Transcription
CISCO ROUTER GUIDEFOR TELEWORKERS, SMALL OFFICES, SMALL TO MEDIUM-SIZED BUSINESSES,AND ENTERPRISE BRANCH AND HEAD OFFICESCISCO ACCESS AND INTEGRATED SERVICES ROUTERSCisco SOHO, 800, 1700, 1800, 2600, 2800, 3700, 3800, 7200, and 7300 SeriesFALL 2004 / WINTER 2005 V.1
Cisco Access and IntegratedServices RoutersFor Teleworkers, Small Offices, Small to Medium-SizedBusinesses, and Enterprise Branch and Head OfficesThis is your guide to Cisco Access Routers and Cisco IntegratedServices Routers, the broadest and most versatile portfolio ofproducts for enabling the deployment of multiple advanced services.Cisco Systems is the worldwide leader in networking systemsfor organizations of all sizes, offering solutions that fully supportenterprise-wide deployment of networked business applications.A foundation of the Intelligent Information Network, Ciscorouters provide high availability, comprehensive security, ease ofmanagement, and advanced quality of service (QoS) for today’s mostdemanding network services, including IP communications, video,customer relationship management, financial transactions and otherreal-time applications.This guide shows how Cisco Access Routers and Cisco IntegratedServices Routers enable you to meet your current and future needswith modular designs, allowing incremental migration as yourbusiness and network requirements change.In this guide, you can see for yourself how Cisco delivers benefitsbeyond basic data access, providing services such as voice, security,and wireless as part of an integrated routing system that maximizesproductivity and investment protection.We’ve color-coded the guide to help you distinguish the new CiscoIntegrated Services Routers (red sections) from the popular line ofCisco Access Routers (teal sections).
Cisco Access and IntegratedServices RoutersFor Teleworkers, Small Offices, Small to Medium-SizedBusinesses, and Enterprise Branch and Head OfficesQuick Reference GuideSeries OverviewCisco SOHO Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7Cisco 800 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11Cisco 1700 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19Cisco 1800 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27Cisco 2600 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33Cisco 2800 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41Cisco 3700 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51Cisco 3800 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57Cisco 7200/7301 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67Cisco 7304 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73ModularityNetwork Modules. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79Interface Cards . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120Advanced Integration Modules and Security Modules . . . . . . . . . . . 139Compatibility Quick LooksNetwork Module Compatibility Quick Look . . . . . . . . . . . . . . . . . . . . . 147Interface Card Compatibility Quick Look . . . . . . . . . . . . . . . . . . . . . . . 153Advanced Integration Module Compatibility Quick Look . . . . . . . . . . 156Port Adapter Compatibility Quick Look . . . . . . . . . . . . . . . . . . . . . . . . 158Product Transition Matrix. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162
Power Branch Solutions for Teleworkers,Small to Medium-Sized Business, andEnterprise Branch and Head Offices Increased services densityfor secure data servicesCisco SOHO SeriesCisco 1700 SeriesSmall Office/Home OfficeSmall/Medium-SizedBusiness, Small EnterpriseBranch Office Manageability andreliability of CiscoIOS SoftwareBusiness-class security Stateful inspectionfirewallFixed configuration 3DES SoftwareEncryption (Cisco SOHO91, 96, 97) Some models withintegrated 4-port hub or4-port 10/100 switch Dual Ethernet, ADSL,ADSL over ISDN, andG.SHDSL Built-in Fast Ethernet(10/100) LAN Manageability andreliability of CiscoIOS SoftwareBusiness-class security Stateful inspectionfirewall VPNs: software andhardware encryption,Cisco Easy VPN server/remote Intrusion PreventionSystem (IPS)Multiservice data/voice Analog and digital voice Survivable Remote SiteTelephony (SRST)Cisco 800 Series IP CommunicationsExpress (CCME/CUE)TeleworkerSmall Remote OfficeModularity WAN/voice modular slots Manageability andreliability of CiscoIOS SoftwareBusiness-class security Stateful inspectionfirewall VPN 3DES encryption(hardware based onCisco 830s) Voice and dataintegration(Cisco 827-4V)Fixed configuration Some models withintegrated 4-porthub or 4-port 10/100switch Dual Ethernet, ADSL,ADSL over ISDN, andG.SHDSL Wide array of WAN/voiceinterface cards T1/E1, ISDN, ADSL,G.SHDSL, Frame Relayoptions through NetworkAdmission ControlNEWCisco 1800 SeriesSmall to Medium-sizedBusinesses and SmallEnterprise Branch Offices Wire-speed performancewith secure data servicesenabled at up to T1/E1/xDSL rates Support for nextgeneration High-speedWAN Interface Cards Increased flexibilitythrough support ofinternal AIM slot forhigh-speed VPN andfuture applications Built-in dual FastEthernet portsModularity Wide array of WAN/voiceinterface cardsIntegrated Switching Up to 44 powered 10/100switch ports Network and advancedintegration module (AIM)support 802.3af Power overEthernet compliance Supports more than 70network modules, AIMs,voice/WAN interfaces Anti-virus defense Intrusion PreventionSystem (IPS) SDM SupportIntegrated Switching Support for the new4-port 10/100 managedEtherSwitch moduleaccelerationIntegrated EnterpriseBranch OfficeCisco 2800 Series Built-in Fast Ethernet(10/100) LANSmall to Medium-sizedBusinesses and EnterpriseBranch Office Manageability andreliability of CiscoIOS Software Wire-speed performanceup to multiple T1/E1/xDSLrates High-service density incompact form Support for newenhanced interfaces(NME, HWIC, EVM, andPVDM2)Cisco 2600 SeriesSmall/Medium-SizedEnterprise Branch Office Built-in Fast Ethernet(10/100) LANBusiness-class security Stateful inspection firewall VPNs: software andhardware encryption,Cisco Easy VPN Built-in dual Fast Ethernetor Gigabit Ethernet ports Optional integratedinline poweredlow-density switchingBusiness-class security Stateful inspectionfirewall VPNs: software andhardware encryption,Cisco Easy VPN Intrusion PreventionSystem (IPS) Optional support forintegrated Power overEthernet (PoE) Software compressionSecure Networking Hardware-basedVPN acceleration onmotherboard IP CommunicationsExpress (CCME/SRST/CUE) Intrusion PreventionSystem (IPS) Intrusion PreventionSystem (IPS)Multiservice data/voice Analog and digitalvoice SDM Support IP Communications Express(CCME/SRST/CUE) Single platform IPtelephony infrastructure Support for over 90existing and new modules Anti-Virus DefenseIP Communications andIP Telephony Support IP CommunicationsExpress (CCME/SRST/CUE) Enhanced Modularity(EVM and PVDM2 support)Integrated Switching Up to 72 powered 10/100switch ports 802.3af Power overEthernet compliance Flexible processingoptions, includinghardware-acceleratedIP services, with ParallelExpress Forwarding Comprehensivemanagement servicesthrough Cisco ElementMedium-Sized to LargeBusinesses and EnterpriseBranch OfficesCisco 3700 Series Increased services densityfor security, voice, caching,video, network analysis,and L2 switchingNEWCisco 3800 SeriesNEW Support for over 30existing and new modulesSecure Networking Hardware-basedVPN accelerationon motherboardCisco offers the industry’s broadest and most versatile portfolio ofsecure, high-performance access and integrated services routers, enablingthe deployment of a wide array of services to the farthest reaches of anorganization, from the home office to the small office to the largeenterprise branch and head office.Multiservice data/voice Analog and digital voiceModularity Wide array of WAN/voiceinterface cards Network and advancedintegration module (AIM)support Supports more than 70network modules, AIMs,and voice/WAN Interfaces Wire-speed performancewith services enabled atup to T3/E3 rates Increased servicesdensity for security, voice,caching, video, networkanalysis, and L2 switching Support for new enhancedinterfaces (NME, HWIC,EVM, and PVDM2) Built-in dual GigabitEthernet portsCisco 7200/7301 SeriesEnterprise Head OfficeEnvironments Application versatility—Managed NetworkServices, WANAggregation, MPLS, VPN,broadband aggregation,QoS, and multiserviceBusiness-class security/VPN Stateful inspection firewall Support for over 90existing and new modules VPNs: software andhardware encryption,Cisco Easy VPN Single small formpluggable port Hardware compression High availability andresiliency through onlineinsertion and removalsupport, as well asredundant systems andoptional inline powerSecure Networking Hardware-basedVPN acceleration onmotherboard Anti-virus defensethrough NetworkAdmission Control Intrusion PreventionSystem (IPS) SDM SupportIP Communications andIP Telephony Support IP Communications Express(CCME/SRST/CUE) Enhanced Modularity (EVMand PVDM2 support) Service-level validationfeatures Intrusion detectionsystem (IDS)Multiservice data/voice Analog and digital voice Survivable Remote SiteTelephony (SRST) Multiservice interchange(MIX)-enabled backplanefor service integrationModularity Supports over 70interfaces, providing acomprehensive rangeof connectivity optionsfrom FE to GE, and DSOthrough OC-12 DPT Shared interfaces withCisco 7400, Cisco 7500,and Cisco 7600 Seriesrouters for commonsparing Built-in FE/GE ports onthe NPE-G1 processor forhigh-performance LANconnectivityCisco 7304 SeriesEnterprise Head OfficeEnvironments High-performanceconnectivity up toOC-48 speeds Built-in GE for highperformance LANconnectivity Hardware-acceleratedservices with ParallelExpress Forwarding Optional redundantprocessor and powersupplies for high availability in a single boxsolution Multiprotocol supportBusiness-class security/VPN Hardware-acceleratedAccess Control Lists Stateful inspectionfirewall Software compressionModularity More than 20 networkline cards Chassis supports upto 4 line cards or portadapters Built in GE ports onprocessor Support for 7x00 portadapters Manageability andreliability of Cisco IOSSoftware
Cisco SOHO SeriesCisco SOHO Series broadband routers provide secure connectivity to smallremote offices with up to five users and teleworkers. The Cisco SOHO SeriesRouters can support integrated security features of Cisco IOS Software suchas stateful inspection firewall protection, strong encryption for virtual privatenetworks (VPNs), easy setup for non-technical users with a Web-based setup tool,and advanced management capabilities to lower operational costs. These routersconnect to a DSL line with an integrated modem (ADSL: SOHO 97; ADSL overISDN: SOHO 96; G.SHDSL: SOHO 78) or connect to an external DSL or cablemodem (SOHO 91).B E N E F I T S A N D A DVA N TAG E SSecure Internet AccessThe Cisco SOHO Series Routers, recommendedfor up to five users, allow all users in a smalloffice to share a secure broadband connectionwith an integrated stateful inspection firewall.Corporate teleworkers or small-office users canalso take advantage of the Cisco SOHO SeriesRouters for VPN connections to the corporatenetwork. The SOHO 91, 96, and 97 routers canset up secure Triple Data Encryption Standard(3DES) encrypted connections using Cisco IOSSoftware or, for all the SOHO Series Routers,users can initiate VPN tunnels from PC-basedVPN clients on the LAN.Easy Setup and DeploymentThe Cisco SOHO Series Routers include the CiscoRouter Web Setup tool (CRWS), a Web-basedconfiguration tool that allows users to quickly selfinstall the router. Because CRWS is Web-based,no additional software is required on the PC forconfiguration. Users simply point a browser tothe router and follow a few easy steps to quicklyget the router up and running. Additionally,the Cisco Configuration Express service allowsenterprise or service provider customers whoorder products direct from Cisco to have preconfigured Cisco SOHO Series Routers shipped fromthe manufacturer directly to the end users.Advanced Management Featuresfor Low Cost of OwnershipTo simplify management and reduce ongoingoperational costs, the Cisco SOHO SeriesRouters take advantage of many debug andtroubleshooting features in Cisco IOS Software.To further reduce operational costs, the routerssupport centralized management and configuration updates with the Cisco IE 2100 IntelligentEngine management appliance. The Cisco SOHOSeries Routers provide the right combination ofintegrated security features, a four-port 10/100Ethernet LAN switch on the SOHO 91, 96, and97 routers, and advanced management featuresto secure broadband connections for smalloffice and home office users. Cisco SOHO 90Series routers offer out-of-band managementfeature via virtual auxiliary port. Dynamic DNSfeature is available on Cisco 830 routers, whichenables the router to be accessible from outsideusing a DNS name even when the WAN IPaddress changes frequently.The Cisco SOHOSeries Routers use the same Cisco IOS Softwareused in large service provider and enterprisenetworks, allowing small-office users to takeadvantage of the proven reliability ofCisco IOS Software.7
Cisco SOHO SeriesCisco SOHO SeriesP L AT F O R M OV E RV I E WW H E N TO DEPLOYThe Cisco SOHO Series is recommended whenyou need to deploy: Site-to-site software based VPNs(Cisco SOHO 91, 96, and 97) Affordable, small business multiuser accesswith a DSL or cable line A secure teleworker solution for userswho utilize PC VPN clients Internet access security with a statefulinspection firewall The proven reliability and manageabilityof Cisco IOS Software An easy setup solution for ixed LANFixed WAN DRAM (MB) Flash (MB)PowerConnections Connections default max default max SupplyEthernet to Ethernet RoutersCisco SOHO 91Small Business,Remote Office,TeleworkerStateful firewall,4-portsoftware-based 10/100 switchIPsec 3DES,IOS RemoteManagement1-portEthernet10 MB323288ExternalADSL over ISDN RoutersCisco SOHO 96S E R I ES DISTINCTIONSCisco SOHO SeriesSmall Business,Remote OfficeTeleworkerStateful firewall,4-port1-portsoftware-based 10/100 switch ADSL overIPsec 3DES,ISDNIOS RemoteManagement323288ExternalSmall Business,Remote Office,TeleworkerStateful firewall,4-portsoftware-based 10/100 switchIPsec 3DES,IOS RemoteManagement1-portADSL323288ExternalFirewall, Web4-portGUI, IOS Remote Ethernet ADSL RoutersWAN TechnologiesEthernet, ADSL, ADSL over ISDN, G.SHDSLSecurityStateful firewallVPNIPsec passthrough, IPsec 3DES encryption (Cisco SOHO 91, 96, and 97)Cisco SOHO 97QoSDSL ATM QoS onlyUpgradabilitySoftware updates to default software image onlyG.SHDSL RoutersCisco SOHO 78A P P L ICATION EXAMPLESmall Business,Remote Userswith VPN PCClientsS E R I E S S P E C I F I C AT I O N SSmall Business withFirewall ProtectionStateful FirewallCisco SOHO Series RouterInternetSmall Businesses with Site-to-Site,Software-based VPNs8Cisco SOHO 90 Series RouterProcessorRISC CPUFlash Memory8 MBSystem DRAM Memory16 – 32 MBInternal Power SupplyNoDimensions (H x W x D)2.0 x 9.7 x 8.5 in. (5.1 x 24.6 x 21.6 cm)Performance9 Mbps Clear TextConsole Port1 (up to 115.2 Kbps)Maximum Ethernet Ports4-port Ethernet LAN switch (SOHO90), 4-port hub (SOHO78)Voice/Data Support0Integrated Modems0Maximum Number of ISDN BRI Ports0Maximum Number of ISDN PRI Ports0Integrated CSU/DSUNoCompressionSWEncryptionSWRedundant Power Supply SupportNoMinimum Cisco IOS Software ReleaseDependent upon model9
Cisco SOHO SeriesC I S C O IOS MEMORY REQUIREMENTSCisco SOHO SeriesDescriptionDRAM (MB)Flash (MB)soho78-y1-mzIP168soho91-k9oy6-mzIP/FW 3DES328soho96-k9oy6-mzIP/FW 3DES328soho97-k9oy1-mzIP/FW 3DES328O R D E RING INFORMATIONCisco 800 SeriesCisco 800 Series of secure broadband routers are ideal for providing secure InternetCisco SOHO SeriesPart NumberDescriptionand corporate network connectivity to small remote offices and teleworkers.Cisco SOHO 78CISCOSOHO78Cisco SOHO 78 router, 1 G.SHDSL, 4E hubThe Cisco 800 Series of secure broadband routers provides a wide range of rich,Cisco SOHO 91CISCOSOHO91Ethernet router, 1E, 4E, 10/100 switch, stateful firewall, IPsec 3DESintegrated security services, advanced quality-of-service (QoS) features for high-Cisco SOHO 96CISCOSOHO96ADSL over ISDN router, 4E, 10/100 switch, stateful firewall, IPsec 3DESquality voice, video, and data applications, and easy deployment and remoteCisco SOHO 97CISCOSOHO97ADSL router, 4E, 10/100 switch, stateful firewall, IPsec 3DESmanagement features with Cisco IOS software. The routers connect to the Internetor corporate networks through an ADSL (Cisco 837, 827-4V), ADSL over ISDN(Cisco 836), G.SHDSL (Cisco 828), ISDN (Cisco 801, 803), serial (Cisco 805), or viaan Ethernet WAN port connected to an external DSL or cable modem (Cisco 831).B E N E F I T S A N D A DVA N TAG E SAdvanced Security and Performance forEnterprise Class VPNsThe Cisco 800 Series delivers integratedenterprise-class security services, includinghardware-accelerated IP security (IPsec) (Cisco831, 836, and 837), Advanced EncryptionStandard (AES) and Triple Data EncryptionStandard (3DES) encryption for virtual privatenetworks (VPNs), and a stateful inspectionfirewall for secure Internet connectivity.A stateful firewall offers more intelligentperimeter security by denying or permittingWAN traffic based on a session’s state, sorequests from users behind the firewall can bereceived, while still preventing unauthorizedaccess. With the support of Cisco Easy VPNRemote, setup, management, and maintenanceof VPN connections is simple using Cisco800 Series Routers. Other important securityfeatures offered by Cisco 830 routers areIntrusion Detection System (IDS), DynamicMultipoint VPN (DMVPN), DMZ interface, 802.1x,Quality of Service for VPNs and Public WirelessLAN security features.10High-quality, Secure Voice and VideoThe advanced QoS features of the Cisco800 Series Routers, combined with highperformance encryption on the 831, 836, and837, provide high-quality voice and videoservices to remote users. When IP phones areconnected at a remote site, a Cisco 800 SeriesRouter can queue and prioritize the voice trafficover data traffic to ensure a high-quality, securevoice over IP (VoIP) connection from the remoteor home office back to the corporate network.Manageable, Scalable, and Reliable AccessThe Cisco 800 Series utilizes valuablemanagement and deployment tools to deliverthe industry’s lowest total cost of ownershipfor connecting small remote offices andteleworkers to the corporate network. As aremotely manageable platform, the Cisco 800Series supports advanced remote troubleshooting commands available in Cisco IOSSoftware; a virtual auxiliary port forout-of-band management with an externalmodem on the Cisco 831 and Cisco 837;11
Cisco 800 SeriesCisco 800 SeriesB E N E FITS AND ADVANTAGESW H E N TO D E P LOYcontinuedan ISDN port on the Cisco 836 router for out ofband management; and Secure Shell Protocol(SSH) for secure in-band management viaTelnet. For scalability in deployment andmanagement, the Cisco Router Web Setup tool(CRWS) or SDM allows non-technical usersto quickly set up the router and turn on keyfeatures such as the stateful firewall. Cisco alsoprovides a suite of solutions—such as CiscoEasy VPN, Cisco IE2100 management appliance,Cisco VPN Solution Center (VPN SC), CiscoRouter Management Center (Router MC), and
Cisco Easy VPN Intrusion Prevention System (IPS) Multiservice data/voice Analog and digital voice IP Communications Express (CCME/SRST/CUE) NEW. 7 Cisco SOHO Series broadband routers provide secure connectivity to small remote offices with up t
