| [ LiB ] |   |
Cisco VPN Products
Cisco offers many products that can give you the building blocks you need for your virtual private network (VPN) solutions:
Cisco PIX 500 series firewall
Cisco security routers and switches
Cisco VPN 3000 series concentrators
Cisco VPN 3000 client
Each of these products is discussed further in the following sections.
Cisco PIX 500 Series Firewall
The Cisco PIX 500 series firewall is a reliable, scalable, functional appliance that provides the following benefits:
Stateful firewall with per-application content filtering, Java blocking, denial-of-service (DoS) protection, intrusion detection, and time-based ACLs
Support for L2TP/PPTP-based VPN services suitable for site-to-site VPNs and remote-access VPNs
Triple DES VPN throughput scalable up to 100 Mbps
Cisco Security Routers and Switches
Cisco has directly integrated security functionality into your network infrastructure through enhanced security features and functionality in Cisco routers and switches, enabling sophisticated security policy enforcement throughout the network. Cisco IOS software's enhanced VPN software features include the following:
Quality of service (QoS) in the form of application-aware packet classification, congestion management, packet queuing, and traffic shaping and policing
Stateful IOS firewall with per-application content filtering and Java blocking, DoS protection, intrusion detection, and time-based ACLs
VPN resiliency through the use of dynamic route recovery using routing protocols through IPSec secured generic routing encapsulation (GRE) tunnel, and dynamic tunnel recovery using IPSec keepalives
Automated tunnel provisioning using IPSec tunnel endpoint discovery for large mesh network deployments
Full Layer 3 routing and broad interface support
Cisco VPN 3000 Series Concentrators
The Cisco VPN 3000 series concentrators are remote-access VPN platforms that combine high availability, high performance, and scalability with the most advanced encryption and authentication techniques available. Cisco VPN 3000 series concentrator features include the following:
High-performance, distributed-processing architecture using Cisco SEP modules to provide hardware-based encryption and large-scale tunneling support for IPSec, PPTP, and L2TP/IPSec connections.
Scalability with modular design, up to four expansion slots, with redundancy and system architecture designed to provide consistent, high-availability performance. An all-digital design offers high reliability and continuous 24-hour operation with runtime monitoring and alerts.
Microsoft compatibility offers large-scale client deployment and seamless integration with related systems.
Security through support of current and emerging security standards allows for integration of external authentication systems and interoperability with third-party products. Firewall capabilities through stateless packet filtering and address translation ensure the required security for a corporate LAN.
High availability through redundant subsystems and multichassis failover capabilities ensure maximum system uptime.
Robust management using any standard web browser (HTTP or HTTPS), as well as Telnet, Secure Telnet, SSH, or a console port.
Cisco VPN 3000 Client
The Cisco VPN 3000 client is a software package you use to provide secure connectivity for remote-access VPNs, including support for e-commerce, mobile user, and telecommuting applications. Some of its features include the following:
Compatibility with most of the major operating systems, including Windows, Linux, Solaris, and Macintosh
Complete implementation of IPSec standards, including DES and Triple DES encryption
Authentication through digital certificates, one-time password tokens, and preshared keys
| [ LiB ] | |