Datasheet
© 2011 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 9 of 18
Feature Description
Security features Secure connectivity:
●
Secure Sockets Layer (SSL) VPN for secure remote access
●
Hardware-accelerated DES, 3DES, AES 128, AES 192, and AES 256
●
Public-key-infrastructure (PKI) support
●
20 IPsec tunnels
●
Cisco Easy VPN Client and Server
●
NAT transparency
●
Dynamic Multipoint VPN (DMVPN)
●
Tunnel-less Group Encrypted Transport VPN
●
IPsec stateful failover
●
VRF-aware IPsec
●
IPsec over IPv6
●
Adaptive control technology
●
Session Initiation Protocol (SIP) application layer gateway
Cisco IOS Firewall:
●
Zone-Based Policy Firewall
●
VRF-aware stateful inspection routing firewall
●
Stateful inspection transparent firewall
●
Advanced application inspection and control
●
Secure HTTP (HTTPS), FTP, and Telnet Authentication Proxy
●
Dynamic and static port security
●
Firewall stateful failover
●
VRF-aware firewall
Content filtering:
●
Subscription-based content filtering with Trend Micro
●
Support for Websense and SmartFilter
●
Cisco IOS Software black and white lists
Integrated threat control:
●
Intrusion prevention system (IPS)
●
Control Plane Policing
●
Flexible Packet Matching
●
Network foundation protection
QoS features
●
Low Latency Queuing (LLQ)
●
Weighted Fair Queuing (WFQ)
●
Class-Based WFQ (CBWFQ)
●
Class-Based Traffic Shaping (CBTS)
●
Class-Based Traffic Policing (CBTP)
●
Policy-Based Routing (PBR)
●
Class-Based QoS MIB
●
Class of service (CoS)-to-differentiated services code point (DSCP) mapping
●
Class-Based Weighted Random Early Detection (CBWRED)
●
Network-Based Application Recognition (NBAR)
●
Link fragmentation and interleaving (LFI)
●
Resource Reservation Protocol (RSVP)
●
Real-Time Transport Protocol (RTP) header compression (cRTP)
●
Differentiated Services (DiffServ)
●
QoS preclassify and prefragmentation
●
Hierarchical QoS (HQoS)