Cisco CISCO881W-GN-A-K9 Especificaciones descargar pdf (Pagina 11)

Cisco ISR-800 Security Target

The previous figure includes the following:

• Several examples of TOE Models

o Cisco ISR-819

o Cisco ISR-891

o Cisco ISR-881

• The following are considered to be in the IT Environment:

o (2) VPN Peers

o Management Workstation

o Authentication Server

o NTP Server

o Syslog Server

o Local Console

o CA

1.4 TOE Evaluated Configuration

The TOE consists of one or more physical devices as specified in section 1.5 below and includes

the Cisco IOS software. The TOE has two or more network interfaces and is connected to at

least one internal and one external network. The Cisco IOS configuration determines how

packets are handled to and from the TOE’s network interfaces. The router configuration will

determine how traffic flows received on an interface will be handled. Typically, packet flows are

passed through the internetworking device and forwarded to their configured destination. BGP,

EIGRP, EIGRPv6 for IPv6 OSPF, OSPFv3 for IPv6, PIM, and RIPv2 routing protocols are used

on all of the ISR models.

The TOE can optionally connect to an NTP server on its internal network for time services. Also,

if the ISR is to be remotely administered, then the management station must be connected to an

internal network, SSHv2 must be used to connect to the switch. A syslog server is also used to

store audit records. The TOE can leverage the services provided by this RADIUS AAA server

to provide single-use authentication to administrators. A CA server is used to provide the TOE

with a valid certificate during certificate enrollment. If these servers are used, they must be

attached to the internal (trusted) network. The internal (trusted) network is meant to be separated

effectively from unauthorized individuals and user traffic; one that is in a controlled environment

where implementation of security policies can be enforced.

1.5 Physical Scope of the TOE

The TOE is a hardware and software solution that makes up the router models as follows:

C819G-4G-A-K9, C819G-S-K9, C819HG-4G-G-K9, C819HGW-S-A-K9, C819G-4G-V-K9,

C819H-K9, C819HGW+7-A-A-K9, C819HGW-V-A-K9, C819HWD-A-K9, C881-V-K9,

C881WD-A-K9, CISCO881-SEC-K9, CISCO891-K9, C881W-A-K9, CISCO881-K9,

CISCO881W-GN-A-K9, CISCO891W-AGN-A-K9. The network, on which they reside, is

considered part of the environment. The TOE guidance documentation that is considered to be

part of the TOE can be found listed in the Cisco ISR-800 Common Criteria Operational User

Guidance and Preparative Procedures document and are downloadable from the http://cisco.com

1 2 ... 6 7 8 9 10 11 12 13 14 15 16 ... 63 64

Sin comentarios

Cisco CISCO881W-GN-A-K9 Especificaciones Pagina 11