Cisco Systems
Copyright © 2001 Cisco Systems, Inc. All Rights Reserved.
Page 4 of 7
• User and group level management offers maximum
flexibility.
High Availability
• Redundant subsystems and multi-chassis fail-over
capabilities ensure maximum system uptime.
• Extensive instrumentation and monitoring capabilities
provide network managers with real-time system status
and early-warning alerts.
Robust Management
• The Cisco VPN 3000 Concentrator can be managed
using any standard Web browser (HTTP or HTTPS),as
well as by Telnet, Secure Telnet, SSHv1, and via a
console port. Files can be accessed via HTTPS, FTP, and
SSH Copy (SCP).
• Configurationand monitoringcapabilityis providedfor
both the enterprise and the service provider.
• Access levels are configurable by user and groups,
allowingeasyconfigurationandmaintenanceofsecurity
policies.
Technical Specifications
Hardware
Processor
• Motorola PowerPC Processor
Memory
• Redundant system images (Flash)
• Variable memory options (see chart)
Encryption
• Cisco VPN 3005, 3015—Software encryption
• Cisco VPN 3030-3080—Hardware encryption
Embedded LAN Interfaces
• Cisco VPN 3005—Two auto-sensing, full-duplex 10/
100BaseTX Fast Ethernet (public/untrusted, private/
trusted)
• Cisco VPN 3015- 3080—Three auto-sensing,
full-duplex 10/100BaseTX Fast Ethernet (public/
untrusted, private/trusted and DMZ)
Instrumentation
• Cisco VPN 3005 Front panel—Unit status indicator
• Cisco VPN 3005 Rear panel—Status light-emitting
diodes (LED) for Ethernet ports
• Cisco VPN 3015-3080 Front panel—Status LEDs for
system, expansion modules, power supplies, Ethernet
modules, fan
• Cisco VPN 3015-3080 Rear panel—Status LEDs for
Ethernet modules, expansion modules, power supplies
• Cisco VPN 3015-3080—Activity monitor displays
number of sessions, aggregate throughput, or CPU
utilization; push-button selectable
Software
Client Software Compatibility
• Cisco VPN Client (IPsec) for Windows 95, 98, ME, NT
4.0, 2000,
XP, Linux (Intel), Solaris (UltraSparc 32-
& 64-bit), and MAC OS X 10.1, including centralized
split-tunneling control and data compression
• Microsoft PPTP/MPPE/MPPC, MSCHAPv1/v2, EAP/
RADIUS pass-through for EAP/TLS & EAP/GTC
support
• MicrosoftL2TP/IPsecfor Windows 2000/XP (including
XP DHCP option for route population)
• Microsoft L2TP/IPsec for Windows 98, WIndows
Millennium (Me), and Windows NT Workstation 4.0
• MovianVPN
®
(Certicom) Handheld VPN Client with
ECC
Tunneling Protocols
• IPsec, PPTP, L2TP, L2TP/IPsec, NATTransparent IPsec,
Ratified IPsec/UDP (with auto-detection and
fragmentation avoidance), IPsec/TCP
• Support for Easy VPN (Client and Network Extension
mode)
Encryption/Authentication
• IPsec Encapsulating Security Payload (ESP) using DES/
3DES (56/168-bit) or AES (128, 192, 256-bit) with
MD5 or SHA, MPPE using 40/128-bit RC4
Key Management
• Internet Key Exchange (IKE)
• Diffie-Hellman (DH) Groups 1, 2, 5, 7 (ECDH)
Comments to this Manuals