Manualshelf

System information

ManualsBrandsCisco ManualsComputer equipment3005 - VPN Concentrator - Gateway
12345678910
5
Release Notes for Cisco VPN 3000 Series Concentrator, Release 3.6 Through 3.6.8.B
OL-5637-02
New Features in Release 3.6.1
New Features in Release 3.6.1
This section describes the new features in Release 3.6.1 of the VPN 3000 Series Concentrator. For
detailed instructions about how to configure and use these features, see VPN 3000 Series Concentrator
Reference Volume I: Configuration and VPN 3000 Series Concentrator Reference Volume II:
Administration and Management.
Network Extension Per Group
Network extension per group lets a network administrator restrict the use of network extension mode on
the VPN 3002 Hardware Client. You enable the use of network extension mode for clients on a group
basis.
Bandwidth Management
Bandwidth management provides a throttling mechanism to all tunneled traffic that limits the maximum
amount of bandwidth allowed per group/user (policing) or provides a minimum amount of bandwidth
allowed per group/user (bandwidth reservation).
A bandwidth management policing policy limits users to the policed rate. Traffic received by the
VPN Concentrator at or below this rate is transmitted, while traffic above this rate is dropped.
A bandwidth management reservation policy reserves the amount of bandwidth configured in the
policy for each user.
Policies containing both bandwidth reservation and policing apply on the interface and group level. You
must create a policy before enabling bandwidth management. For an overview of bandwidth
management, see Configuration | Policy Management | Traffic Management | Bandwidth Policies | Add
or Modify in the VPN 3000 Series Concentrator Reference Vol. I: Configuration.
To configure bandwidth policies, go to Configuration | Policy Management | Traffic Management |
Bandwidth Policies.
To enable bandwidth management on the public interface, go to Configuration | Interfaces | Public
Interface and select the Bandwidth Management tab. Check the Bandwidth Management check box, set
the Link Rate, and apply a policy to the interface. The policy applied to the public interface is considered
the default or global policy for all groups/users that do not have a bandwidth policy applied to their
group.
The defined Link Rate must be based on available Internet bandwidth and not on the physical LAN
connection rate. For example, if the Internet router in front of the VPN Concentrator has a T1 connection
to the Internet, leave the Link Rate set on the VPN Concentrator at the default value of 1544 kbps.
To configure bandwidth policies on a group, go to Configuration | User Management | Groups | Assign
Bandwidth Policy. Select the public interface and apply a policy. This page also has an option to reserve
a specific amount of bandwidth per group.
To configure a bandwidth policy for a LAN-to-LAN connection, go to Configuration | System |
Tunneling Protocols | IPSec LAN-to-LAN and apply a policy.