Specifications

ManualsBrandsCisco ManualsComputer equipmentASR 900 Series

Cisco Aggregation Services Router (ASR) 900 Series Security Target

Page 9 of 52

but due to its smaller size, it has four interface module cards and one Route Switch Processor

(RSP) card. The RSP card is the centralized card in the system performing the data plane,

network timing, and control plane functions for the system. All components support online

replacement and field upgrades, with the exception of the RSP card, which requires the system to

be brought down for a replacement or upgrade.

The Cisco ASR 920 Router comes in multiple versions with different port densities that include

ASR-920-12CZ-A, ASR-920-12CZ-D, ASR-920-4SZ-A and ASR-920-4SZ-D.

Cisco IOS-XE is a Cisco-developed highly configurable proprietary operating system that

provides for efficient and effective routing. Although IOS-XE performs many networking

functions, this TOE only addresses the functions that provide for the security of the TOE itself as

described in Section 1.4.4 TOE logical scope below.

1.2.1 TOE Product Type

The Cisco Aggregation Services Router (ASR) 900 Series are temperature hardened, high-

throughput, small form factor, low-power-consumption routers optimized for mobile backhaul,

residential, and business service applications.

The ASR 900 Series supports broadband access for delivering voice, video, data, and mobility

services. Designed to support thousands of subscribers, QoS on the ASR 920 Series can scale up

to a large number of queues per device. The ASR 900 Series are a full-featured Layer 2 switch

and Layer 3 router that supports a variety of broadband applications, including IPTV and video

on demand.

1.2.2 Supported non-TOE Hardware/ Software/ Firmware

The TOE supports (in some cases optionally) the following hardware, software, and firmware in

its environment:

Table 4 IT Environment Components

Component

Required

Usage/Purpose Description for TOE performance

Management

Workstation

with SSH Client

Yes

This includes any IT Environment Management workstation with a SSH client

installed that is used by the TOE administrator to support TOE administration

through SSH protected channels. Any SSH client that supports SSHv2 may be

used.

NTP Server

The TOE supports communications with an NTP server to synchronize date and

time.

Syslog server

Yes

The syslog audit server is used for remote storage of audit records that have been

generated by and transmitted from the TOE.

RADIUS or

TACACS+

AAA Server

This includes any IT environment RADIUS or TACACS+ AAA server that

provides authentication services to TOE administrators.