Specifications

ManualsBrandsCisco ManualsComputer equipmentRSP4+ Bootflash Memory Upgrade to 16MB MEM-16F-RSP4+=

131

132

133

134

135

136

137

138

139

140

5-2

Chapter 5 VPN and Security

Cisco PIX Security Appliance Series

The world-leading Cisco PIX® Security Appliance Series

provides enterprise-class, integrated network security services

including stateful inspection firewalling, protocol and

application inspection, virtual private networking (VPN),

in-line intrusion protection, rich multimedia and voice

security in cost-effective, easy-to-deploy solutions. Ranging from compact, “plug-and-play”

desktop firewalls for small offices to carrier-class gigabit firewalls for the most demanding

enterprise and service-provider environments, Cisco PIX Security Appliances provide robust

security, performance, and reliability for network environments of all sizes.

When to Sell

CiscoWorks

VPN/Security

Management Solution

Combines general device management tools for configuring, monitoring, and troubleshooting

enterprise networks with powerful security solutions for managing virtual private networks

(VPNs), firewalls, and network and host-based intrusion detection systems (IDS). An integral part

of the Cisco SAFE Blueprint for Enterprise, this bundle also delivers network device inventory,

change audit and software distribution features. CiscoWorks VMS is organized into several

functional areas: Firewall Management, IDS Management, network and host-based, VPN Router

Management, Security Monitoring, VPN Monitoring, and Operational Management

See Chapter 9-1—IOS Software & Network Management for more information on CiscoWorks

VPN/Security Management Solution

9-12

CiscoWorks Security

Information

Management Solution

and CiscoWorks

Security Information

Management Solution

Engine

A solution that collects, analyzes, and correlates security event data from across the enterprise-

letting you detect and respond to security events as they occur.

• Event monitoring of multivendor security environments

• Extensive reporting for operators and high-level administrators

• Risk assessment information to understand overall vulnerability of critical network assets within

the enterprise; Forensics tools to investigate attacks

• Traffic utilization reports and graphs to understand changes in traffic patterns

See Chapter 9-1—IOS Software & Network Management for more information on CiscoWorks

Security Information Management Solution

9-14

Cisco IOS Firewall

• Tightly integrated with IOS VPN and advanced routing technologies

• Application aware stateful packet inspection via context-based access control (CBAC) for TCP,

UDP, SIP, Skinny, H.323 and others

• Supports user authentication for https, ftp and telnet connections

• URL filtering through router exclusive domains or use of external Websense and N2H2 servers

• Inline intrusion prevention for real-time response to network attacks supporting 100 common

attack signatures

• Dynamic, network-to network, per-user authentication and authorization via TACACS+ and

RADIUS

5-14

Cisco Security Router

Bundles

Cisco 800, 1700, 1800, 2600, 2800 , 3700, 3800 7200 and 7301 Security Router Bundles with

Enhanced Integrated Network Security. See individual product pages for more detail (page 1-1)

1-1

Cisco 800, 1700, 1800,

2600, 2800, 3700, 3800,

7200, and 7301

Wide variety of modular router platforms with options for Cisco IOS-based and hardware-enabled

VPN, Cisco IOS Firewall, Intrusion Prevention, Network Admission Control (NAC), and security

support.

1-1

Sell This Product When a Customer Needs These Features

PIX 501

• Small Office / Home Office desktop integrated security appliance

• Up to 60 Mbps of firewall throughput

• Up to 3 Mbps of 3DES and 3.4 Mbps of AES-256 IPsec VPN throughput

• Hardware VPN client (Easy VPN Remote)

• VPN concentrator services (Easy VPN Server) for up to 10 remote users

• Integrated four port 10/100 Mbps switch

PIX 506E

• Remote Office / Branch Office desktop integrated security appliance

• Up to 100 Mbps of firewall throughput

• Up to 16 Mbps of 3DES and 30 Mbps of AES-256 IPsec VPN throughput

• Hardware VPN client (Easy VPN Remote)

• VPN concentrator services (Easy VPN Server) for up to 25 remote users

• Maximum of two 10BASE-T Ethernet interfaces

• OSPF dynamic routing support

Product Features Page