 2811 Router Guide - Page 21

Unified Wireless Management, Cisco Configuration Professional - manual

Get Cisco 2811 - Voice Security Bundle Router PDF manuals and user guides
UPC - 882658101816
View all Cisco 2811 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 21 highlights

Cisco 890 Series Benefits and Advantages continued Unified Wireless Management • Configuration and management of access points is automated and simplified without manual intervention. • A unified hybrid remote-edge access point (HREAP) provides the following: - WLAN services to remote and branch offices without deploying a wireless LAN controller at each location - Central configuration and control of unified WLAN services for remote offices through a WAN link - Flexibility in setting up wireless access at remote locations by specifying how traffic is to be bridged or tunneled Cisco Configuration Professional Cisco Configuration Professional uses smart wizards and task-based tutorials, which reseller and customers can use to quickly and easily deploy, configure, and monitor a Cisco access router without requiring knowledge of the Cisco IOS Software CLI. Security Features Cisco 890 Security Connectivity • Secure Sockets Layer (SSL) VPN for secure remote access • Hardware-accelerated DES, 3DES, AES 128, AES 192, and AES 256 • Public-key-infrastructure (PKI) support • 20 IPsec tunnels • Cisco Easy VPN Client and Server • NAT transparency • DMVPN • Tunnel-less Group Encrypted Transport VPN (GETVPN) • IPsec stateful failover • VRF-aware IPsec • IPsec over IPv6 • Adaptive control technology • Session Initiation Protocol (SIP) application layer gateway Zone-based Policy Firewall • Stateful inspection transparent firewall • Advanced application inspection and control • HTTPS, FTP, and Telnet authentication proxy • Dynamic and static port security • Firewall stateful failover • VRF-aware firewall Content Filtering • Subscription-based content filtering with Trend Micro • Support for Websense and Smartfilter • Cisco IOS Software black and white lists Integrated Threat Control • IPS • Control Plane Policing • Flexible Packet Matching • Network foundation protection 38 Cisco 890 Series WLAN Features WLAN Hardware • IEEE 802.11n draft v2.0 standards-based access point with 802.11 a/g compatibility • Automatic rate selection for 802.11a/g/n • Noncaptive RPTNC omnidirectional dipole antennae; 2 dBi gain @ 2.4 GHz, 5 dBi gain @ 5GHz • 2x3 MIMO radio operation • WiFi 802.11n Draft v2.0 certified WLAN Software Features • Autonomous or unified access point • Cisco WCS support for monitoring of autonomous-mode access points • Option to maximize throughput or maximize range • Software-configurable transmit power • Radio roles, including access point, root bridge, nonroot bridge, and workgroup bridge • WiFi Multimedia (WMM) certification • Traffic specifications (TSPEC) Call Admission Control (CAC) to ensure voice quality is maintained • Unscheduled Automatic Power Save Delivery (UPSD) to reduce latency Metro Ethernet Features • One 1000 BASE-T Gigabit Ethernet WAN port • One 10/100 BASE-T Fast Ethernet WAN port • Intelligent hierarchical quality of service (HQoS): Supports hierarchical queuing and shaping • Connectivity Fault Management (CFM), based on 802.1ag • 802.3ah standard based Link operational administration and maintenance (OAM) • Ethernet Local Management Interface (E-LMI) for the Customer Edge • CFM Interworking and backwards compatibility • Performance Management based on IP servicelevel agreement (SLA) for Ethernet WLAN Security Features • Standard 802.11i • WPA and AES (WPA2) • EAP authentication: Cisco LEAP, PEAP, Extensible Authentication Protocol Transport Layer Security (EAP TLS), Extensible Authentication ProtocolFlexible Authentication via Secure Tunneling (EAP-FAST), Extensible Authentication ProtocolSubscriber Information Module (EAP-SIM), Extensible Authentication Protocol-Message Digest Algorithm 5 (EAP-MD5), and Extensible Authentication Protocol-Tunneled TLS (EAP-TTLS) • Static and dynamic Wired Equivalent Privacy (WEP) • Temporal Key Integrity Protocol/Simple Security Network (TKIP/SSN) encryption • MAC authentication and filter • User database for survivable local authentication using LEAP and EAP-FAST • Configurable limit to the number of wireless clients • Configurable RADIUS accounting for wireless clients • Preshared keys (PSKs) (WPA-small office or home office [WPA-SOHO]) 39

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
Benefits and Advantages
continued
38
39
WLAN Features
Cisco 890 Series
Cisco 890 Series
Unified Wireless Management
• Configuration and management of access points
is automated and simplified without manual
intervention.
• A unified hybrid remote-edge access point (HREAP)
provides the following:
- WLAN services to remote and branch offices
without deploying a wireless LAN controller at
each location
- Central configuration and control of unified
WLAN services for remote offices through a
WAN link
- Flexibility in setting up wireless access at remote
locations by specifying how traffic is to be
bridged or tunneled
Cisco Configuration Professional
Cisco Configuration Professional uses smart
wizards and task-based tutorials, which reseller and
customers can use to quickly and easily deploy,
configure, and monitor a Cisco access router without
requiring knowledge of the Cisco IOS Software CLI.
Security Features
Cisco 890 Security Connectivity
• Secure Sockets Layer (SSL) VPN for secure
remote access
• Hardware-accelerated DES, 3DES, AES 128, AES
192, and AES 256
• Public-key-infrastructure (PKI) support
• 20 IPsec tunnels
• Cisco Easy VPN Client and Server
• NAT transparency
• DMVPN
• Tunnel-less Group Encrypted Transport VPN
(GETVPN)
• IPsec stateful failover
• VRF-aware IPsec
• IPsec over IPv6
• Adaptive control technology
• Session Initiation Protocol (SIP) application layer
gateway
Zone-based Policy Firewall
• Stateful inspection transparent firewall
• Advanced application inspection and control
• HTTPS, FTP, and Telnet authentication proxy
• Dynamic and static port security
• Firewall stateful failover
• VRF-aware firewall
Content Filtering
• Subscription-based content filtering with Trend
Micro
• Support for Websense and Smartfilter
• Cisco IOS Software black and white lists
Integrated Threat Control
• IPS
• Control Plane Policing
• Flexible Packet Matching
• Network foundation protection
WLAN Hardware
• IEEE 802.11n draft v2.0 standards-based access
point with 802.11 a/g compatibility
• Automatic rate selection for 802.11a/g/n
• Noncaptive RPTNC omnidirectional dipole
antennae; 2 dBi gain @ 2.4 GHz, 5 dBi gain @
5GHz
• 2x3 MIMO radio operation
• WiFi 802.11n Draft v2.0 certified
WLAN Software Features
• Autonomous or unified access point
• Cisco WCS support for monitoring of
autonomous-mode access points
• Option to maximize throughput or maximize range
• Software-configurable transmit power
• Radio roles, including access point, root bridge,
nonroot bridge, and workgroup bridge
• WiFi Multimedia (WMM) certification
• Traffic specifications (TSPEC) Call Admission
Control (CAC) to ensure voice quality is
maintained
• Unscheduled Automatic Power Save Delivery
(UPSD) to reduce latency
WLAN Security Features
• Standard 802.11i
• WPA and AES (WPA2)
• EAP authentication: Cisco LEAP, PEAP, Extensible
Authentication Protocol Transport Layer Security
(EAP TLS), Extensible Authentication Protocol-
Flexible Authentication via Secure Tunneling
(EAP-FAST), Extensible Authentication Protocol-
Subscriber Information Module (EAP-SIM),
Extensible Authentication Protocol-Message
Digest Algorithm 5 (EAP-MD5), and Extensible
Authentication Protocol-Tunneled TLS (EAP-TTLS)
• Static and dynamic Wired Equivalent Privacy
(WEP)
• Temporal Key Integrity Protocol/Simple Security
Network (TKIP/SSN) encryption
• MAC authentication and filter
• User database for survivable local authentication
using LEAP and EAP-FAST
• Configurable limit to the number of wireless
clients
• Configurable RADIUS accounting for wireless
clients
• Preshared keys (PSKs) (WPA-small office or home
office [WPA-SOHO])
Metro Ethernet Features
• One 1000 BASE-T Gigabit Ethernet WAN port
• One 10/100 BASE-T Fast Ethernet WAN port
• Intelligent hierarchical quality of service (HQoS):
Supports hierarchical queuing and shaping
• Connectivity Fault Management (CFM), based on
802.1ag
• 802.3ah standard based Link operational
administration and maintenance (OAM)
• Ethernet Local Management Interface (E-LMI) for
the Customer Edge
• CFM Interworking and backwards compatibility
• Performance Management based on IP service-
level agreement (SLA) for Ethernet