Cisco 3005 - VPN Concentrator - Gateway Manual de usuario descargar pdf (Pagina 5)

Table 4 lists features of NAC.

Table 4. Network Admission Control: Prevents Noncompliant Endpoints from Affecting Enterprise Resilience

Feature Description

Uses Existing Threat Mitigation Infrastructure Offers cost savings to customers by using existing network and antivirus infrastructures

Protects the Network with the Network Uses a network-based approach with NAC-enabled network access points (like Cisco VPN 3000 Series

Concentrators) to ensure every host device is interrogated for policy compliance

PRODUCT PLATFORM HIGHLIGHTS

Table 5 lists highlights of the Cisco VPN 3000 Series.

Table 5. Cisco VPN 3000 Series Highlights

Feature Description

High-Performance Distributed Processing

Architecture

●

Cisco Scalable Encryption Processing (SEP) modules provide hardware-based encryption, helping to ensure consistent

performance throughout the rated capacity (Cisco VPN 3020, 3030, 3060, and 3080 Concentrators).

●

Large-scale tunneling support is provided for SSL, IPsec, Point-to-Point Tunneling Protocol (PPTP), and Layer 2

Tunneling Protocol (L2TP)/IPsec connections

Scalability (Cisco VPN 3015, 3020, 3030,

3060, and 3080 Concentrators)

●

Modular design (four expansion slots) provides investment protection, redundancy, and a simple upgrade path (Cisco

VPN 3030 and 3060 Concentrators only).

●

System architecture is designed to supply consistent, high-availability performance.

●

All-digital design provides the highest reliability and 24-hour continuous operation.

●

Robust instrumentation package provides run-time monitoring and alerts.

●

Microsoft compatibility offers large-scale client deployment and smooth integration with related systems.

●

Integrated device clustering (load-balancing) technology.

Security

●

Full support of current and emerging security standards allows for integration of external authentication systems and

interoperability with third-party products.

●

Firewall capabilities through stateless packet filtering and address translation help ensure the required security of a

corporate LAN.

●

User- and group-level management offer maximum flexibility; clientless SSL VPN offers granular access control per

group and detailed logging information.

High Availability

●

Redundant subsystems and multichassis failover capabilities help ensure maximum system uptime.

●

Extensive instrumentation and monitoring capabilities provide network managers with real-time system status and early

warning alerts.

Robust Management

●

Concentrators can be managed using any standard Web browser (HTTP or HTTPS) or using Telnet, SSHv1, and using

a console port. Files can be accessed through HTTPS, FTP, and Secure Copy Protocol (SCP).

●

Configuration and monitoring capabilities are provided for enterprises and service providers.

●

Access levels are configurable by users and groups, allowing easy configuration and maintenance of security policies.

For larger deployments, Cisco VPN 3000 Series Concentrators are supported in several Cisco network management

applications, including:

- Cisco IP Solution Center (ISC): Provisions site-to-site and remote-access VPN services

- CiscoWorks Monitoring Center for Performance: Monitors and reports on remote-access and site-to-site VPN tunnel

connections

- CiscoWorks Resource Manager Essentials (RME): Provides operational management features such as software

distribution, syslog reporting, and inventory management

- CiscoWorks CiscoView: Provides real-time system status monitoring

SIX MODELS

The Cisco VPN 3000 Series offers six concentrator models. Each model supports the full suite of IPsec and SSL VPN.

Cisco VPN 3005 Concentrator

The Cisco VPN 3005 Concentrator is designed for small to medium-sized organizations with bandwidth requirements up to full-duplex

T1/E1 (4 Mbps maximum performance), with support for up to 200 simultaneous IPsec sessions or 50 simultaneous clientless sessions.

Encryption processing is performed in software. The Cisco VPN 3005 does not have built-in upgrade capability.

1 2 3 4 5 6 7 8 9 10

Comentarios a estos manuales

Sin comentarios

Cisco 3005 - VPN Concentrator - Gateway Manual de usuario Pagina 5

Comentarios a estos manuales

Relacionado con productos y manuales para Procesadores Cisco 3005 - VPN Concentrator - Gateway