Cisco Systems, Inc.
All contents are Copyright © 1992–2003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 6 of 21
Security
Cisco IOS Software security
• Enables secure access to the Internet with
per-application-based, dynamic access control
• Prevents unauthorized access to the internal LAN
• Enables creation of VPNs by providing
industry-standard data privacy, integrity, and
authenticity as data traverses the Internet or a
shared public network
• Supports up to 168-bit encryption
• Simplifies router and security configuration through
smart wizards, enabling customers to quickly and
easily deploy, configure,and monitor a Cisco access
router without requiring knowledge of IOS
Command Line Interface (CLI).
• Simplifies VPN deployment through elimination of
complex remote-side configurations
• Accepts VPN connections from Cisco VPN Software
clients and Cisco Easy VPN Remote devices
• Provides Cisco IOS Firewall feature set context-based
access control for dynamic firewall filtering,
denial-of-service detection and prevention, Java blocking,
real-time alerts, IDS
10
, and encryption
• Offers IPSec
11
DES, and 3DES support
• Offers Cisco Easy VPN Remote support
• Offers Cisco Easy VPN Server support as of Q2 CY ‘02
• Offers Cisco Security Device Manager (SDM) support
Hardware-accelerated VPN encryption
• Supports wire-speed encryption up to T1/E1 speeds • Offers hardware-based encryption using optional VPN
module
Device authentication and key management
• Ensures proper identity and authenticity of devices
and data
• Enables scalability to very large IPSec networks
through automated key management
• Supports IKE
12
, X.509v3 digital certification, and CEP
13
with certification authorities such as Verisign and Entrust
User authentication
• Supports all leading user-identity verification
schemes
• Supports PAP/CHAP
14
, RADIUS
15
, and TACACS+
VPN tunneling
• Offers choice of standards-based tunneling
methods to create VPNs for IP and non-IP traffic
• Allows standards-based IPSec or L2TP
16
client to
interoperate with Cisco IOS tunneling technologies
• Interoperates with public certification authorities
and IPSec standards-based products
• Fits as part of the scalable Cisco end-to-end VPN
solution portfolio
• Supports IPSec, GRE
17
, L2TP, and L2F
18
Business-class DSL
Table 3 Benefits and Features of Cisco 1760 Modular Access Router
Benefits Features
