Name: Cisco 2911
Brand: Cisco
Rating: 5 (1 reviews)

To Next Page

To Previous Page

127

Cisco 3900 Series, Cisco 2900 Series, and Cisco 1900 Series Integrated Services Routers Generation 2 Software Configuration Guide

Configuring Security Features

Cisco 3900 series, Cisco 2900 series, and Cisco 1900 series integrated services routers (ISRs) provide

the following security features:

• Configuring the Cryptographic Engine Accelerator, page 127

• Configuring SSL VPN, page 127

• Authentication, Authorization, and Accounting, page 128

• Configuring AutoSecure, page 128

• Configuring Access Lists, page 129

• Configuring Cisco IOS Firewall, page 130

• Zone-Based Policy Firewall, page 130

• Configuring Cisco IOS IPS, page 131

• Content Filtering, page 131

• Configuring VPN, page 131

• Configuring Dynamic Multipoint VPN, page 149

• Configuring Group Encrypted Transport VPN, page 150

Configuring the Cryptographic Engine Accelerator

Services Performance Engine 200 and Services Performance Engine 250 have an onboard cryptographic

engine accelerator that is shared between SSLVPN and IPSec protocols.

By default, acceleration of SSL is disabled so IPSec performance is maximized. To set up a router as an

SSLVPN gateway, enable hardware acceleration for SSLVPN with the crypto engine accelerator

bandwidth-allocation ssl fair command from global configuration mode. Issue the reload command.

Configuring SSL VPN

The Secure Socket Layer Virtual Private Network (SSL VPN) feature (also known as WebVPN) provides

support, in Cisco IOS software, for remote user access to enterprise networks from anywhere on the

Internet. Remote access is provided through a SSL–enabled SSL VPN gateway. The SSL VPN gateway

allows remote users to establish a secure VPN tunnel using a web browser. This feature provides a

Other manuals for Cisco 2911

Questions and Answers:

Need help?

Do you have a question about the Cisco 2911 and is the answer not in the manual?

General

Ethernet LAN	Yes
Cabling technology	10/100/1000Base-T(X)
Networking standards	IEEE 802.1Q, IEEE 802.1ag, IEEE 802.3, IEEE 802.3ab, IEEE 802.3af, IEEE 802.3ah, IEEE 802.3u
Ethernet LAN data rates	10, 100, 1000 Mbit/s
Ethernet interface type	Gigabit Ethernet
DHCP client	-
Routing protocols	BGP, EIGRP, OSPF
Supported protocols	IPv4, IPv6, IS-IS, IGMPv3, PIM SM, SSM, DVMRP, IPSec, GRE, BVD, MPLS, L2TPv3, PPP, MLPPP, MLFR, HDLC, RS-232, RS-449, X.21, V.35, EIA-530, PPPoE, ATM
USB version	2.0
RS-232 ports	1
Expansion slots	4 x EHWIC 2 x DSP 1 x ISM
USB ports quantity	2
Ethernet LAN (RJ-45) ports	3
Firewall security	Cisco IOS
Input current	2.2 A
AC input voltage	100 - 240 V
Power source type	AC
AC input frequency	47 - 63 Hz
Power consumption (typical)	50 W
Product color	Black
Rack capacity	2U
Operating altitude	0 - 4000 m
Non-operating altitude	0 - 4570 m
Storage temperature (T-T)	-40 - 80 °C
Operating temperature (T-T)	0 - 40 °C
Storage relative humidity (H-H)	5 - 95 %
Operating relative humidity (H-H)	5 - 85 %
Safety	UL 60950-1, CAN/CSA C22.2 No. 60950-1, EN 60950-1, AS/NZS 60950-1, IEC 60950-1
Electromagnetic compatibility	47 CFR, ICES-003, EN55022, CISPR22, AS/NZS 3548, VCCI V-3, EN 300-386, EN 61000, EN 55024, CISPR 24EN50082-1