Quantcast
Viewing all 70 articles
Browse latest View live

Cisco ACI Components, Features & Benefits

October 13, 2014, 8:53 pm
$
0
0
Cisco ACI uses a holistic systems-based approach, with tight integration between physical and virtual elements, an open ecosystem model, and innovation-spanning application-specific integrated circuits (ASICs), hardware, and software. This unique approach uses a common policy-based operating model across ACI-ready network, and security elements (computing, storage in future), overcoming IT silos and drastically reducing costs and complexity.

Cisco ACIredefines the power of IT, enabling IT to be more responsive to changing business and application needs, enhancing agility, and adding business value. As an innovative architecture, Cisco ACI radically simplifies, optimizes, and accelerates the entire application deployment lifecycle.

Problems Addressed by Cisco ACI
Cloud, mobility, and big data applications are causing a shift in the data center model. New applications are placing demands on the infrastructure in new ways. Distributed applications (for example, Big Data and Hadoop), database applications(such as those from Oracle and SAP) that run on bare metal, virtualized applications running in multi-hypervisor environments, and cloud-based applications that are available on demand all impose different demands on infrastructure.These demands include:
Infrastructure must become application aware and more agile to support dynamic application instantiation and removal
The non-virtual nature of new emerging applications means that the infrastructure must support physical, virtual, and cloud integration with full visibility
Infrastructure-independent applications treat the data center as a dynamic shared resource pool
Scale-out models promote more east-west traffic, with a need for greater network performance and scalability
Multi-cloud models require the infrastructure to be secure and multitenant aware

These changes are increasing operation complexity and limiting business agility and responsiveness. Cisco ACI delivers an agile data center with simplified operations and increased application responsiveness to support a new generation of distributed applications while accommodating existing virtualized and non-virtualized environments.

Cisco ACI Solution
Cisco ACI delivers a transformational operating model for next-generation data center and cloud applications.

In the Cisco ACI framework, applications guide networking behavior, not the other way around. Predefined application requirements and descriptions (policy profiles) automate the provisioning of the network, application services, security policies, tenant subnets, and workload placement. By automating the provisioning of the complete application network, Cisco ACI helps lower IT costs, reduce errors, accelerate deployment, and make the business more agile.

The new Cisco ACI model uses a fabric-based approach that is designed from the foundation to 
support emerging industry demands while maintaining a migration path for architectures already in place. This focus allows both traditional enterprise applications and internally developed applications to run side by side on a network infrastructure designed to support them in a dynamic and scalable way. Network policies and logical topologies, which traditionally have dictated application design, are instead applied based on the application needs. The fabric is designed to support the move to management automation, programmatically defined policy, and dynamic workloads on any device anywhere. Cisco ACI accomplishes this with a combination of hardware and software tightly coupled to provide advantages not possible in other models.

Cisco Application Policy Infrastructure Controller, Application Network Profile and Fabric That Supports Cisco ACI
Image may be NSFW.
Clik here to view.


Main Cisco ACI Components
Cisco Application Policy Infrastructure Controller
The Cisco Application Policy Infrastructure Controller (APIC) is the main architectural component of the Cisco ACI solution. It is the unified point of automation and management for the Cisco ACI fabric, policy enforcement, and health monitoring. The Cisco APIC is a centralized clustered controller that optimizes performance, supports any application anywhere, and unifies operation of physical and virtual environments. The controller manages and operates a scalable multitenant Cisco ACI fabric.

The Cisco APIC is responsible for tasks ranging from fabric activation, maintenance of switch firmware, network policy configuration and instantiation. Cisco APIC is completely removed from the data path. This means that the fabric can still forward traffic even when communication with the APIC is lost. The APIC itself is delivered as an appliance and will typically be run as three or more appliances for performance and availability.

The Cisco APIC is designed from the foundation for programmability and centralized management. The Cisco APIC exposes a northbound API through XML and JSON and provides both a command-line interface (CLI) and GUI that use this API to manage the fabric. The system also provides an open source southbound API that allows third-party network service vendors to implement policy control of supplied devices through the Cisco APIC.

Application Network Profiles
An Application Network Profile within the fabric is a collection of the endpoint groups (a logical grouping of similar endpoints representing an application tier or set of services that require a similar policy), their connections, and the policies that define those connections. Application Network Profile is the logical representation of all components of the application and its interdependencies on the application fabric.

Application Network Profiles are designed to be modeled in a logical way that matches the way that applications are designed and deployed. The configuration and enforcement of policies and connectivity are then handled by the system through the Cisco APIC rather than an administrator.

Cisco ACI Fabric: Cisco Nexus Portfolio
Cisco is expanding the Cisco Nexus switching portfolio with the introduction of the Cisco Nexus 9000 Series Switches for both traditional and Cisco ACI data center deployments. The Cisco Nexus 9000 Series offers modular and fixed 1/10/40 Gigabit Ethernet switch configurations that are designed to operate either in Cisco NX-OS mode for compatibility and consistency with the current Cisco Nexus switches or in Cisco ACI mode to take full advantage of Cisco ACI application policy–based services and infrastructure automation features. This dual-function capability provides customers with investment protection and ease of migration to Cisco ACI through a software upgrade.



Benefits of Cisco ACI
Cisco ACI helps dissolve IT silos for application deployment, security, network services, and network configuration personnel by enabling all of them to collaborate through a common platform. The main benefits include:
²  Application velocity - any application, anywhere
²  Systems architecture that enables a holistic view of applications, with centralized application-level integrated visibility and real-time application health monitoring across physical and virtual environments
²  Common platform for managing physical, virtual, and cloud-based environments
²  Secure multi-tenancy with detailed control for applications and tenants
²  Scalable performance combining software flexibility and hardware performance
²  Superior application performance, improving application flow completion time by up to 80 percent
²  Operation simplicity, with common policy, management, and operation models across application, network, and security resources (and computing and storage resources in the future)
²  Open APIs, open standards, and open source elements enable software flexibility for development and operations (DevOps) teams and ecosystem partner integration

Cisco Services for ACI
“Is my data center ready for transformation?”  
“How do I know my initiative will have the desired impact?”  
“How do I get started?” Cisco Services can help you with the answers. Cisco offers a range of professional services to support your transition to ACI and to secure your infrastructure, including:

Cisco Business Strategy capabilities help you articulate the strategy and develop the business case and an architectural-led master plan for ACI. We assess the specific benefits of ACI for your environment, and identify and prioritize business-impacting scenarios into an overall plan, using tools and frameworks that we have developed and tested internally and with others.
Cisco Readiness Planning capabilities help transform your data center networks to an ACI by identifying risks and opportunities; analyzing operational elements; and recommending detailed migration plans to enable a smooth and successful transition to ACI.
Cisco Data Center Services for Operations Enablement are existing services which can prepare your environment for ACI while addressing all stages of the operations lifecycle.

Cisco Services to Secure the Data Center Infrastructure
Cisco Data Center Security Design Assessment Service helps you understand your security infrastructure design and how it aligns with your security policy. The resulting comprehensive assessment report includes risk analysis and recommendations based on industry best practices.
Cisco Data Center Security ASA Migration Service helps you migrate your third party or Cisco Adaptive Security Appliance (ASA) platform—including configurations and firewall rules—to a virtualized environment.
Cisco Data Center Optimization Service improves, supports, and maintains your overall data center, including security support in data center devices.

Cisco Security Optimization Services address specific security needs, such as an annual data center security posture assessment or data center security design development support. 


More Cisco ACI Topics
Cisco ACI, Whatis It?
Cisco Servicesfor ACI & Nexus 9000 Series

Search

How to Select Your Cisco Products? More Questions…

October 29, 2014, 2:08 am
$
0
0
Before buying a network hardware product, it’s necessary to know about the business requirements of the network. Then, you can select the appropriate products like the Cisco hardware.Image may be NSFW.
Clik here to view.

Today, WAN technologies most often take advantage of high-speed connections, such as T-1 and E-1. Additional WAN technologies exist, including Frame Relay, ISDN, and dial-up asynchronous connections. ISDN or dial-up is used if infrequent connection is made. If a connection is used for more than two to four hours, you should use a Frame Relay or a leased line. Based on the different services available through the service provider; you can select Cisco products that can fulfill your office requirements.

Selecting Hubs
Cisco has various hub products. You can select hubs according to the type of connection required. Higher-end hubs offer network management port and console connections, middle-end hubs offer both 10 Mbps and 100 Mbps auto-sensing connections, and the lower-end hubs offer only 10 Mbps connections. Examples of fast hub series of Cisco are Cisco Fh100, Cisco Fh200, Cisco Fh300, and Cisco Fh400. Examples of micro hub series are Cisco MH1500 and Cisco MH1528.

Selecting Routers
Routers are the most popular Cisco products. To select a router, you must first know the port density and the interface speed required based on the LAN or WAN technologies used. In addition, you must identify the capacity and performance requirements of your business. The cost of the router varies according to the features you select.

Selecting Switches
A switch can be used instead of a hub in newer networks. Most switches are configured to limit collision domains, which often provides a limited security feature because users will not be able to sniff traffic as easily as in a standard hub-based network. This feature can cause confusion when using a network sniffer to analyze traffic. It is possible, however, to analyze packets on a switched network by enabling mirroring on the switch, or by using a dedicated port that allows authorized users to view all network traffic. It is important to consider whether you need 10, 100, or 1000 Mbps for each desktop or to connect between switches. To select a switch, you must consider various issues, such as business requirements, requirements for inter-switch links and trunking, port density, and type of user interface.


Product Selection Criteria, More Questions
  • Will the device be used as a core device, distribution device, or access device?
  • Does the device provide the functions that your business requires?
  • Does the device have adequate number of ports and the right mix of interfaces as required by your business?
  • Do you have to pay a lot for installing the device or can it be easily installed?
  • Can the device be centrally managed from an SNMP Management station or do you have to physically access the device to manage it?
  • Is the migration path easy?
  • How well does the device handle redundancy requirements?
  • Do you have to change your existing infrastructure, such as cabling or existing devices, to install the new device?
If you want to know more Cisco products and its updates, you can visit its web site http://www.cisco.com to see more. If you want to buy some Cisco products, such as Cisco 1900, 2900, 3900 series router, Cisco Catalyst 2960-X, 3750-X and 3560-X series, Cisco ASA 5500 series, Cisco wireless AP and so on. More Cisco’s new products you can see at http://www.router-switch.com/


More Cisco hardware guides and tips you can visit: http://blog.router-switch.com/

Ordering Modules for Cisco ISR G2

November 17, 2014, 7:48 pm
$
0
0
Most of the existing modules from the Cisco ISRs are supported on the Cisco ISR G2 routers. But there may be a little different among the three main ISR G2 routers: Cisco 1900 routers, 2900 and 3900 series routers. So here we list the whole supported and unsupported modules as follows. 

So you can refer to the Cisco Relevant Modules and Interfaces document for each product family.
Cisco 3900 Series Relevant Modules and Interfaces
http://www.cisco.com/en/US/products/ps10536/products_relevant_interfaces_and_modules.html.

Cisco 2900 Series Relevant Modules and Interfaces
http://www.cisco.com/en/US/products/ps10537/products_relevant_interfaces_and_modules.html.

Cisco 1900 Series Relevant Modules and Interfaces
http://www.cisco.com/en/US/products/ps10538/products_relevant_interfaces_and_modules.html.

You need a network module adapter to integrate existing network modules (NMs) or enhanced network modules NMEs) or extended voice modules (EVMs) into the service-module (SM) slot on the Cisco ISR G2 routers. Similarly, you need a PVDM adapter to insert existing packet voice digital modules (PVDM2s) into the PVDM3 slot of the Cisco 3900 or 2900 Series routers. You need one adapter for each module that needs to be plugged in; you can order it during system configuration in the Cisco Dynamic Configuration tool. You can also order these adapters as spares in order to insert any existing modules from original ISRs in use. Part numbers for the module adapters are listed in the following table.

Module Adapters for Cisco 2900 and 3900 Series Routers (Factory Option and Spares)
Ordering SKU
Description
SM-NM-ADPTR
Network Module Adapter for SM Slot on Cisco 2900, 3900 ISR (Both system & spare)
PVDM2-ADPTR
PVDM2 Adapter for PVDM Slot on Cisco 2900, 3900 Series ISR (Both system & spare)

Bundled Systems for Integrated Services Routers Generation 2
You can also order the Cisco ISR G2 portfolio products as prepackaged bundled systems for deploying advanced technologies such as security, unified communications, and application services in the branch office. Many of the bundled systems are being preserved from the first-generation ISRs and are being updated for the ISR G2 routers.

Bundled System Offerings for Cisco 3900, 2900, and 1900 Series Integrated Services Routers*
Image may be NSFW.
Clik here to view.














Security Bundles for Cisco ISR G2
Cisco router security bundles deliver security features such as Cisco IOS Software-based intrusion prevention systems (IPSs), firewall, VPN, content filtering, and infrastructure security services over numerous WAN access technologies, offering high levels of performance, scalability, and availability to meet today's growing business requirements. In the following table we lists the Cisco ISR G2 security bundles for the Cisco 3900, 2900, and 1900 Series routers that come with the Security technology license activated and the advanced security features available for use. By default, these bundles ship with the universal Cisco IOS Software image that supports payload cryptography.

Security Bundles for Cisco 3900, 2900, and 1900 Series Routers-Include universalk9 Image and SEC License
Ordering SKU
Description
Technical Service SKU*(SMARTnet 8x5xNBD or Cisco Services for IPS 8x5xNBD)
CISCO3945E-SEC/K9
Cisco 3945E Security Bundle w/SEC license PAK
CON-SNT-3945ESEC or CON-SU1-3945ESEC
CISCO3925E-SEC/K9
Cisco 3925E Security Bundle w/SEC license PAK
CON-SNT-3925ESEC or CON-SU1-3925ESEC
CISCO3945-SEC/K9
Cisco 3945 Security Bundle w/SEC license PAK
CON-SNT-3945SEC or CON-SU1-3945SEC
CISCO3925-SEC/K9
Cisco 3925 Security Bundle w/SEC license PAK
CON-SNT-3925SEC or CON-SU1-3925SEC
CISCO2951-SEC/K9
Cisco 2951 Security Bundle w/SEC license PAK
CON-SNT-2951SEC or CON-SU1-2951SEC
CISCO2921-SEC/K9
Cisco 2921 Security Bundle w/SEC license PAK
CON-SNT-2921SEC or CON-SU1-2921SEC
CISCO2911-SEC/K9
Cisco 2911 Security Bundle w/SEC license PAK
CON-SNT-2911SEC or CON-SU1-2911SEC
CISCO2901-SEC/K9
Cisco 2901 Security Bundle w/SEC license PAK
CON-SNT-2901SEC or CON-SU1-2901SEC
CISCO1941-SEC/K9
Cisco 1941 Security Bundle w/SEC license PAK
CON-SNT-1941SEC or CON-SU1-1941SEC
C1941W-A-N-SEC/K9
Cisco 1941 w/2 GE, 2 EHWIC slots,256MB CF,512MB DRAM, FCC Compliant, SEC Lic
CON-SNT-1941WASC
C1941W-E-N-SEC/K9
Cisco 1941 w/2 GE, 2 EHWIC slots,256MB CF,512MB DRAM, ETSI Compliant, SEC Lic
CON-SNT-1941WESC
CISCO1921-T1SEC/K9
Cisco 1921 T1 Security Bundle w/SEC license PAK
CON-SNT-1921T1SC
CISCO1921-SEC/K9
Cisco 1921 Security Bundle w/SEC license PAK
CON-SNT-1921SEC
* Customers can purchase either the Cisco SMARTnet Service (CON-SNT-XXX) or the Cisco Services for IPS (CON-SU1-XXX) which includes SMARTnet Service and Signature Updates for Intrusion Prevention System (IPS).

Unified Communications Bundles
Cisco ISR G2 Voice and Voice Security bundles enable unified communications through a rich signaling and media-processing infrastructure, including a variety of protocols, media interworking, signal and media security, transcoding, conferencing, and quality of service (QoS). You can order these bundles with optional licenses for Cisco Unified Communications Manager Express (Unified CME) or Survivable Remote Site Telephony (SRST).

All the Unified Communications bundles on Cisco 3900 and 2900 Series routers include the new PVDM3, which has been optimized for concurrent voice and video support. The PVDM3 modules support all voice-gateway functions of earlier generations of PVDMs, and they add higher density and more processing power to support emerging rich-media applications.

The Table below lists the Cisco ISR G2 voice bundles for the Cisco 3900 and 2900 Series routers that come with entry-level PVDM3, UC technology license, and the unified communications features available for use. By default, these bundles ship with the universal Cisco IOS Software image that supports payload cryptography.

Voice and Video Bundles for Cisco 3900 and 2900 Series Routers-Include universalk9 Image, UC License, and PVDM3
Ordering SKU
Description
Technical Service SKU (SMARTnet 8x5xNBD)
CISCO3945E-V/K9
Cisco 3945E Voice Bundle, PVDM3-64, UC License PAK
CON-SNT-3945EV
CISCO3925E-V/K9
Cisco 3925E Voice Bundle, PVDM3-64, UC License PAK
CON-SNT-3925EV
CISCO3945-V/K9
Cisco 3945 Voice Bundle, PVDM3-64, UC License PAK
CON-SNT-3945V
CISCO3925-V/K9
Cisco 3925 Voice Bundle, PVDM3-64, UC License PAK
CON-SNT-3925V
CISCO2951-V/K9
Cisco 2951 Voice Bundle, PVDM3-32, UC License PAK
CON-SNT-2951V
CISCO2921-V/K9
Cisco 2921 Voice Bundle, PVDM3-32, UC License PAK
CON-SNT-2921V
CISCO2911-V/K9
Cisco 2911 Voice Bundle, PVDM3-16, UC License PAK
CON-SNT-2911V
CISCO2901-V/K9
Cisco 2901 Voice Bundle, PVDM3-16, UC License PAK
CON-SNT-2901V

We also lists the Cisco ISR G2 CME-SRST bundles for the Cisco 3900 and 2900 Series routers that come with the entry-level PVDM3, UC technology license, and right-to-use licenses for 25 seats of Cisco Unified CME or SRST as follows.

CME-SRST Bundles for Cisco 3900 and 2900 Series Routers-Include universalk9 Image, UC and CME/SRST Licenses, and PVDM3
Ordering SKU
Description
Technical Service SKU (SMARTnet 8x5xNBD)
C3945E-CME-SRST/K9
3945E Voice Bundle w/ PVDM3-64, FL-CME-SRST-25, UC License PAK
CON-SNT-3945ECST
C3925E-CME-SRST/K9
3925E Voice Bundle w/ PVDM3-64, FL-CME-SRST-25, UC License PAK
CON-SNT-3925ECST
C3945-CME-SRST/K9
3945 Voice Bundle w/ PVDM3-64, FL-CME-SRST-25, UC License PAK
CON-SNT-3945CMST
C3925-CME-SRST/K9
3925 Voice Bundle w/ PVDM3-64, FL-CME-SRST-25, UC License PAK
CON-SNT-3925CMST
C2951-CME-SRST/K9
2951 Voice Bundle w/ PVDM3-32, FL-CME-SRST-25, UC License PAK
CON-SNT-2951CMST
C2921-CME-SRST/K9
2921 Voice Bundle w/ PVDM3-32, FL-CME-SRST-25, UC License PAK
CON-SNT-2921CMST
C2911-CME-SRST/K9
2921 Voice Bundle w/ PVDM3-16, FL-CME-SRST-25, UC License PAK
CON-SNT-2911CMST
C2901-CME-SRST/K9
2901 Voice Bundle w/ PVDM3-16, FL-CME-SRST-25, UC License PAK 
CON-SNT-2901CMST

The next Table lists the Cisco ISR G2 voice and video security bundles for the Cisco 3900 and 2900 Series routers that come with the entry-level PVDM3, Unified Communications, and Security technology license activated. By default, these bundles ship with the universal Cisco IOS Software image that supports payload cryptography.

VSEC Bundles for Cisco 3900 and 2900 Series Routers-Include universalk9 Image, UC and SEC License, and PVDM3
Ordering SKU
Description
Technical Service SKU (SMARTnet 8x5xNBD or Cisco Services for IPS 8x5xNBD)
C3945E-VSEC/K9
Cisco 3945E Voice Sec. Bundle, PVDM3-64, UC and SEC License PAK
CON-SNT-3945EVSC or CON-SU1-3945EVSC
C3925E-VSEC/K9
Cisco 3925 EVoice Sec. Bundle, PVDM3-64, UC and SEC License PAK
CON-SNT-3925EVSC or CON-SU1-3925EVSC
C3945-VSEC/K9
Cisco 3945 Voice Sec. Bundle, PVDM3-64, UC and SEC License PAK
CON-SNT-3945VSEC or CON-SU1-3945VSEC
C3925-VSEC/K9
Cisco 3925 Voice Sec. Bundle, PVDM3-64, UC and SEC License PAK
CON-SNT-3925VSEC or CON-SU1-3925VSEC
C2951-VSEC/K9
Cisco 2951 Voice Sec. Bundle, PVDM3-32, UC and SEC License PAK
CON-SNT-2951VSEC or CON-SU1-2951VSEC
C2921-VSEC/K9
Cisco 2921 Voice Sec. Bundle, PVDM3-32, UC and SEC License PAK
CON-SNT-2921VSEC or CON-SU1-2921VSEC
C2911-VSEC/K9
Cisco 2911 Voice Sec. Bundle, PVDM3-16, UC and SEC License PAK
CON-SNT-2911VSEC or CON-SU1-2911VSEC
C2901-VSEC/K9
Cisco 2901 Voice Sec. Bundle, PVDM3-16, UC and SEC License PAK
CON-SNT-2901VSEC or CON-SU1-2901VSEC

The Table we list below is the ISR G2 CUBE Bundles for the Cisco 3900 and 2900 Series routers that come with the entry-level PVDM3, Unified Communications and Security technology license activated and also right to use licenses for 25 sessions of CUBE. By default, these bundles will ship with the universal IOS image that supports payload cryptography.

CUBE Bundles for Cisco 3900, 2900 Series routers-include universalk9 image, UC & SEC license and PVDM3
Ordering SKU
Description
Technical Service SKU (SMARTnet 8x5xNBD)
C3945E-VSEC-CUBEK9
Cisco 3945E VSEC CUBE Bundle, PVDM3-64, FL-CUBEE-25, UC and SEC License PAK
CON-OS-C3945EVE
C3925E-VSEC-CUBE/K9
Cisco 3925E VSEC CUBE Bundle, PVDM3-64, FL-CUBEE-25, UC and SEC Lic PAK
CON-OS-C3925EVSE
C3945-VSEC-CUBE/K9
Cisco 3945 VSEC CUBE Bundle, PVDM3-64, FL-CUBEE-25, UC and SEC License PAK
CON-OS-C3945VS
C3925-VSEC-CUBE/K9
Cisco 3925 VSEC CUBE Bundle, PVDM3-64, FL-CUBEE-25, UC and SEC Lic PAK
CON-OS-C3925VS
C2951-VSEC-CUBE/K9
Cisco 2951 VSEC CUBE Bundle, PVDM3-32, FL-CUBEE-25, UC and SEC License PAK
CON-OS-2951VSCC
C2921-VSEC-CUBE/K9
Cisco 2921 VSEC CUBE Bundle, PVDM3-32, FL-CUBEE-25, UC and SEC Lic PAK
CON-OS-2921VSCC
C2911-VSEC-CUBE/K9
Cisco 2911 VSEC CUBE Bundle, PVDM3-16, FL-CUBEE-25, UC and SEC License PAK
CON-OS-2911VSCC
C2901-VSEC-CUBE/K9
Cisco 2901 VSEC CUBE Bundle, PVDM3-16, FL-CUBEE-25, UC and SEC License PAK
CON-OS-2901VSCC

Application Services (SRE) Bundles
The Cisco Services-Ready Engine modules are high-performance router blades for Cisco ISR G2 routers; they provide the capability to host Cisco, third-party, and custom applications. The modules have their own processors, storage, network interfaces, and memory that operate independently of the host router resources, helping ensure maximum concurrent routing and application performance.
The Cisco Services-Ready Engine modules support an on-demand deployment model that enables you to provision integrated services and branch-office applications on the modules at any time. This solution can help your organization reduce the cost of integrated services deployment, help ensure your network will be prepared for new services and versions, and help your organization quickly deploy new branch-office applications when and where they are needed.

The following Table lists the Cisco ISR G2 SRE bundles for the Cisco 3900, 2900, and 1900 Series routers. The Cisco 1941 SRE bundle includes the ISM-SRE-300-K9 module along with the Security technology license. The Cisco 2900 and 3900 SRE bundles are based on VSEC configurations and hence include the UC and Security technology license and the entry-level PVDM3 in each router. The Cisco 2901 and 2911 VSEC-SRE bundles include the ISM-SRE-300-K9 module, whereas the Cisco 2921, 2951, 3925, and 3945 SRE bundles include the SM-SRE-700-K9 module for deployment of application services in the branch office. The Cisco 3945E and 3925E SRE bundles include by default the SM-SRE-900-K9. The ISR G2 PSRE bundles for the Cisco 3900 Series routers include by default the SM-SRE-900-K9. By default, all SRE and PSRE bundles ship with the universal Cisco IOS Software image that supports payload cryptography.

SRE Bundles for Cisco 3900, 2900, and 1900 Series Routers-Include SRE Module
Ordering SKU
Description
Technical Service SKUs* (SMARTnet 8x5xNBD, Software Application Support with Upgrades (SASU))
C3945E-VSEC-SRE/K9
Cisco 3945E SRE Bundle, SRE 900, PVDM3-64, UC and SEC License PAK
CON-SNT-3945EVSEC, CON-SAU-SMSRE900
C3925E-VSEC-SRE/K9
Cisco 3925E SRE Bundle, SRE 900, PVDM3-64, UC and SEC License PAK
CON-SNT-3925EVSEC, CON-SAU-SMSRE900
C3945-VSEC-PSRE/K9
Cisco 3945 PSRE Bundle, SRE 900, PVDM3-64, UC and SEC License PAK
CON-SNT-3945VSEC, CON-SAU-SMSRE900
C3925-VSEC-PSRE/K9
Cisco 3925 PSRE Bundle, SRE 900, PVDM3-64, UC and SEC License PAK
CON-SNT-3925VSEC, CON-SAU-SMSRE900
C3945-VSEC-SRE/K9
Cisco 3945 SRE Bundle, SRE 700, PVDM3-64, UC and SEC License PAK
CON-SNT-3945VSEC, CON-SAU-SMSRE700
C3945-VSEC-PSRE/K9
Cisco 3945 SRE Bundle, SRE 900, PVDM3-64, UC and SEC License PAK
CON-SNT-3945VSEC, CON-SAU-SMSRE900
C3925-VSEC-SRE/K9
Cisco 3925 SRE Bundle, SRE 700, PVDM3-64, UC and SEC License PAK
CON-SNT-3925VSEC, CON-SAU-SMSRE700
C3925-VSEC-PSRE/K9
Cisco 3925 SRE Bundle, SRE 900, PVDM3-64, UC and SEC License PAK
CON-SNT-3925VSEC, CON-SAU-SMSRE900
C2951-VSEC-SRE/K9
Cisco 2951 SRE Bundle, SRE 700, PVDM3-32, UC and SEC License PAK
CON-SNT-2951VSEC, CON-SAU-SMSRE700
C2921-VSEC-SRE/K9
Cisco 2921 SRE Bundle, SRE 700, PVDM3-32, UC and SEC License PAK
CON-SNT-2921VSEC, CON-SAU-SMSRE700
C2911-VSEC-SRE/K9
Cisco 2911 SRE Bundle, SRE 300, PVDM3-16, UC and SEC License PAK
CON-SNT-2911VSEC, CON-SAU-SRE300
C2901-VSEC-SRE/K9
Cisco 2901 SRE Bundle, SRE 300, PVDM3-16, UC and SEC License PAK
CON-SNT-2901VSEC, CON-SAU-ISRE300
C1941-SEC-SRE/K9
Cisco 1941 SRE Bundle, SRE 300, SEC license PAK
CON-SNT-1941SEC, CON-SAU-ISRE300
* Customers can purchase Cisco SMARTnet Service (CON-SNT-XXX) for technical support on SRE Bundles which covers the router and the modules including the `blank' SRE module. SASU Service is necessary for the application running on the SRE module if one is being purchased along with the bundle.

Cisco Unified Computing System Express Bundles
The Cisco Unified Computing System Express (Cisco UCS Express) is a converged computing, virtualization, and networking platform for hosting essential infrastructure services and mission-critical business applications in the lean branch office.
It comprises the following:
• Cisco SRE x86 Blade Server computing platform
• Cisco SRE Virtualization (SRE-V) server virtualization platform powered by VMware vSphere Hypervisor (ESXi)
• Cisco ISR G2 networking platform with Multigigabit Fabric (MGF) backplane switch
• Cisco Integrated Management Controller Express (IMC Express) blade-management system

Cisco UCS Express is best suited for multisite organizations with centralized IT infrastructure that need to host applications locally in the branch office because of performance, survivability, or compliance reasons. It enables multiple virtual instances of Microsoft Windows Server to run on dedicated general-purpose x86 blades directly in the Cisco ISR G2 chassis. With Cisco UCS Express, multisite organizations can increase business agility, lower total cost of ownership (TCO), and get more value out of their branch-office infrastructure.

The Cisco 2900 and 3900 UCSE bundles include SM-SRE-900-K9, SRE-V license (VMware vSphere Hypervisor), maximum DRAM for the router, and an additional 256 MB of Compact Flash (768 MB total) required to run Cisco IMC Express on the router. The ISR G2 ES24 UCSE bundles include the Cisco EtherSwitch Service Module in addition to SM-SRE-900-K9, SRE-V license (VMware vSphere Hypervisor), maximum DRAM for the router, and an additional 256 MB of Compact Flash (768 MB total). The specific capabilities of the Cisco EtherSwitch module vary depending on the router selected. The intent of the ES24 UCSE bundles is to provide a basic "branch-office-in-a-box" function featuring router, switch, and server consolidated into a single device. By default, all UCSE and ES24 UCSE bundles ship with the universal Cisco IOS Software image that supports IP services.

UCSE Bundles for Cisco 3900 and 2900 Series Routers
Ordering SKU
Description
Technical Service SKUs* (SMARTnet 8x5xNBD)
C3945-UCSE/K9
Cisco 3945 UCSE Bundle, SRE 900,SRE-V License, 4 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-3945UCSE
C3925-UCSE/K9
Cisco 3925 UCSE Bundle, SRE 900,SRE-V License, 4 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-3925UCSE
C2951-UCSE/K9
Cisco 2951 UCSE Bundle, SRE 900,SRE-V License, 4 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-2951UCSE
C2921-UCSE/K9
Cisco 2921 UCSE Bundle, SRE 900,SRE-V License, 2.5 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-2921UCSE
C2911-UCSE/K9
Cisco 2911 UCSE Bundle, SRE 900,SRE-V License, 2.5 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-2911UCSE
C3945-ES24-UCSE/K9
Cisco 3945 ES24 UCSE Bundle, SRE 900,SRE-V License, 24 port Layer 2 EtherSwitch SM, 4 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-3945UCSE
C3925-ES24-UCSE/K9
Cisco 3925 ES24 UCSE Bundle, SRE 900,SRE-V License, 24 port Layer 2 PoE EtherSwitch SM, PoE Power Supply, 4 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-3925UCSE
C2951-ES24-UCSE/K9
Cisco 2951 ES24 UCSE Bundle, SRE 900,SRE-V License, 24 port Layer 3 PoE EtherSwitch SM, PoE Power Supply, 4 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-2951UCSE
* Customers can purchase Cisco SMARTnet Service (CON-SNT-XXX) for technical support on UCSE Bundles which covers the router and the modules including the SRE module, and the SRE-V software.

Cisco Wide Area Application Services Bundles
Cisco Wide Area Application Services(WAAS)solutions for Cisco ISR platforms enable the distributed organization to implement application acceleration and WAN optimization with fast return on investment. There are two Cisco WAAS solutions for the Cisco 3900, 2900, and 1900 Series routers. One solution is hosted on the SRE modules (WAAS on SRE) and the other is integrated directly into Cisco IOS Software (WAAS Express).
Cisco WAAS on SRE provides full-feature WAN optimization and on-demand provisioning without a physical visit to the branch office, and it is hosted on a compact, energy-efficient module. Cisco WAAS Express is a cost-effective Cisco IOS Software-based WAN optimization solution that increases the amount of available bandwidth for small to midsize branch offices and remote locations, while accelerating TCP-based applications operating in a WAN environment.

The Cisco 2900 and 3900 WAAS UCSE bundles include two SM-SRE-900-K9 modules, SRE-V license (VMware vSphere Hypervisor), WAAS Enterprise Medium license, maximum DRAM for the router, and an additional 256 MB of Compact Flash (768 MB total). By default, all WAAS UCSE bundles ship with the universal Cisco IOS Software image that supports IP services. The Cisco 2900 and 3900 WAAS SEC bundles include either SM-SRE-700-K9 or SM-SRE-900-K9, depending on the router selected; WAAS Enterprise Small, Medium, or Large software license, depending on the router selected; and the Cisco IOS Security software license. By default, all WAAS SEC bundles ship with the universal Cisco IOS Software image that supports payload cryptography. The WAAS Express SEC bundles include the maximum amount of router DRAM, WAAS Express software license, and a Cisco IOS Security software license. By default, all WAAS Express SEC bundles ship with the universal Cisco IOS Software image that supports payload cryptography. The WAAS Express bundles include the maximum amount of router DRAM and the WAAS Express software license. By default, all WAAS Express bundles ship with the universal Cisco IOS Software image that supports IP services.

WAAS Bundles for Cisco 3900 and 2900 Series Routers
Ordering SKU
Description
Technical Service SKUs* (SMARTnet 8x5xNBD, Software Application Support with Upgrades (SASU))
C3945-WAAS-UCSE/K9
Cisco 3945 UCSE Bundle, two SRE 900,SRE-V License, WAAS Enterprise Medium License, 4 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-3945WAAS, CON-SAU-SMSRE900
C3925-WAAS-UCSE/K9
Cisco 3925 UCSE Bundle, two SRE 900,SRE-V License, WAAS Enterprise Medium License, 4 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-3925WAAS, CON-SAU-SMSRE900
C2951-WAAS-UCSE/K9
Cisco 2951 UCSE Bundle, two SRE 900,SRE-V License, WAAS Enterprise Medium License, 4 GB ISR DRAM, 768 MB Compact Flash
CON-SNT-2951WAAS, CON-SAU-SMSRE900
C3945-WAAS-SEC/K9
Cisco 3945 WAAS SEC Bundle, SRE 900, WAAS Enterprise Large License, SEC License PAK
CON-SNT-3945WAAS, CON-SAU-SMSRE900
C3925-WAAS-SEC/K9
Cisco 3925 WAAS SEC Bundle, SRE 900, WAAS Enterprise Large License, SEC License PAK
CON-SNT-3925WAAS, CON-SAU-SMSRE900
C2951- WAAS-SEC//K9
Cisco 2951 WAAS SEC Bundle, SRE 900, WAAS Enterprise Large License, SEC License PAK
CON-SNT-2951WAAS, CON-SAU-SMSRE900
C2921- WAAS-SEC//K9
Cisco 2921 WAAS SEC Bundle, SRE 700, WAAS Enterprise Medium License, SEC License PAK
CON-SNT-2921WAAS, CON-SAU-SMSRE700
C2911- WAAS-SEC//K9
Cisco 3945 WAAS SEC Bundle, SRE 700, WAAS Enterprise Small License, SEC License PAK
CON-SNT-2911WAAS, CON-SAU-SMSRE700
C3945-WAASX-SEC/K9
Cisco 3945, WAAS Express Feature License, IOS Security PAK, 4GB DRAM
CON-SNT-3945WSXS
C3925-WAASX-SEC/K9
Cisco 3925, WAAS Express Feature License, IOS Security PAK, 4GB DRAM
CON-SNT-3925WSXS
C2951-WAASX-SEC/K9
Cisco 2951, WAAS Express Feature License, IOS Security PAK, 4GB DRAM
CON-SNT-2951WSXS
C2921-WAASX-SEC/K9
Cisco 2921, WAAS Express Feature License, IOS Security PAK, 2.5GB DRAM
CON-SNT-2921WXSC
C2911-WAASX-SEC/K9
Cisco 2911, WAAS Express Feature License, IOS Security PAK, 2.5GB DRAM
CON-SNT-2911WXSC
C2901-WAASX-SEC/K9
Cisco 2901, WAAS Express Feature License, IOS Security PAK, 2.5GB DRAM
CON-SNT-2901WXSC
C1941-WAASX-SEC/K9
Cisco 1941, WAAS Express Feature License, IOS Security PAK, 2.5GB DRAM
CON-SNT-1941WXSC
C3945-WAASX/K9
Cisco 3945, WAAS Express Feature License, 4GB DRAM
CON-SNT-3945WASX
C3925-WAASX/K9
Cisco 3925, WAAS Express Feature License, 4GB DRAM
CON-SNT-3925WASX
C2951-WAASX/K9
Cisco 2951, WAAS Express Feature License, 4GB DRAM
CON-SNT-2951WASX
C2921-WAASX/K9
Cisco 2921, WAAS Express Feature License, 2.5GB DRAM
CON-SNT-2921WXK9
C2911-WAASX/K9
Cisco 2911, WAAS Express Feature License, 2.5GB DRAM
CON-SNT-2911WXK9
C2901-WAASX/K9
Cisco 2901, WAAS Express Feature License, 2.5GB DRAM
CON-SNT-2901WXK9
C1941-WAASX/K9
Cisco 1941, WAAS Express Feature License, 2.5GB DRAM
CON-SNT-1941WXK9
* Customers can purchase Cisco SMARTnet Service (CON-SNT-XXX) for technical support on SRE Bundles which covers the router and the modules including the SRE module, and SRE-V software. SASU Service is necessary for WAAS running on the SRE.
For more information about how to order the Cisco 4451-X and its associated accessories and bundle offerings, please visit the ISR 4451-X Ordering Guide.

More info from http://www.cisco.com/c/en/us/products/collateral/routers/1900-series-integrated-services-routers-isr/ordering_guide_c07_557736.html

More Related Cisco ISR G2 Ordering Guide
Cisco 1900Series Router Ordering Guide

Ordering Cisco2900 Series Routers You Should Know

Ordering Guidefor Cisco 3900 ISR G2

Ordering Guide:Cisco IOS Software Images & Licenses for Cisco ISR G2 Routers

What are the Technical and Physical Differences between Ethernet Cables?

December 30, 2014, 11:19 pm
$
0
0
Which Ethernet cable do you should use? How do you know? In fact, Ethernet cables look the same, but they are different. So in the following short guide we take a look at the technical and physical differences between the Ethernet cables.

Image may be NSFW.
Clik here to view.






















Ethernet cables are grouped into sequentially numbered categories (e.g. CAT5) based on different specifications; sometimes the category is updated with further clarification or testing standards (e.g. CAT5e, CAT6a). These categories are how we can easily know what type of cable we need for a specific application.


CAT Technical Differences
The difference in Ethernet cable specification is not as easy to see as physical changes; so let’s look at what each category does and does not support. Below is a chart for reference when picking cable for your application based on the standards for that category.

When you pick Ethernet cable, you can refer to the following table to check the standard of each category.

Length
10Mb/s
100Mb/s
1GbE
10GbE
PoE
Mhz
CAT5
100


100
CAT5e
100

100
CAT6
100 (55 for 10GbE)
250
CAT6a
100
500

You may notice that as the category number gets higher, so does the speed and Mhz of the wire. This is not a coincidence, because each category brings more stringent testing for eliminating crosstalk (XT) and adding isolation between the wires.

Category 5 cablewas revised in 2001, and mostly replaced with Category 5 Enhanced (CAT5e) cable which did not change anything physically in the cable, but instead applied more stringent testing standards for crosstalk. Category 6 was revised between 2002 with Category 6 Augmented (CAT6a) in 2008 that provided testing for 500 Mhz communication (compared to CAT6 250 Mhz). The higher communication frequency eliminated alien crosstalk (AXT) which allows for longer range at 10 Gb/s.


Physical Differences Between These Ethernet Cables
How does a physical cable eliminate interference and allow for faster speeds? It does it through wire twisting and isolation. 

Cable twisting reduced the interference and increased the range. Twisted pair became the basis for all Ethernet cables to eliminate interference between internal wires (XT), and external wires (AXT).Image may be NSFW.
Clik here to view.

There are two main physical differences between CAT5 and CAT6 cables, the number of twists per cm in the wire, and sheath thickness.

Cable twisting length is not standardized but typically there are 1.5-2 twists per cm in CAT5 (e) and 2+ twists per cm in CAT6. Within a single cable, each colored pair will also have different twist lengths based on prime numbers so that no two twists ever align. The amount of twists per pair is usually unique for each cable manufacturer.

Many CAT6 cables also include a nylon spline which helps eliminate crosstalk. Although the spline is not required in CAT5 cable, some manufacturers include it anyway. In CAT6 cable, the spline is not required either as long as the cable tests according to the standard.

The nylon spline helps reduce crosstalk in the wire, with the thicker sheath protecting against Near End Crosstalk (NEXT) and Alien Crosstalk (AXT), which both occur more often as the frequency (Mhz) increases. In this picture below, the CAT5e sheath has the thinnest sheath versus CAT6 but it also was the only one with the nylon spline.Image may be NSFW.
Clik here to view.


Shielded (FTP) vs. Unshielded (UTP)
Because all Ethernet cables are twisted, manufacturers use shielding to further protect the cable from interference. For example, Unshielded Twisted Pair (UTP) can easily be used for cables between your computer and the wall but you will want to use Foil Shielded Cable (FTP) for areas with high interference and running cables outdoors or inside walls.Image may be NSFW.
Clik here to view.

There are different ways to shield an Ethernet cable, but typically it involves putting a shield around each pair of wire in the cable. This protects the pairs from crosstalk internally. Manufacturers can further protect cables from alien crosstalk with additional cable shielding beneath the sheath. The diagram below shows the different types of Ethernet shielding and the codes used to differentiate them.

Image may be NSFW.
Clik here to view.























The code before the slash designates the shielding for the cable itself, while the code after the slash determines the shielding for the individual pairs: TP = twisted pair, U = unshielded,F = foil shielding, S = braided shielding

Solid vs. Stranded
Solid and stranded Ethernet cables refer to the actual copper conductor in the pairs. Solid cable uses a single piece of copper for the electrical conductor while stranded uses a series of copper cables twisted together. There are many different applications for each type of conductor, but there are two main applications for each type you should know about.

Image may be NSFW.
Clik here to view.


















Key Differences: Stranded cable vs. Solid cable
  • Stranded cable is more flexible and should be used at your desk or anywhere you may be moving the cable around often.
  • Solid cable is not as flexible but it is also more durable which makes it ideal for permanent installations as well as outdoor and in walls.
Now you may be clear that which type of cable you should use. If you want to order Ethernet cables for connecting your routers, you can visit the leading Cisco supplier-router-switch.com for more details, or email their sales representatives.
http://www.router-switch.com/


More Related Network Cable Tips
The Different Types of Ethernet Cables
 Ethernet Crossover Cable vs. Ethernet LANCable

Cisco Console Cables, Popular Types You Used
How to Create a Console Cable & Make aConsole Connection?

Cat5e and Cat6 Cabling for More Bandwidth?CAT5 vs. CAT5e vs. CAT6
Cat5e vs. Cat6 Cables

How to Make Your Ethernet Crossover Cable?
CAT-5, CAT-5e,CAT-6, and CAT-7-General Questions

802.11ac Wave 2, Ready for It?

April 1, 2015, 1:58 am
$
0
0


802.11AC Wave 2, the next phase of Wi-Fi, brings wireless speeds of up to almost 7 Gigs. Wave 2 also brings multi-user MIMO to Wi-Fi, enabling dedicated bandwidth to be allocated to users. 802.11AC Wave 2 will allow businesses to create new ways of working, such as being able to do medical imaging over tablets or streaming videos to mobile devices in school systems.
Image may be NSFW.
Clik here to view.








802.11ac Wave 1 vs. 802.11ac Wave 2
Image may be NSFW.
Clik here to view.

Having wireless speeds that are that fast, though, does have some big implications on the wired network. If the air speed is anything greater than a Gig and the backhaul connection from the AP to the access switch is a Gig, then there’s an obvious problem, as the wired network becomes a choke point. Also, the Wave 2 solutions will require PoE+ (30W), and many businesses only have PoE (15W) in the access edge now. Also, with today’s switches, Cat5E has a limit of 1 Gig for speed.

Cisco founded the NBASE-T Alliance in October 2014 to promote solutions for more speed over installed Category 5e and 6 cables. Now we are introducing innovations that include NBASE-T technology and more across the entire breadth of our Cisco Catalyst portfolio–from compact switches to the backbone. These new innovations directly address the challenges we learned from customers.

Cisco Catalyst Multigigabit Technology can prepare your access switches for future innovations by delivering speeds beyond 1 Gigabit on existing Category 5e cables. This technology also supports Power over Ethernet (PoE), PoE+, and Cisco Universal PoE (UPOE) so you don’t need to install new electrical circuits to power your access points.
And, Cisco Catalyst Multigigabit Technology can protect your investments in existing Cisco Catalyst switches. For example, new Cisco Catalyst 3850 Mutigigabit models can be stacked with existing 1-Gb copper and fiber models. Cisco Catalyst Mutigigabit Technology is available on Cisco Catalyst 4500E, 3850, and 3560-CX switches. Use our new innovations to take advantage of 802.11ac Wave 2 capacity increases and start delivering even better user experiences.

New Cisco Catalyst 3560-CX and 2960-CX Compact Switches can help you increase speeds and agility, and lower costs. These switches offer Catalyst Instant Access mode, which means no more individual switch configuration. And they are flexible to support numerous networking environments and industries, including hospitality, transportation, retail, and others.

Two Times More 10-Gb Density for a Faster Backbone
Extend your existing backbone investments into the future. New, 32-port 10-Gb line cards on Cisco Catalyst 6800 and 6500-E Series Switches help you make the transition from 1 Gigabit to 10 Gigabits, and allow for twice the 10-Gb density. They also provide rich network services that you have come to expect from these platforms. And flexibility is built in so you can convert to 40-Gigabit speeds in future.


More Related Cisco Wireless Topics

Why You ShouldUpgrade with Cisco 802.11ac Solution?

Cisco 802.11acModule for the Cisco 3600 Access Point

Cisco Aironet 1700 Series-Entry-Level 802.11ac Access Points

How to Start a Cisco ASA 5500-X Series?

October 22, 2015, 9:19 pm
$
0
0
If you are new users of Cisco ASA 5500-X Series Next-Generation Firewalls, are you familiar with the ASA 5500-X Series configuration? There are different Cisco ASA CX models available in a wide range of sizes, for small offices, branch locations, and Internet-edge deployments. 

In this article, we will share the simple start guide of Cisco ASA 5500-X Series, including the model ASA 5512-X, ASA 5515-X, ASA 5525-X, ASA 5545-X, and ASA 5555-X.

First of all, let’s check the main package contents of ASA 5512-X, ASA 5515-X, or ASA 5525-X, ASA 5545-X and ASA 5555-X.

ASA 5512-X, ASA 5515-X, or ASA 5525-X
Image may be NSFW.
Clik here to view.



ASA 5545-X and ASA 5555-X
Image may be NSFW.
Clik here to view.

Note: The contents are subject to change, and your exact contents might contain additional or fewer items.


Power on the ASA
1. Attach the power cable to the ASA and connect it to an electrical outlet.

The power turns on automatically when you plug in the power cable; do not press the power button on the front panel. (For older models, the power does not turn on automatically; check the hardware installation guide for more information).

2. Check the Power LED on the front of the ASA; if it is solid green, the device is powered on.

3. Check the Status LED on the front of the ASA; after it is solid green, the system has passed power-on diagnostics.

Modify the Initial Configuration for the Software Module (Optional)
The ASA ships with a default configuration that enables Adaptive Security Device Manager (ASDM) connectivity to the Management 0/0 interface. When you use a software module such as the ASA FirePOWER module, we recommend that you do not use the default configuration, which can preclude the module from reaching the Internet for updates. This section describes how to apply a new configuration so the module can access the Internet. This configuration also enables a basic usable configuration for an inside and outside network.

The following figure shows the suggested network deployment for the ASA 5500-X with a software module:

Note: If you have an inside router instead of a switch, you can skip this section and instead configure the ASA to route between management and an inside network. In this case, configure the ASA and the module Management 0/0 IP addresses to be on the same network. Be sure to configure appropriate routes on the ASA and on the module so the management network can reach the inside network, and vice versa.

This procedure lets you connect to the ASA console port and paste in a new configuration that configures the following behavior:
  • inside --> outside traffic flow
  • outside IP address from DHCP
  • DHCP for clients on inside
  • Management 0/0 interface is Up, but otherwise unconfigured. The software module can then use this interface to access the ASA inside network and use the inside interface as the gateway to the Internet.
  • ASDM access on the inside interface

To achieve the above configuration, perform the following steps.
1. Connect your computer to the ASA console port with the supplied console cable. You might need to use a third party serial-to-USB cable to make the connection.

2. Launch a terminal emulator and connect to the ASA.

3. Press the Enter key to see the following prompt:
ciscoasa>

4. Access privileged EXEC mode:
enable
The following prompt appears:
Password:

5. Press Enter. By default, the password is blank.

6. Access global configuration mode:
configure terminal

7. Clear the configuration:
clear configure all

8. Copy and paste the following configuration at the prompt:
interface gigabitethernet0/0
nameif outside
ip address dhcp setroute
no shutdown
interface gigabitethernet0/1
nameif inside
ip address 192.168.1.1 255.255.255.0
security-level 100
no shutdown
interface management0/0
no shutdown
object network obj_any
subnet 0 0
nat (any,outside) dynamic interface
http server enable
http 192.168.1.0 255.255.255.0 inside
dhcpd address 192.168.1.5-192.168.1.254 inside
dhcpd auto_config outside
dhcpd enable inside
logging asdm informational

9. Save the new configuration:
write memory

10. Cable the inside GigabitEthernet 0/1 interface, Management 0/0 interface, and your computer to a Layer 2 Ethernet switch.

11. Connect the outside GigabitEthernet 0/0 interface to your upstream router or WAN device.

12. For software module configuration, see the ASA FirePOWER quick start guideASA CX quick start guide, or IPS quick start guide. Use the following network settings for the module:
–Management interface: 192.168.1.2
–Management subnet mask: 255.255.255.0
–Gateway IP: 192.168.1.1

4. Launch ASDM
Using ASDM, you can use wizards to configure basic and advanced features. ASDM is a graphical user interface that allows you to manage the ASA using a web browser. See the ASDM release notes on Cisco.com for the requirements to run ASDM.

How to…

1. On the computer connected to the ASA, launch a web browser. If you are using the default configuration and did not use 3. Modify the Initial Configuration for the Software Module (Optional), you need to connect the computer to the Management 0/0 interface.

2. In the Address field, enter the following URL: https://192.168.1.1/admin. The Cisco ASDM web page appears.

3. Click one of the available options: Install ASDM LauncherRun ASDM, or Run Startup Wizard.

4. Follow the onscreen instructions to launch ASDM according to the option you chose. The Cisco 
ASDM-IDM Launcher appears.

5. Leave the username and password fields empty, and click OK. The main ASDM window appears.
The Full Cisco ASA 5500-X Series Start Guide you can read the http://www.cisco.com/c/en/us/td/docs/security/asa/quick_start/5500X/5500x_quick_start.html


More Related
How to Deploy the ASA 5508-X or ASA 5516-X in Your Network?
What are the Considerations While Buying a Cisco Next-Generation Firewall?
How to Start a Cisco ASA 5506-X?
NGFW-Cisco ASA with FirePOWER Services

How to Start a Cisco ASA 5585-X Series

What You Should Know about the Cisco Mobility Express Solution

November 11, 2015, 10:20 pm
$
0
0
Briefly, the Cisco Mobility Express wireless network solution provides a virtual wireless LAN controller functionality bundled into, currently, the Cisco Aironet 1850 and 1830 series access points. This functionality provides a simplified WiFi architecture with enterprise-level WLAN capability to small and medium deployments.

In the Cisco Mobility Express wireless network solution, one access point (AP), running the Cisco Mobility Express wireless controller, is designated as the master AP. Other access points, referred to as subordinate APs, associate to this master AP.

The master AP operates as a wireless LAN controller, to manage and control the subordinate APs, and also operates as an access point to serve clients. The subordinate APs behave as normal lightweight access points to serve clients.

For the list of supported access points, see Supported Cisco Aironet Access Points.
The Mobility Express solution provides most features of a wireless LAN controller and has the capability to interface with the following:
Cisco Prime Infrastructure—for simplified network management and managing the AP group.
Cisco Identity Services Engine—for advanced policy enforcement.
Cisco Mobility Services Engine—for providing presence level data as well as advanced spectrum solution.

Supported Cisco Aironet Access Points
In this release of Mobility Express, the following APs are supported.
APs supported as masters (support integrated wireless controller capability)
APs supported as subordinates
Cisco Aironet 1850 Series
Cisco Aironet 1830 Series
In addition to the following, all APs that are supported as master APs are also supported as subordinate APs.
Cisco Aironet 700i Series
Cisco Aironet 700w Series
Cisco Aironet 1600 Series
Cisco Aironet 1700 Series
Cisco Aironet 2600 Series
Cisco Aironet 2700 Series
Cisco Aironet 3500 Series
Cisco Aironet 3600 Series
Cisco Aironet 3700 Series

Supported Software Images
AP models supported as masters can be ordered with either of the following as the default factory-shipped software:
A Mobility Express software image. These models have model numbers (or Product IDs) ending in C.
A lightweight AP software image, based on the CAPWAP (Control and Provisioning of Wireless Access Points) protocol, for joining a wireless controller. You can manually convert these models to have a Mobility Express software image, on site.
For information on this conversion, see Converting from CAPWAP Lightweight AP 15.3.3-JBB5 Software to Mobility Express Software.

AP models which are supported only as subordinates will need to have CAPWAP-based lightweight AP software image.

The Mobility Express software for your AP model can be downloaded from the AP's Download Software page on Cisco.com. The common URL to the Download Software page is https:/​/​software.cisco.com/​download/​navigator.html.

On the Download Software page, browse to your AP model and then select 'Mobility Express Software' to view a list of currently available software, with the latest the top. The software releases are labeled as follows to help you determine which release to download:
Early Deployment (ED)—These software releases provide new features, new hardware platform support, and bug fixes.
Maintenance Deployment (MD)—These software releases provide bug fixes and ongoing software maintenance.
Deferred (DF)—These software releases have been deferred. We recommend that you migrate to an upgraded release.

Cisco Mobility Express software for Cisco Wireless Release 8.1.122.1, is as follows:
Software Type and Purpose
For AP 1850
For AP 1830
Mobility Express Network Software Bundle (for Mobility Express controller and network software update)
AIR-AP1850-K9-ME-8-1-122-0.zip
AIR-AP1830-K9-ME-8-1-122-0.zip
Mobility Express Controller-capable AP Software (for conversion from CAPWAP Lightweight AP type to Mobility Express)
AIR-AP1850-K9-8.1.122.0.tar
AIR-AP1830-K9-8.1.122.0.tar

From http://www.cisco.com/c/en/us/td/docs/wireless/access_point/mob_exp/1/user_guide/b_ME_User_Guide/about_mob_exp.html

More Related…
Cisco Mobility Express Solution Release Notes
What’s the Cisco Mobility Express Solution and Can DO
Qs & Tips Help You Know Cisco Mobility Express Solution
NEW Cisco Aironet 1850 Series Access Points Focus on Wave 2 Wifi
New Cisco Aironet 1830 Series APs-Gigabit Wi-Fi Has Fully Arrived
Key Questions to Help you Know Cisco 802.11ac Wave 2
Migrating to Wave 2? …Definitely

Cisco 800M Series ISR, New 2015

December 6, 2015, 8:28 pm
$
0
0
The Cisco800M Series Integrated Services Router, of course, is the member of the Cisco 800Series ISR product family. The Cisco800M Series ISR is a modular platform that was intended for small to medium sites. It provides a flexible array of WAN connectivity options with easy migration among WAN interface types. It runs Cisco IOS Software and delivers built-in security in a single software image with no additional software licenses required. It also integrates application hosting capabilities right in the router.

The Cisco 800M ISR is best suited for the following uses:
● Secure WAN connectivity for branches
● Transmitting transactional data from ATM machines, point-of-sale terminals, and kiosks
● Cellular backup to primary wired links
● Quick, easy connectivity in countries where most WAN infrastructure is cellular: 3G connectivity can be used for primary connections, backup connections, or both
● Locations with WAN services requiring serial connectivity
● Deployments requiring real-time, local data collection and analysis from vending machines, Internet of Things (IoT) devices, and M2M sensors in other applications

There are two Cisco 800M Series ISR models: the part numbers are C841M-4X and C841M-8X.Both integrate a Gigabit Ethernet switch and redundant Gigabit Ethernet WAN uplinks.


The ISR 800M router with part number C841M-8X.
Image may be NSFW.
Clik here to view.









The Cisco 800M Series platform supports pluggable Cisco WAN Interface Modules (WIMs) for flexible connectivity.

The following Figure shows the rear of the ISR 800M (C841M-8X) with WIM-3G and WIM-1T modules inserted. Figure 3 shows the rear of the ISR 800M (C841M-4X), also with both modules inserted.

Cisco 800M ISR (C841M-8X) with WIM-3G and WIM-1TImage may be NSFW.
Clik here to view.



Cisco 800M ISR (C841M-4X) with WIM-3G and WIM-1TImage may be NSFW.
Clik here to view.

Features and Benefits
The Cisco 800M Series ISR integrates enterprise-class security and application services while delivering the best price/performance ratio in its class. The router supports highly available and redundant WAN connection options and lets you easily migrate to different WAN connections for investment protection.
The Cisco 800M ISR is the first in the industry to support multiple 3G technologies on the same pluggable WAN interface (the Cisco WIM-3G), providing you with the ability to choose the service provider. The platform is future-enabled, and it provides an open, extensible environment for developing and hosting applications at the network edge for local processing right in the router. The routers support single-pane-of-glass management and the 3G cellular Simple Network Management Protocol (SNMP) MIB.

Features and Benefits of Cisco 800M Routers
Requirement
Cisco 800M Supporting Feature(s)
Secure connectivity
●  VPNs: Integrated IPsec, Group Encrypted Transport, Cisco Dynamic Multipoint VPN (DMVPN), Cisco FlexVPN, Cisco EasyVPN
●  Integrated Cisco IOS Zone-Based Firewall with Next-Generation Network-Based Application Recognition (NBAR2)
●  Integrated domain/URL filtering
●  Cisco Cloud Web Security Connector for cloud-based web security
Ability to easily migrate to other WAN interfaces
●  Modular architecture that supports pluggable Cisco WAN Interface Modules (WIMs)
Flexible choices of wireless WAN services and providers
●  Supports HSPA+/HSPA and EV-DO on a single multimode 3G WIM with fallback to 2G cellular technologies
●  Dual Subscriber Identity Module (SIM) and Removable User Identity Module (R-UIM) support for easy swap-out as you change networks and providers
High network availability for business continuity
●  Supports two slots on a single 3G module that can hold a mix of SIM and/or R-UIM cards for cellular multihoming across HSPA+/HSPA and EV-DO WWANs
●  Dual Gigabit Ethernet WAN ports and support for two serial modules for primary/backup wired connections or a mix of wired and cellular links for redundancy
Convergence of required capabilities into a single box for lower CapEx and OpEx
●  Integrates Gigabit Ethernet switch, routing, multilayer security, full Cisco IOS Software suite, multiple WAN interface choices
Comprehensive and centralized network management
●  Integrated device management using Cisco Configuration Professional Express. Includes comprehensive Security Policy Management (covering identity, user, and user group domain filtering, VPNs, and cloud-based Cisco Web Security) with monitoring and reporting
●  Enterprise-class centralized provisioning and management using Cisco Prime Infrastructure
●  Remote management and network monitoring using SNMP (including 3G SNMP MIBs), Telnet, and HTTP, and locally through a console port

Licensing
The Cisco 800M Series ISR default license supports the Cisco IOS Software Advanced IP Services feature set with no additional technology package license requirement.
License for Cisco 800M Series ISR
Model
Image
Default Feature License
First Cisco IOS Software Release
Cisco 800M ISR
c800m-universalk9-mz
SL-800M-AIS
(Advanced IP Services)
15.5(1)T1
More info about Cisco 800M Series Integrated Services Router such as System Specs for Cisco 800M Routers, ordering information, warranty, technical service options, etc. you can refer to the data sheet of Cisco 800M Series Integrated Services Router:
http://www.cisco.com/c/en/us/products/collateral/routers/800m-integrated-services-router-isr/datasheet-c78-732678.html

More Cisco 800 Router Topics
How about the POE Option on Cisco 880 Series?
Cisco 800 Series Integrated Services Routers, New…
Cisco 890 Series ISR Info Update 2015
Cisco’s IoT Part-The IR809, Cisco’s Smallest Multimode 3G and 4G LTE Wireless Router
Cisco’s IoT Part-The Cisco 829 Industrial Integrated Services Routers
Why Upgrade to the New Cisco 860VAE ISRs?
EoS and EoL Announcement for the Select Cisco 888 ISR and Select WAN/LAN Modules and Cables for ISR G1


Search

How to Configure the Cisco 7940G IP Phone for Standalone SIP?

December 16, 2015, 1:40 am
$
0
0


How to configure the Cisco 7940G IP Phone for Standalone SIP? It’s a common problem while using the Cisco ip phone 7900 series. Now here we will share an example and case that the user of Cisco 7940g phone has got…

And the discussion is likes this:
The Problem: “I have a Cisco 7940g IP telephone.
I do not have a PBX. This is simply an IP phone plugged into a my LAN.
I just signed up Digium cloud SIP service.
Is there a way to make this work?
P.S. I tried entering the credentials that Digium sent me into the "5.  SIP Configuration" menu under "SETTINGS" on the phone, but I still have an 'X' over my line on the home screen.”

Someone answered: “Digium is a very-well known company because of a VoIP product called Asterisk.
Will the phone work, of course?  You have a choice of running SIP or Cisco-proprietary SCCP.  
We'll need to do a top-to-bottom troubleshooting and configuration.  Firstly, what protocol are you planning to use (SIP or SCCP) and what configuration settings does Digium require you to do from your side?”

In fact the user wants to run SIP.  He does not have any PBX or other Cisco phone hardware outside of this 7940g phone sitting on desk.
He has factory-reset the phone, and entered the credentials Digium gave him.
Settings > 4. SIP Configuration > 1. Line 1 Settings:
1. Name = (the user’s assigned Digium phone number)
2. Shortname= (his name)
3. Authentication Name=56605ed547a8437d872f6b516df6a4bc
4. Authentication Password = (another random string of characters just like the previous field)
5. Display Name = UNPROVISIONED
6. Proxy Address = sip.digiumcloud.com
7. Proxy Port = 5060
And he have confirmed with our sysadmin that the network's router is set to (1) disable "SIP helper", and (2) allow communication on specific UDP port ranges, both per Digium's knowledgebase.

…Those configuration are not enough.  
Ask Digium if NAT & ALG are supported. 
What transport protocol does Digium support:  TCP or UDP

What codec is allowed?
The Cisco IP Phone 79X5 family of phones behave differently.  It's not like the IP Phone 79X0 where the configurations are simple.  You'll need to upload the complete set of configurations to the phone using DHCP Option 150 and a TFTP server.

…Any more suggestions? Share with us…

From https://supportforums.cisco.com/discussion/12721381/configuring-cisco-7940g-phone-stanalone-sip

More Related…
How to Configure a Cisco Unified IP Phone 7921 with Call Manager Express?
Cisco 7942/7962 IP Phone Overview
Cisco Unified IP Phone 7942G-Enhanced Sound Quality
How to Use the Most-Used Cisco 7911 Phone?
How to Save Power on Cisco IP Phones?
How to Start up a Cisco IP Phone?
Cisco IP Phone 7861 vs. Cisco IP Phone 7841 vs. Cisco IP Phone 7821

New Cisco ASR 1009-X Overview

March 14, 2016, 8:08 pm
$
0
0
Image may be NSFW.
Clik here to view.
With its modular and scalable design, Cisco ASR 1009-X, this new routing platform, for the network edge features instant-on services and SD-WAN ready capabilities.

The new Cisco ASR 1009-X Router is for medium and high-end enterprises with up to 200 Gbps total system bandwidth in a 9-rack-unit (9RU) form factor. With the ASR 1009-X, you can benefit from best-in-class service performance and network resilience through redundant hardware and carrier class software.
Image may be NSFW.
Clik here to view.


The following table lists the hardware components supported on the Cisco ASR 1009-X Router and Cisco ASR 1006-X Router.
Supported Hardware Components
Chassis PID
ASR1006-X
ASR1009-X
Height
6RU
9RU
RP Slots
2
2
ESP Slots
2 (regular) 1
2 (super) 2
SIP Slots
2
3
SPA Slots
Up to 8 SPA slots are supported with SIP40 linecards
Up to 12 SPA Slots are supported with SIP40 linecards
EPA Slots
Up to 4 EPA slots are supported with MIP100 linecards
Up to 6 EPA slots are supported with MIP100 linecards
NIM Slots
NA
NA
Built-in GE
NA
NA
Maximum number of Power Supplies supported/PID
Six ASR1000X-AC-1100W
Six ASR1000X-DC-950W
Six ASR1000X-AC-1100W
Six ASR1000X-DC-950W
RP
RP2 requires CPLD upgrade
RP2 requires CPLD upgrade 3
ESP
ASR1000-ESP40, ASR1000-ESP100
ASR1000-ESP40, ASR1000-ESP100, ASR1000-ESP200
Line Cards
ASR1000-2T+20X1GE, ASR1000-6TGE, ASR1000-MIP100, and ASR1000-SIP40
ASR1000-2T+20X1GE, ASR1000-6TGE, ASR1000-MIP100, and ASR1000-SIP40
Fan Modules/PID
Two ASR1000X-FAN
Three ASR1000X-FAN
1. Regular slot supports ASR1000-ESP40 and ASR1000-ESP100.
2. Super slot supports ASR1000-ESP40, ASR1000-ESP100, ASR1000-ESP200 and 400Gbps capable for future generation forwarding engine.
3. The minimum CPLD version must be 0x14111801 or greater for RP2 to be used in the Cisco ASR 1009-X Router or Cisco ASR 1006-X Router. See CPLD upgrade section for further details. 

More Related…
The New Cisco ASR 1009-X & Cisco ASR 1006-X Router

UTP, F/UTP and S/FTP

April 20, 2016, 2:44 am
$
0
0
You may be confused with the Ethernet cables using individual foil-shielded pair and overall shield constructions. Because there are some differences between standards in North American and some other international organizations.

Some website like the Siemon listed the naming rules of Ethernet cables. What are they? Let’s take a look.

This cable terminology is outlined below and is based upon the ISO/IEC 11801:2002 annex E standard systematic naming convention shown in the following figure.
Image may be NSFW.
Clik here to view.


UTP (Categories 3, 5e and 6)
UTP cable constructions feature unshielded twisted-pairs enclosed within an overall thermoplastic jacket as shown in figure 1. UTP cables are compatible with Siemon MAX®, CT®, SM®, HD®, S210®, S110®, and S66™ product lines.
Image may be NSFW.
Clik here to view.



F/UTP (Categories 5e and 6)
F/UTP cable constructions feature unshielded twisted-pairs surrounded by an overall conductive mylar-backed aluminum foil shield and enclosed within an overall thermoplastic jacket as shown in figure 2. F/UTP cables are compatible with Siemon screened MAX, screened HD5, screened CT, and screened SM product lines. TIA and legacy Siemon materials referred to this cable type as "ScTP", "screened" or "FTP".
Image may be NSFW.
Clik here to view.



S/FTP (Category 7)
S/FTP cable constructions feature individually foil-shielded twisted-pairs surrounded by an overall braid and enclosed within an overall thermoplastic jacket as shown in figure 3. S/FTP cables are compatible with Siemon TERA™ and screened MAX product lines. Legacy Siemon materials referred to this cable type as "PiMF", "STP", "SSTP" or "fully shielded".
Image may be NSFW.
Clik here to view.


Original Reference From https://www.siemon.com/us/standards/cable-terminology.asp

More Related…
Ethernet Cables, CAT Technical & Physical Differences
Cisco CCNA Part: Types of Ethernet Cabling
Cisco Console Cables, Popular Types You Used
Ethernet Crossover Cable vs Ethernet LAN Cable

How to Make Your Ethernet Crossover Cable?

Cisco 4000 Model Comparison

May 9, 2016, 8:06 pm
$
0
0


The 4000 Series contains five platforms: the 4451, 4431, 4351, 4331, and 4321 ISRs.
The ISR 4000 platform is modular and upgradable, so you can add new services without changing equipment. It supports multiple application-aware services concurrently while maintaining WAN performance of up to 2 Gbps, even during heavy traffic loads. The backplane architecture supports high-bandwidth, module-to-module communication at speeds up to 10 Gbps.

Model Comparison-Cisco 4321 vs. 4331 vs. 4351 vs. 4431 vs. 4451
Feature
4321
4331
4351
4431
4451
Form factor
1 rack unit (RU)
Desktop
1 RU
2 RU
1 RU
2 RU
Integrated WAN ports
1 GE / SFP
1 GE
1 GE / SFP
1 GE
1 SFP
2 PoE GE / SFP
1 GE/ SFP
2 PoE GE / SFP
2 GE / SFP
2 PoE GE / SFP
2 GE / SFP
Performance
50 Mbps
Upgradable to 100 Mbps
100 Mbps
Upgradable to 300 Mbps
200 Mbps
Upgradable to 400 Mbps
500 Mbps
Upgradeable to 1 Gbps
1 Gbps
Upgradable to 2 Gbps
Management port
1 GE (Integrated Out of Band)
Network Interface Modules (NIM)
2
2
3
3
3
Enhanced Services Module (SM-X)
N/A
1 single-wide
2 single- or
1 double-wide
N/A
2 single- or
1 double-wide
Integrated Services Card (ISC) slots
1
(PVDM 4)
1
(PVDM 4)
1
(PVDM 4)
1
(PVDM 4)
1
(PVDM 4)
USB ports (type A)
1
1
2
2
2
Default/max Flash
4 GB / 8 GB
4 GB / 16 GB
4 GB / 16 GB
8 GB / 32 GB
8 GB / 32 GB
Default/max DRAM
4 GB / 8 GB
4 GB / 16 GB
4 GB / 16 GB
4 GB / 16 GB
4 GB / 16 GB
Power supply type
External: AC, PoE
Internal: AC, PoE
Internal: AC, PoE or DC
Internal: AC, PoE or DC
Internal: AC, PoE or DC
Redundant power supply
No
No
No
Yes
Internal RPS
Yes
Internal RPS
Module online insertion and removal (OIR)
Yes
Yes
Yes
Yes
Yes
Server virtualization platform (UCS E-Series)
N/A
2-core single-wide,
4-core single-wide
2 core single-wide,
4 core single-wide,
4 core double-wide,
6 core double-wide,
8 core double-wide
N/A
2-core single-wide,
4-core single-wide,
4-core double-wide,
6-core double-wide,
8-core double-wide
Advanced Security
4321
4331
4351
4431
4451
Zone-based firewall and NAT services
VRF-Aware Firewall and Network Address Translation (NAT)
Hardware VPN acceleration
(DES, 3DES, AES)
No
IPSEC VPN services
FlexVPN, Easy VPN remote server, Enhanced Easy VPN, Dynamic Multipoint VPN (DMVPN),
Group Encrypted Transport VPN (GET VPN), V3PN, MPLS VPN
SSL VPN
No
Intrusion prevention
Yes
Network foundation protection
ACL, FPM, control plan protection, control plane policing (CoPP), QoS, role-based CLI access, source-based RTBH, uRPF, SSHv2
Cisco Cloud Web Security
Yes*
Identity-based networking
No
No
No
No
No
Cisco TrustSec
  • Security Group Tag Exchange Protocol (SXP), SGT over GETVPN
  • SGT over IPSEC
  • SGT over DMVPN
  • SGT-based ZBFW
  • Port/Layer 3 interface/IP/subnet-to-SGT mapping
  • SGT export in Flexible NetFlow
Unified Communications
4321
4331
4351
4431
4451
Local conferencing
Yes
Yes
Yes
Yes
Yes
Digital signal processor support
PVDM4
PVDM4
PVDM4
PVDM4
PVDM4
Cisco Unified Survivable Remote Site
Telephony support
Up to 50
Up to 100
Up to 750
Up to 1200
Up to 2000
Cisco Unified Communications
Manager Express support
Up to 50
Up to 100
Up to 250
Up to 350
Up to 450
Cisco Unity Express
(NM, SM, or ISM)
Use Cisco Unity Connection on UCSE
Use Cisco Unity Connection on UCSE
Use Cisco Unity Connection on UCSE
Use Cisco Unity Connection on UCSE
Use Cisco Unity Connection on UCSE
Cisco Unified Border Element (CUBE)
(SIP/H.323 sessions)
100
400
1000
3000
6000
nano Cisco Unified Border Element (nanoCUBE)
(sessions)
N/A
N/A
N/A
N/A
N/A
Digital voice and video (T1/E1 channels)
Up to 240
Up to 360
Up to 720
Up to 720
Up to 1200
Analog/BRI voice
Up to 8 ports (FXS, FXO, E/M, BRi)
Up to 12 ports (FXS, FXO, E/M, BRi)
Up to 20 ports (FXS, FXO, E/M, BRi)
Up to 12 ports (FXS, FXO, E/M, BRi)
Up to 20 ports (FXS, FXO, E/M, BRi)
Routing and Multicast
4321
4331
4351
4431
4451
IPv4 routing protocols
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
Multicast routing protocols
PIM-SM, mroute (static route), and MLD
PIM-SM, mroute (static route), and MLD
PIM-SM, mroute (static route), and MLD
PIM-SM, mroute (static route), and MLD
PIM-SM, mroute (static route), and MLD
IPv6 routing protocols
EIGRP, RIP, OSPFv3, IS-IS,
BGP and PBR
EIGRP, RIP, OSPFv3, IS-IS,
BGP and PBR
EIGRP, RIP, OSPFv3, IS-IS,
BGP and PBR
EIGRP, RIP, OSPFv3, IS-IS,
BGP and PBR
EIGRP, RIP, OSPFv3, IS-IS,
BGP and PBR
Wireless LAN
4321
4331
4351
4431
4451
Integrated 802.11 b/g/n access point
N/A
N/A
N/A
N/A
N/A
Integrated 802.11 a/b/g/n access point
N/A
N/A
N/A
N/A
N/A
Unified and autonomous mode
N/A
N/A
N/A
N/A
N/A
RP-TNC connectors for field-replaceable
optional high-gain antennas
N/A
N/A
N/A
N/A
N/A
Diversity (dual antennas)
N/A
N/A
N/A
N/A
N/A
Wireless LAN controller module
Available on UCS E-Series
Available on UCS E-Series
Available on UCS E-Series
Available on UCS E-Series
Available on UCS E-Series
Wireless WAN
4321
4331
4351
4431
4451
3G /4G LTE cellular
Yes*
Outdoor antennas
N/A
N/A
N/A
N/A
N/A
Integrated Switching
4321
4331
4351
4431
4451
Maximum switched Ethernet ports
N/A
24
48
N/A
48
Maximum switched Ethernet LAN ports with PoE
N/A
24
48
N/A
48
PoE support (wattage)
without PoE boost
120 W
250 W
500 W
250 W
(with optional power supply redundancy)
500 W
(with optional power supply redundancy)
PoE support (wattage)
with PoE boost
260 W
530 W
990 W
500 W
(no power supply redundancy)
950 W
(no power supply redundancy)
EtherSwitch Service Module type (width)
N/A
1 single
2 single or 1 double
N/A
2 single or 1 double
Application Services
4321
4331
4351
4431
4451
Intelligent Path Control
PfR
PfR
PfR
PfR
PfR
Network Contention Control
QoS, HQoS
QoS, HQoS
QoS, HQoS
QoS, HQoS
QoS, HQoS
Application Visibility
NBAR v2
NBAR v2
NBAR v2
NBAR v2
NBAR v2
WAN Optimization
ISR-WAAS
ISR-WAAS,
vWAAS on UCS E-Series
ISR-WAAS,
vWAAS on UCS E-Series
ISR-WAAS
ISR-WAAS,
vWAAS on UCS E-Series
Akamai Connect
Yes
Yes
Yes
Yes
Yes
Cisco Application Centric Infrastructure
Application Policy Infrastructure Controller (APIC) with Enterprise Module
Comparison from
http://www.cisco.com/c/en/us/products/routers/4000-series-integrated-services-routers-isr/models-comparison.html

Say More about the Cisco 4000 Series
Intelligent Services Reduce Bandwidth Costs
The 4000 Series runs Cisco Intelligent WAN (IWAN), a comprehensive set of traffic control and security features. With IWAN, you get all the business-grade capabilities of a Multiprotocol Label Switching (MPLS) VPN using other types of less-expensive links. You get per-application traffic management, WAN optimization, and VPN tunneling, for example, which you can put to work across Internet, cellular, and other lowercost services as you add connections. And you can activate new router services on demand through a simple licensing change. Remote application installation and management capabilities mean you don’t need local IT staff to deliver a fully comprehensive computing and networking experience in the branch. That comes in handy in new or smaller sites where you don’t have IT personnel already. All this plus convergence and stable, high-speed performance means you can now roll out your branch services at the speed of business.

Near-Instant IWAN Configuration
You can now configure your Cisco IWAN features in next to no time, thanks to Cisco’s enterprise software-defined networking (SDN) controller, the Application Policy Infrastructure Controller Enterprise Module (APIC EM). APIC EM allows you to automate lots of tasks across the network. You can implement an SDN on your Cisco WAN infrastructure without having to upgrade your equipment; you just install the no-charge APIC EM software-based controller between your applications and network infrastructure. The controller translates business policy directly into network device-level policy for automatic compliance with your corporate and industry-mandated polices. For additional WAN management simplicity, customers can also use the IWAN app for APIC EM. The app automates the configuration of Cisco Intelligent WAN features, such as quality of service (QoS), WAN optimization, and security, in Cisco branch and edge WAN routers. The app slashes what used to require 1000 command-line interface (CLI) steps to just 10 mouse clicks per site. With the IWAN app’s template functionality, the ability to configure, deploy, and manage large numbers of branch offices has never been easier.

More Related…
Cisco ISR 4000 Platform Comparison & Benefits of Migrating to Cisco 4000 Series
Cisco 4451-X vs. Cisco 3945E vs. 3925E vs. Cisco 3945 vs. 3925 Router
Ordering Guide-Cisco 4400 and 4300 Series Routers/Cisco 4000 Router Family
Ordering Guide-Optional Items, IOS Software Images and Licenses for the Cisco 4000 Series ISR
Cisco 4000 Series ISR, Top Choice for Today’s Branch Offices
Migrating to Cisco 4000 Series ISR…Benefits You Get

The Huawei S5700-EI’s Features and Highlights

June 13, 2016, 11:30 pm
$
0
0
You may read the “The Role of Huawei S5700 Series in a Network” to get a general impression. What benefits can you get from the Huawei S5700-EI switches? In this article, we will tell the detailed Features and Highlights of the S5700-EI, which can help you know these Huawei switches well.
Image may be NSFW.
Clik here to view.



Powerful support for services
• The S5700-EI supports IGMP v1/v2/v3 snooping, IGMP filter, IGMP fast leave, and IGMP proxy. It supports line-speed replication of multicast packets between VLANs, multicast load balancing among member interfaces of a trunk, and controllable multicast, meeting requirements for IPTV services and other multicast services.
• The S5700-EI provides the Multi-VPN-Instance CE (MCE) function to isolate users in different VPNs on a device, ensuring data security and reducing costs.
• The S5710-EI supports multiple MPLS & VPN features, including Label Distribution Protocol (LDP) or Resource Reservation Protocol for Traffic Engineering (RSVP-TE), MPLS TE, VLL, VPLS, and MPLS L3VPN.

Comprehensive reliability mechanisms
Besides STP, RSTP, and MSTP, the S5700-EI supports enhanced Ethernet reliability technologies such as Smart Link and RRPP (Rapid Ring Protection Protocol), which implement millisecond-level protection switchover and ensure network reliability. It also provides Smart Link multi-instance and RRPP multiinstance to implement load balancing among links, optimizing bandwidth usage.
• The S5700-EI supports enhanced trunk (E-Trunk) that enables a CE to be dual-homed to two PEs (S5700s). E-Trunk greatly enhances link reliability between devices and implements link aggregation between devices. This improves reliability of access devices.
• The S5700-EI supports the Smart Ethernet Protection (SEP) protocol, a ring network protocol applied to the link layer on an Ethernet network. SEP can be used on open ring networks and can be deployed on upper-layer aggregation devices to provide fast switchover, ensuring non-stop transmission of services.
SEP features simplicity, high reliability, fast switchover, easy maintenance, and flexible topology, facilitating network planning and management.
• The S5700-EI supports Ethernet Ring Protection Switching (ERPS), also referred to as G.8032. As the latest ring network protocol, ERPS was developed based on traditional Ethernet MAC and bridging functions and uses mature Ethernet OAM function and a Ring Automatic Protection Switching (R-APS) mechanism to implement millisecond-level protection switching. ERPS supports various services and allows flexible networking, helping customers build a network with lower OPEX and CAPEX.
• The S5700-EI supports redundant power supplies, and can use an AC power supply and a DC power simultaneously. Users can choose a single power supply or use two power supplies to ensure device reliability.
• The S5700-EI supports VRRP, and can set up VRRP groups with other Layer 3 switches. VRRP provides redundant routes to ensure stable and reliable communication. Multiple equal-cost routes to an uplink device can be configured on the S5700-EI to provide route redundancy. When an active route is unreachable, traffic is switched to a backup route.
• The S5700-EI supports Bidirectional Fast Detection (BFD) and provides millisecond-level detection for protocols such as OSPF, IS-IS, VRRP, and PIM to improve network reliability. The S5700-EI complies with IEEE 802.3ah and 802.1ag. IEEE 802.3ah defines the mechanism for detecting faults on direct links over the Ethernet in the first mile, and 802.1ag defines the mechanism for end-to-end service fault detection. The S5700-EI supports Y.1731. Besides fast end-to-end service fault detection, the S5700-EI can use the performance measurement tools defined in Y.1731 to monitor network performance, providing accurate data about network quality.

Well-designed QoS policies and security mechanisms
• The S5700-EI implements complex traffic classification based on packet information such as the 5-tuple, IP precedence, ToS, DSCP, IP protocol type, ICMP type, TCP/UDP port number, VLAN ID, Ethernet protocol and CoS. ACLs can be applied to inbound or outbound direction on an interface. The S5700-EI supports a flow-based two-rate three-color CAR. Each port supports eight priority queues and multiple queue scheduling algorithms such as WRR, DRR, PQ, WRR+PQ, and DRR+PQ. All of these ensure the quality of voice, video, and data services.
• The S5700-EI provides multiple security measures to defend against Denial of Service (DoS) attacks, and attacks against networks or users. DoS attack types include SYN Flood attacks, Land attacks, Smurf attacks, and ICMP Flood attacks. Attacks to networks refer to STP BPDU/root attacks. Attacks to users include bogus DHCP server attacks, man-in-the-middle attacks, IP/MAC spoofing attacks, DHCP request flood attacks. DoS attacks that change the CHADDR field in DHCP packets are also attacks against users.
• The S5700-EI supports DHCP snooping, which generates user binding entries based on MAC addresses, IP addresses, IP address leases, VLAN IDs, and access interfaces of users. DHCP snooping discards invalid packets that do not match any binding entries, such as ARP spoofing packets and IP spoofing packets. This prevents man-in-the-middle attacks to campus networks that hackers initiate by using ARP packets. The interface connected to a DHCP server can be configured as a trusted interface to protect the system against bogus DHCP server attacks.
• The S5700-EI supports strict ARP learning, which prevents ARP spoofing attacks that will exhaust ARP entries. It also provides IP source check to prevent DoS attacks caused by MAC address spoofing, IP address spoofing, and MAC/IP spoofing.
• The S5700-EI supports centralized MAC address authentication, 802.1x authentication, and NAC. It authenticates users based on statically or dynamically bound user information such as the user name, IP address, MAC address, VLAN ID, access interface, and flag indicating whether antivirus software is installed. VLANs, QoS policies, and ACLs can be applied to users dynamically.
• The S5700-EI can limit the number of MAC addresses learned on an interface to prevent attackers from exhausting MAC address entries by using bogus source MAC addresses. This function minimizes packet flooding that occurs when MAC addresses of users cannot be found in the MAC address table.

Fine-grained traffic management
• The S5710-EI supports NetStream. The NetStream module supports V5, V8, and V9 packet formats and provides various traffic analysis functions, such as real-time traffic sampling, dynamic report generation, traffic attribute analysis, and traffic exception report. The Netstream module enables administrators to monitor network status in real time and provides applications and analysis functions including potential fault detection, effective fault rectification, fast problem handling, and security monitoring, to help customers optimize network structure and adjust resource deployment.
• The S5700-EI supports the Sampled Flow (sFlow) function, which uses a sampling mechanism to obtain statistics about traffic forwarded on a network and sends the statistics to the Collector in real time. The Collector analyzes traffic statistics to help customers manage network traffic efficiently. The S5700-EI integrates the sFlow Agent module and uses hardware for traffic monitoring. Unlike traffic monitoring through port mirroring, sFlow does not degrade network performance during traffic monitoring.

Easy deployment and maintenance free
The S5700-EIsupports automatic configuration, plug-and-play, and batch remote upgrade. These capabilities simplify device management and maintenance and reduce maintenance costs. The S5700- EI supports SNMP v1/v2/v3 and provides flexible methods for managing devices. Users can manage the S5700-EI using the CLI, Web NMS, Telnet, and HGMP. The NQA function helps users with network planning and upgrades. In addition, the S5700-EI supports NTP, SSH v2, HWTACACS+, RMON, log hosts, and port-based traffic statistics.
The S5700-EI supports the GARP VLAN Registration Protocol (GVRP), which dynamically distributes, registers, and propagates VLAN attributes to reduce manual configuration workloads of network administrators and to ensure correct VLAN configuration. In a complex network topology, GVRP simplifies VLAN configuration and reduces network communication faults caused by incorrect VLAN configuration.
The S5700-EI supports MUX VLAN. MUX VLAN isolates Layer 2 traffic between interfaces in a VLAN.Interfaces in a subordinate separate VLAN can communicate with ports in the principal VLAN but cannot communicate with each other. MUX VLAN is usually used on an enterprise intranet to isolate user interfaces from each other but allow them to communicate with server interfaces. This function prevents communication between network devices connected to certain interfaces or interface groups but allows the devices to communicate with the default gateway.

PoE function
• The S5700-EI PWR can use PoE power supplies with different power levels to provide -48V DC power for powered devices (PDs) such as IP Phones, WLAN APs, and Bluetooth APs. In its role as power sourcing equipment (PSE), the S5700-EI PWR complies with IEEE 802.3af and 802.3at (PoE+) and can work with PDs that are incompatible with 802.3af or 802.3at. Each port provides a maximum of 30 W power, complying with IEEE 802.3at. The PoE+ function increases the maximum power of each port and implements intelligent power management for high-power consumption applications. This facilitates the use of PDs. PoE ports can work in power-saving mode. The S5700-EI PWR provides improved PoE solutions. Users can configure whether and when a PoE port supplies power.

High scalability
• The S5700-EI supports intelligent stacking (iStack). Multiple S5700-EI switches can be connected with stack cables to set up a stack, which functions as a virtual switch. A stack consists of a master switch, a backup switch, and several slave switches. 
The backup switch takes over services when the master switch fails, reducing service interruption time. Stacks support intelligent upgrade so that users do not need to change the software version of a switch when adding it to a stack. The iStack function allows users to connect multiple switches with stack cables to expand system capacity. These switches can be managed using a single IP address, which greatly reduces the costs of system expansion, operation, and maintenance. Compared with traditional networking technologies, iStack has advantages in scalability, reliability, and system architecture.

Various IPv6 features
• The S5700-EI supports IPv4/IPv6 dual stack and can migrate from an IPv4 network to an IPv6 network. S5700-EI hardware supports IPv4/IPv6 dual stack, IPv6 over IPv4 tunnels (including manual tunnels, 6to4 tunnels, and ISATAP tunnels), and Layer 3 line-speed forwarding. 
The S5700-EI can be deployed on IPv4 networks, IPv6 networks, or networks that run both IPv4 and IPv6. This makes networking flexible and enables a network to migrate from IPv4 to IPv6.



More Related…
GE Switch Models-Cisco 3750-X/3560-X vs. Huawei S5700 Series
Introducing the Main Huawei S5700-EI Models
The Role of Huawei S5700 Series in a Network

Cisco Catalyst 4500 Supervisor Engine 8L-E Redefines…

July 20, 2016, 12:07 am
$
0
0


Cisco launched the new Cisco Catalyst 4500E Supervisor8L-E in March, 2016. It’s a low-scale supervisor for the industry-leading Cisco Catalyst 4500E modular access platform. 

Cisco Catalyst 4500 Supervisor Engine 8L-E




Based on the best-in-class, high-performance Cisco Catalyst 4500E Supervisor8-E, the Cisco Catalyst 4500E Supervisor8L-E gives customers the same high availability, IT simplicity, security and other cutting edge features for low-scale deployments.

Supervisor8-E and Supervisor8L-E will also work with the same IOS XE software for maximum operational simplicity and flexibility.

The Cisco Catalyst 4500E Supervisor8L-E supports Cisco Multigigabit Ethernet, a key Cisco innovation that enables customers to migrate to 802.11ac Wave 2 without having to rewire their access points to their Cisco Catalyst 4500E switches

The WS-X4748-12X48U line card on Cisco Catalyst 4500E, supported with Supervisor8L-E, is a 48 port line card with 12 Multigigabit Ethernet ports. The Multigigabit Ethernet ports are 10GBASE-T ports that can auto negotiate down to 5Gbps, 2.5Gbps or 1Gbps based on the connected host/access point capability, the type of cable used and the length of the cable. By connecting Cisco 802.11ac Wave 2 supported access points to Multigigabit Ethernet ports on the Cisco Catalyst 4500E, customers can get up to 5Gbps on existing Cat5e cables or up to 10Gbps on Cat6a cables.
Image may be NSFW.
Clik here to view.


Multigigabit Ethernet saves customers significant expenses by avoiding re-cabling access points to Catalyst 4500E switches with Cat6a cables or running two Cat5e cables between them to get higher speeds. By standardizing on the Cisco Multigigabit line cards on Cisco Catalyst 4500E, customers get maximum investment protection for whenever their wireless networks transition to 802.11ac Wave 2.

The Cisco Catalyst 4500E Supervisor8L-E is also fully integrated with Cisco APIC-EM and Cisco Prime Infrastructure for IT Simplicity. The Plug and Play (PnP) app on APIC-EM can be used to simplify deployment across multiple remote sites, saving enterprise IT teams time and money. With PnP, the Cisco Catalyst 4500E switches with Supervisor8L-E can be pre-provisioned and shipped to branches or other remote locations. Once the Cisco Catalyst 4500E switch with Supervisor8L-E is plugged in, the image and configuration are automatically downloaded and installed on it via the APIC-EM PnP server. The IT admin can monitor the status of the installs over multiple sites remotely.
The path trace app on APIC-EM also enables detailed flow-based visibility and troubleshooting by tracing a path between two hosts. It further provides in depth information about the nature of each hop, including information such as whether the path segment is Layer 2 or Layer 3 and which protocols are running on it.

In addition to these cutting edge features, the Cisco Catalyst 4500E Supervisor8L-E also supports all other Catalyst 4500E high availability, security and IT simplicity features. With Stateful Switchover (SSO) and In Service Software Upgrade (ISSU), customers can get supervisor redundancy on the C4507R+E chassis. The Supervisor8L-E also supports Virtual Switching System (VSS) for dual homing and inter-chassis redundancy in aggregation deployments.It also supports Network as a Sensor and Network as an Enforcer capabilities with Cisco TrustSec, Flexible Netflow, embedded Wireshark and MACSec encryption.
A number of customers across different verticals such as finance, health care, and education are already beginning to standardize on Catalyst 4500E with Supervisor8-E or Supervisor8L-E. For high scale deployments, the Cisco Catalyst 4500E Supervisor8-E continues to provide industry leading modular access performance for customers.

Reference From
http://blogs.cisco.com/enterprise/catalyst4500e-supervisor8l-e-redefines-modular-access-for-enterprises?_ga=1.91924890.1085874839.1467172283

More Related…
EoS and EoL Announcement for the Cisco Catalyst 4500E Line Cards
Decode the Cisco Catalyst 4500E–Enterprise-Class Campus Platform
Updated: Cisco Catalyst 4500 Supervisor Engine 8-E and 8L-E
Cisco Catalyst 4500E Supervisor Engine 8-E Review
Cisco 4500E Supervisor 8E vs. Supervisor 7E vs. Supervisor 7LE
Catalyst 4500E & 4500X Series 10 GbE Review
 

Cisco ASA Series Feature Licenses

August 15, 2016, 9:19 pm
$
0
0
Updated: Mar 21, 2016
The following table provides links to feature license chapters per ASA version.
ASA Version
Licensing Chapter
9.6
ASAv, Firepower 9300, and Firepower 4100: Smart Software Licensing for the ASAv and ASA on the FXOS Chassis
All other models: Product Authorization Key Licenses
9.5
ASAv and Firepower 9300: Smart Software Licensing for the ASAv and ASA on the FXOS Chassis
All other models: Product Authorization Key Licenses
9.4
ASAv and Firepower 9300: Smart Software Licensing for the ASAv and ASA on the FXOS Chassis
All other models: Product Authorization Key Licenses
9.3
ASAv: Smart Software Licensing for the ASAv
All other models: Feature Licenses
9.2
Feature Licenses
9.1
Managing Feature Licenses
9.0
Managing Feature Licenses
8.4 and 8.6
Managing Feature Licenses
8.5
ASASM: Managing Feature Licenses
8.3
Managing Feature Licenses
8.2
Managing Feature Licenses
8.1
ASA 5580: Managing Software, Licenses, and Configurations
8.0
Managing Feature Licenses
7.2
Managing Software, Licenses, and Configurations
7.0
Managing Software, Licenses, and Configurations
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)


The Main Info fromhttp://www.cisco.com/c/en/us/td/docs/security/asa/roadmap/licenseroadmap.html#pgfId-116451

More about Cisco Licensing
Cisco ONE for WAN-Benefits
Cisco ONE Software Licensing Program
Cisco Licenses on Cisco ISR G2
How to Activate a Cisco License?
Search

Updated: Sth New on Catalyst 2960-X and 2960-XR Switches

September 6, 2016, 12:48 am
$
0
0
Cisco 2960-X and XR Series are so popular. The features of 2960-X and XR have been updated in July. What’s new on the Catalyst 2960-X and Catalyst 2960-XR switches? Let’s check the latest Release Notes for Catalyst 2960-X and 2960-XR Switches, Cisco IOS Release 15.2(5)E.

Yes, definitely, Cisco 2960-X and XR Series switches are Ethernet switches to which you can connect devices such as Cisco IP Phones, Cisco Wireless Access Points, workstations, and other network devices such as servers, routers, and other switches.

Some models of the switches support stacking through the Cisco FlexStack-Plus technology. Unless otherwise noted, the term switch refers to both a standalone switch and to a switch stack.
FlexStack
Image may be NSFW.
Clik here to view.


FlexStack+
Image may be NSFW.
Clik here to view.


Catalyst 2960-X Scalability
Image may be NSFW.
Clik here to view.


Supported Hardware-Catalyst 2960-X Switch Models
Switch Model
Cisco IOS Image
Description
Cisco Catalyst 2960X-48FPD-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 48 10/100/1000 Power over Ethernet Plus (PoE+) ports (PoE budget of 740 W) and two small form-factor pluggable (SFP)+1 module slots.
Cisco Catalyst 2960X-48LPD-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 48 10/100/1000 PoE+ ports (PoE budget of 370 W) and two SFP+ module slots.
Cisco Catalyst 2960X-24PD-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 24 10/100/1000 PoE+ ports (PoE budget of 370 W) and two SFP+ module slots.
Cisco Catalyst 2960X-48TD-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 48 10/100/1000 Ethernet ports and two SFP+ module slots.
Cisco Catalyst 2960X-24TD-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 24 10/100/1000 Ethernet ports and two SFP+ module slots.
Cisco Catalyst 2960X-48FPS-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 48 10/100/1000 PoE+ (PoE budget of 740 W) and four SFP2 module slots.
Cisco Catalyst 2960X-48LPS-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 48 10/100/1000 PoE+ ports (PoE budget of 370 W) and four SFP module slots.
Cisco Catalyst 2960X-24PS-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 24 10/100/1000 PoE+ ports (PoE budget of 370 W) and four SFP module slots.
Cisco Catalyst 2960X-24PSQ-L Cool Switch
LAN Base
Cisco Catalyst 2960-X Non-Stackable, fanless, 24 10/100/1000 Ethernet ports, including 8 PoE ports (PoE budget of 110 W), two copper module slots, and two SFP module slots.
Cisco Catalyst 2960X-48TS-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 48 10/100/1000 Ethernet ports and four SFP module slots.
Cisco Catalyst 2960X-24TS-L Switch
LAN Base
Cisco Catalyst 2960-X Stackable 24 10/100/1000 Ethernet ports and four SFP module slots.
Cisco Catalyst 2960X-48TS-LL Switch
LAN Lite
Cisco Catalyst 2960-X 48 10/100/1000 Ethernet ports and two SFP module slots.
Cisco Catalyst 2960X-24TS-LL Switch
LAN Lite
Cisco Catalyst 2960-X 24 10/100/1000 Ethernet ports and two SFP module slots.

1.SFP+ = 10-Gigabit uplink.
2.SFP = 1-Gigabit uplink.

Catalyst 2960-XR Switch Models
Switch Model
Cisco IOS Image
Description 3
Cisco Catalyst 2960XR-48FPD-I Switch
IP Lite
Cisco Catalyst 2960-XR Stackable 48 10/100/1000 Power over Ethernet Plus (PoE+) ports (PoE budget of 740 W), two small form-factor pluggable (SFP)+4 module slots, 1025-W power supply.
Cisco Catalyst 2960XR-48LPD-I Switch
IP Lite
Cisco Catalyst 2960-XR Stackable 48 10/100/1000 PoE+ ports (PoE budget of 370 W), two SFP+ module slots, 640-W power supply.
Cisco Catalyst 2960XR-24PD-I Switch
IP Lite
Cisco Catalyst 2960-XR Stackable 24 10/100/1000 PoE+ ports (PoE budget of 370 W), two SFP+ module slots, 640-W power supply.
Cisco Catalyst 2960XR-48TD-I Switch
IP Lite
Cisco Catalyst 2960-XR Stackable 48 10/100/1000 Ethernet ports, two SFP+ module slots, and 250-W power supply.
Cisco Catalyst 2960XR-24TD-I
IP Lite
Cisco Catalyst 2960-XR Stackable 24 10/100/1000 Ethernet ports, two SFP+ module slots, and 250-W power supply.
Cisco Catalyst 2960XR-48FPS-I Switch
IP Lite
Cisco Catalyst 2960-XR Stackable 48 10/100/1000 PoE+ (PoE budget of 740 W), four SFP5 module slots, and 1025-W power supply.
Catalyst WS-C2960XR-48LPS-I Switch
IP Lite
Cisco Catalyst 2960-XR Stackable 48 10/100/1000 PoE+ ports (PoE budget of 370 W), four SFP module slots, and 640-W power supply.
Cisco Catalyst 2960XR-24PS-I Switch
IP Lite
Cisco Catalyst 2960-XR Stackable 24 10/100/1000 PoE+ ports (PoE budget of 370 W), four SFP module slots and 640-W power supply.
Cisco Catalyst 2960XR-48TS-I Switch
IP Lite
Cisco Catalyst 2960-XR Stackable 48 10/100/1000 Ethernet ports, four SFP module slots, and 250-W power supply
Cisco Catalyst 2960XR-24TS-I Switch
IP Lite
Cisco Catalyst 2960-XR Stackable 24 10/100/1000 Ethernet ports, four SFP module slots, and 250-W power supply.

3.The 250-W power supply is not supported in any PoE switch. The 640-W power supply is not supported in a full PoE switch. If you insert an unsupported power supply, the following error message is displayed:%PLATFORM_ENV-1-FRU_PS_ACCESS: UNKNOWN or UNSUPPORTED Power Supply
4.SFP+ = 10-Gigabit uplink.
5.SFP = 1-Gigabit uplink.

Optics Modules
The Catalyst 2960-X switches support a wide range of optics. Because the list of supported optics is updated on a regular basis, consult the tables at this URL for the latest SFP+ and SFP module compatibility information: http://www.cisco.com/en/US/products/hw/modules/ps5455/products_device_support_tables_list.html

Software Image
If you have a service support contract and order a software license or if you order a switch, you receive the universal software image and a specific software license.

Table 4 Software Image for Cisco Catalyst 2960-X
Image
Filename
Description
Universal image
c2960x-universalk9-mz.152-5.bin
LAN Base and LAN Lite images.
Universal image
c2960x-universalk9-tar.152-5.tar
LAN Base and LAN Lite cryptographic images with Device Manager.

Table 5 Software Images for Cisco Catalyst 2960-XR
Image
Filename
Description
Universal image
c2960xr-universalk9-mz.152-5.bin
IP Lite image.
Universal image
c2960xr-universalk9-tar.152-5.tar
IP Lite cryptographic image with Device Manager.

Full Release Notes for 2960-X and 2960-XR Switches, Cisco IOS Release 15.2(5)E you can read here: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst2960x/software/15-2_5_e/release_notes/rn-1525e-2960x-xr.html

More Related…
Cisco Switches-Comparison and Solutions
Catalyst Multigigabit Technology & Cisco Catalyst Multigigabit Technology Products
Cisco Catalyst 2960-X vs. 2960-XR Series Switches
Why SELECT Cisco 2960-X Series?

NEW Horizontal Stacking Supported on Cisco 3560-CX

Updated: Cisco Interface Module for LoRaWAN

September 20, 2016, 2:16 am
$
0
0
What does the Cisco Interface Module for LoRaWAN can do for you? Cisco announced the featured Solution for LoRaWAN, which aim to create a gateway for your network, extend the connectivity of your Cisco 809 and 829 Industrial Routers. Cisco LoRaWAN Interface Module includes LPWA access by adding a remote LoRaWAN radio modem interface.

The Cisco interface module for LoRaWAN is a module from Cisco IoT extension module series connected the Cisco 809 and 829 Industrial Routers and are positioned as the carrier-grade gateways for the outdoor deployment, including the harsh environments. This module is very flexible to extend to Cisco other products in future according to the different deployment scenarios.
Image may be NSFW.
Clik here to view.

This interface module is designed according to Semtech LoRa gateway hardware reference version 2.0, supporting Semtech LoRa radio technology and the LoRaWAN specification defined by the LoRaAlliance. This interface module embeds Semtech LoRabaseband chipset to modulate/demodulate the radio signal from the end-devices. Complying with the LoRaWAN specification, it supports the end-device types of Class A, B and C, GPS timing, Spreading Factors, Adaptive Data Rate (ADR) and is ready for geo-localization service.

LoRaWAN operates on the unlicensed Industrial, Scientific and Medical (ISM) band, such as 863-870 MHz and 902-928 MHz, or subsets of these bands for specific regional profiles as defined by the LoRaAlliance. 863-870 MHz ISM band or its subsets are applicable to Europe, MEA, Africa, Russia (EMEAR) and India regions. 902-928 MHz ISM band or its subsets are applicable to North America, LATAM, Asia and Pacific regions.
The Cisco interface module for LoRaWAN has two models according to the supported ISM bands:
● IXM-LPWA-800-16-K9: Supporting up to 16 LoRa channels, operating on the 863-870 MHz ISM band
● IXM-LPWA-900-16-K9: Supporting up to 16 LoRa channels, operating on the 902-928 MHz ISM band
This interface module is a ruggedized product at IP67 rating. It can be deployed outdoor on the pole, Service Provider’s cellular base station tower, building roof or wall. This product connects to Cisco IR809 and IR829 LAN ports through Ethernet cable. It supports two types of power inputs on device, PoE+ and DC in, 1 or 2 RF antennas, and 1 GPS antenna as shown below.
Cisco Interface Module Ports
Image may be NSFW.
Clik here to view.

Solution Benefits
The LoRaWAN network is optimized for the IoT use cases that require end-devices to be battery powered. The LoRaWAN network is a single-hop star topology in which the LoRaWAN gateways relay the messages between the end devices and the back-end LoRaWAN Network Server. The LoRaWAN gateways are connected to the LoRaWAN Network Server via standard IP backhaul technology, beneficing Cisco IOSSoftware feature set on IR809 and IR829.
The Cisco IR809 and IR829 equipped with this interface module are the LoRaWAN gateways in the Cisco solution for LoRaWAN. They propagate the long-distance radio to communicate with the LoRaWAN end-devices, such as the water and gas meter, street light, trash bin, smoke detector, GPS tracker, fire hydrant, pipe line and power sockets. The received packet data are forwarded by the LoRaWAN gateway to the backend platform and routed to application server. Figure 2 shows the architecture of Cisco solution for LoRaWAN, including Cisco gateways, Cisco Field Network Director and the LoRaWAN backend platform from Cisco’s partner.
Cisco Solution for LoRaWAN
Image may be NSFW.
Clik here to view.

Image may be NSFW.
Clik here to view.

Enhanced LoRaWAN Features
The Cisco interface module for LoRaWAN complies with Semtech LoRa gateway hardware reference design version 2. It supports several enhanced features, such as high radio bandwidth utilization, geo-localization, RF channels scanning, wider spectrum radio agile transceiver, higher grade saw filter, improvement to coexistence with LTE radio networks and future modulation enhancements.

Multiple Gateway Options
The interface module connects to the Cisco IR809 and IR829 LAN port via Ethernet cable, the IR809 supports one interface module directly or up to three interface modules via intermediate LAN switch, and the IR829 supports up to three interface modules directly. This design gives deployment flexibility.
● Omnidirectional Gateway: Customer can connect one of this product to the Cisco IR809 or IR829 with the Omni-directional antenna. For the end-device low density area, the customer can select the Cisco IR809 with one interface module. If the end-device quantity is forecasted to grow quickly in future, at the early stage of deployment, the customer can select the Cisco IR829 with one interface module and then add another two interface modules on this IR829 to transform to a tri-sectors gateway.
● Tri-sectors Gateway: For the end-device high density area, the customer can select the Cisco IR829 and equip with three of this product as a tri-sectors gateway.
Cisco Omnidirectional and Tri-Sectors Gateway for LoRaWAN
Image may be NSFW.
Clik here to view.

Flexible Deployment
As shown in the above Figure, the gateway is typically deployed on an outdoor tower site. The Cisco IR809 and IR829 chassis will be deployed in the site cabinet on ground, and the interface module is mounted on the antenna pole via Ethernet connection to the Cisco IR809/829.
Cisco Omni–directional Gateway Deployment at Tower Site:
Image may be NSFW.
Clik here to view.

● Power input flexibility: This product supports both 48VDC and PoE+ power inputs. When no power supply is available on the top of tower, the interface module can be powered by an external PoE+ (AC or DC) injector between the Cisco IR809, or by the internal PoE+ option of Cisco IR829.
● Implementation cost savings: Mounting the interface module on the top of the tower close to the antenna requires shorter RF coaxial cable. The shorter the RF cable, the cost is less expensive and the signal loss is less between the antenna to the gateway radio transceiver. Usually a signal amplifier has to be installed to compensate the signal loss for the longer RF cable. This design can help the customer to save implementation cost from the longer RF cable and an extra signal amplifier, particularly in the case of geo-localization service based on Time Differential of Arrival (TDOA) requesting multiple RF antennas per gateway.
● Rich backhaul options: The Cisco IR809 and IR829 provide the Ethernet WAN, 4G cellular and Wi-Fi. The customer can select the proper backhaul according the IP access at the local site. If there exists the Metro Ethernet, such as Layer 2 MPLS, the customer can simply use Ethernet backhaul of the IR809 and IR829. If only public Internet access is available, the customer can create IPSEC VPN tunnel on the Ethernet of IR809 and IR829. Given no Ethernet access on site, the customer can easily activate the 4G cellular of IR809 and IR829 as the backhaul. Finally, if city Wi-Fi mesh is available, the customer can enable the dual-band Wi-Fi of IR829 to access the city Wi-Fi mesh AP.
● Zero-touch provisioning: The Cisco IoT Field Network Director (FND) provides full NMS functionalities to manage the Cisco IR809 and IR829 as well as this interface module. The Cisco IoT FND automatically performs the configuration provisioning when the Cisco IR809 and IR829 successfully register, including the LAN parameters of the interface, certificate management, and the IPSEC VPN tunnel creation.

…More detailed info about the Cisco interface module for LoRaWAN, such as the Features and Benefits, main product SKUs and specifications, the performance specifications, product compliance information, RF antenna specifications, GPS antenna specifications, etc. you can read the full data sheet of Cisco Interface Module for LoRaWAN
http://www.cisco.com/c/en/us/products/collateral/se/internet-of-things/datasheet-c78-737307.html

More about the Ordering Information
The following Table provides ordering information for the Cisco interface module for LoRaWAN and accessories

Ordering Information
PID
Product Description
Note
Base Unit
IXM-LPWA-800-16-K9
Cisco interface module for LoRaWAN, IoT extension module series, radio spectrum from 863-870MHz, 16 LoRa channels, IP67

IXM-LPWA-900-16-K9
Cisco interface module for LoRaWAN, IoT extension module series, radio spectrum subset from 902-928MHz, 16 LoRa channels, IP67

Mount Kit
AIR-ACC1530-PMK1
Standard Pole/Wall Mount Kit

PoE+ Power Injector Options
AIR-PWRINJ6
AC input PoE power Injector, 802.3at, AC input voltage: 100-240Vac, AC input current: 0.67A,@100-240Vac, Output power up to 30 watts, Indoor
Operating Ambient Temperature
●  -4º to 104ºF (-20º to 40ºC) @ 30 W
●  -4º to 122ºF (-20º to 50ºC) @ 25 W
AIR-PWRINJ-60RGD1
AC input PoE power Injector, 802.3at, AC input voltage: 90-264Vac, AC input current: 2A, Output power up to 60 watts, IP66 rating, NEMA 4X, North America plug
Operating Ambient Temperature
●  -40º to 122ºF (-40º to 50ºC) @ 60 W
●  -40º to 131ºF (-40º to 55ºC) @ 30 W
AIR-PWRINJ-60RGD2
AC input PoE power Injector, 802.3at, AC input voltage: 90-264Vac, AC input current: 2A, Output power up to 60 watts, IP66 rating, NEMA 4X
Operating Ambient Temperature
●  -40º to 122ºF (-40º to 50ºC) @ 60 W
●  -40º to 131ºF (-40º to 55ºC) @ 30 W
PWR-INJDC-30
DC input PoE power Injector, dual DC inputs voltage from 20 to 60 VDC range, DC inputs current 2A maximum, output power up to 30 watts, IP30 rating
Operating Ambient Temperature
●  -40º to 167ºF (-40º to 75ºC)
ACC-SP-POE-GE
PoE power injector surge protector, 10/100/1000 Mbps Ethernet ports, protects up to 10KV surge, IP66 rating

GPS Antenna
ANT-GPS-OUT-TNC
Outdoor GPS antenna with integrated 15-ft cable

ACC-LA-G-TM-TF
Outdoor GPS antenna lightning arrestor, GDT type, connector TNC(male) to TNC(female)

RF Antenna
ANT-LPWA-DB-O-N
Omni-directional antenna, 6dBi gains, 863-928MHz, N type connector, IP67

ACC-LA-H-NM-NF
Antenna lightning arrestor, high-pass filter type, connector N(male) to N(female)

DC-IN Power Jack
PLG-PWRJCK
DC-IN power adapter jack plug
●  DC-IN power adapter not included
Software and License
SW-IXM-LPWA-K9
Cisco LoRaWAN interface module software to work with 809 and 829
 
LIC-IOTFND-LORAWAN
Cisco FND device license for managing Cisco LoRaWAN module
 

More Cisco Topics
Try the Cisco Solution for LoRaWAN
Cisco’s IoT Part-The Cisco 829 Industrial Integrated Services Routers
Cisco’s IoT Part-The IR809, Cisco’s Smallest Multimode 3G and 4G LTE Wireless Router

Cisco 800 Series ISR Naming

Read the Latest Cisco 4000 Model Comparison

November 15, 2016, 1:06 am
$
0
0
The Cisco ISR 4000 platform is modular and upgradable, so you can add new services without changing equipment. It supports multiple application-aware services concurrently while maintaining WAN performance of up to 2 Gbps, even during heavy traffic loads. The backplane architecture supports high-bandwidth, module-to-module communication at speeds up to 10 Gbps.

The 4000 Series includes Cisco Trust Anchor Technologies that help mitigate modern cyberattacks by verifying platform integrity and providing protection from counterfeit and unauthorized modification 
of hardware and software.

The 4000 Series contains five platforms: the 4451, 4431, 4351, 4331, 4321 and 4221 ISRs.

Benefits-Cisco ISR 4000 Series
Image may be NSFW.
Clik here to view.

In the following table you can see the main Cisco ISR 4000 modelcomparison: ISR 4221 vs. 4321 vs. 4331 vs. 4351 vs. 4431 vs. ISR 4451.
Feature
4221
4321
4331
4351
4431
4451
Form factor
1 RU
Desktop
1 RU
Desktop
1 RU
2 RU
1 RU
2 RU
Integrated WAN ports
GE / SFP
GE / SFP
GE / SFP
2 PoE GE / SFP
2 PoE GE / SFP
2 PoE GE / SFP
1 GE
GE
GE
GE/ SFP
2 GE / SFP
2 GE / SFP


SFP



Performance
35Mbps
50 Mbps
100 Mbps
200 Mbps
500 Mbps
Gbps
Upgradable to 75 Mbps
Upgradable to 100 Mbps
Upgradable to 300 Mbps
Upgradable to 400 Mbps
Upgradeable to 1 Gbps
Upgradable to 2 Gbps
Management port

1 GE (Integrated Out of Band)
Network Interface Modules (NIM)
2
2
2
3
3
3
Enhanced Services Module (SM-X)
N/A
N/A
single-wide
2 single- or1 double-wide
N/A
2 single- or double-wide
Integrated Services Card (ISC) slots
N/A
1
1
1
1
1
(PVDM 4)
(PVDM 4)
(PVDM 4)
(PVDM 4)
(PVDM 4)
USB ports (type A)
1
1
1
2
2
2
Default/max Flash
8 GB
4 GB / 8 GB
4 GB / 16 GB
4 GB / 16 GB
8 GB / 32 GB
8 GB / 32 GB
Default/max DRAM
4 GB
4 GB / 8 GB
4 GB / 16 GB
4 GB / 16 GB
4 GB / 16 GB
4 GB / 16 GB
Power supply type
External: AC
External: AC, PoE
Internal: AC, PoE
Internal: AC, PoE or DC
Internal: AC, PoE or DC
Internal: AC, PoE or DC
Redundant power supply
No
No
No
No
Yes
Yes
Internal RPS
Internal RPS
Module online insertion and removal (OIR)
No
Yes
Yes
Yes
Yes
Yes
Server virtualization platform (UCS E-Series) and Network Compute Engine (NCE)
N/A

2-core single-wide, 2-core NCE
2 core single-wide, 2-core NCE

2-core single-wide, 2-core NCE
4-core NCE
4-core single-wide, 4-core NCE
4 core single-wide, 4-core NCE
4-core NCE
4-core single-wide, 4-core NCE


4 core double-wide,

4-core double-wide,


6 core double-wide,

6-core double-wide,


8 core double-wide

8-core double-wide
Advanced Security
4221
4321
4331
4351
4431
4451
Zone-based firewall and NAT services
VRF-Aware Firewall and Network Address Translation (NAT)
Hardware VPN acceleration(DES, 3DES, AES)
No
IPSEC VPN services
FlexVPN, Easy VPN remote server, Enhanced Easy VPN, Dynamic Multipoint VPN (DMVPN),
Group Encrypted Transport VPN (GET VPN), V3PN, MPLS VPN
SSL VPN
No
Intrusion prevention
Yes (Snort for Singnature Based and FirePower as nGIPS)
Anomaly Detection and Machine Learning
Cisco Self Learning Networks (SLN)
Network foundation protection
ACL, FPM, control plan protection, control plane policing (CoPP), QoS, role-based CLI access, source-based RTBH, uRPF, SSHv2
Cisco Umbrella Branch Support
Yes
Cisco Cloud Web Security
Yes
Identity-based networking
No
No
No
No
No
No
Cisco TrustSec
Security Group Tag Exchange Protocol (SXP), SGT over GETVPN
SGT over IPSEC
SGT over DMVPN
SGT-based ZBFW
Port/Layer 3 interface/IP/subnet-to-SGT mapping
SGT export in Flexible NetFlow
Unified Communications
4221
4321
4331
4351
4431
4451
Local conferencing
N/A
Yes
Yes
Yes
Yes
Yes
Digital signal processor support
N/A
PVDM4
PVDM4
PVDM4
PVDM4
PVDM4
Cisco Unified Survivable Remote Site
N/A
Up to 50
Up to 100
Up to 750
Up to 1200
Up to 2000
Telephony support
Cisco Unified Communications
N/A
Up to 50
Up to 100
Up to 250
Up to 350
Up to 450
Manager Express support
Cisco Unity Express
N/A
Use Cisco Unity Connection on UCSE
Use Cisco Unity Connection on UCSE
Use Cisco Unity Connection on UCSE
Use Cisco Unity Connection on UCSE
Use Cisco Unity Connection on UCSE
(NM, SM, or ISM)
Cisco Unified Border Element (CUBE)
N/A
100
400
1000
3000
6000
(SIP/H.323 sessions)
nano Cisco Unified Border Element (nanoCUBE)
N/A
N/A
N/A
N/A
N/A
N/A
(sessions)
Digital voice and video (T1/E1 channels)
N/A
Up to 240
Up to 360
Up to 720
Up to 720
Up to 1200
Analog/BRI voice
N/A
Up to 8 ports (FXS, FXO, E/M, BRi)
Up to 12 ports (FXS, FXO, E/M, BRi)
Up to 20 ports (FXS, FXO, E/M, BRi)
Up to 12 ports (FXS, FXO, E/M, BRi)
Up to 20 ports (FXS, FXO, E/M, BRi)
Routing and Multicast
4221
4321
4331
4351
4431
4451
IPv4 routing protocols
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
RIP v1/v2, EIGRP, OSPF, BGP, PBR, PfR
Multicast routing protocols
PIM-SM, mroute (static route), and MLD
PIM-SM, mroute (static route), and MLD
PIM-SM, mroute (static route), and MLD
PIM-SM, mroute (static route), and MLD
PIM-SM, mroute (static route), and MLD
PIM-SM, mroute (static route), and MLD
IPv6 routing protocols
EIGRP, RIP, OSPFv3, IS-IS,
EIGRP, RIP, OSPFv3, IS-IS,
EIGRP, RIP, OSPFv3, IS-IS,
EIGRP, RIP, OSPFv3, IS-IS,
EIGRP, RIP, OSPFv3, IS-IS,
EIGRP, RIP, OSPFv3, IS-IS,
BGP and PBR
BGP and PBR
BGP and PBR
BGP and PBR
BGP and PBR
BGP and PBR
Wireless LAN
4221
4321
4331
4351
4431
4451
Integrated 802.11 b/g/n access point
N/A
N/A
N/A
N/A
N/A
N/A
Integrated 802.11 a/b/g/n access point
N/A
N/A
N/A
N/A
N/A
N/A
Unified and autonomous mode
N/A
N/A
N/A
N/A
N/A
N/A
RP-TNC connectors for field-replaceable
N/A
N/A
N/A
N/A
N/A
N/A
optional high-gain antennas
Diversity (dual antennas)
N/A
N/A
N/A
N/A
N/A
N/A
Wireless LAN controller module
N/A
Available on UCS E-Series
Available on UCS E-Series
Available on UCS E-Series
Available on UCS E-Series
Available on UCS E-Series
Wireless WAN
4221
4321
4331
4351
4431
4451
3G /4G LTE cellular
Yes
Cat 6 LTE Advanced
Yes†
GPS Support
Yes
Indoor Antenna
Yes (Various antenna using 2 x TNC connectors supporting MIMO)
Outdoor antennas
N/A
N/A
N/A
N/A
N/A
N/A
Integrated Switching
4221
4321
4331
4351
4431
4451
Maximum switched Ethernet ports
2 x 8
16
40
72
24
72
Maximum switched Ethernet LAN ports with PoE
0
16
40
72
24
72
PoE support (wattage)
N/A
120 W
250 W
500 W
250 W
500 W
without PoE boost
(with optional power supply redundancy)
PoE support (wattage)
N/A
260 W
500 W
950 W
530 W
990 W
with PoE boost
(no power supply redundancy)
EtherSwitch Service Module type (width)
N/A
N/A
single
2 single or 1 double
N/A
2 single or 1 double
Application Services

4321
4331
4351
4431
4451
Intelligent Path Control
PfR
PfR
PfR
PfR
PfR
PfR
Network Contention Control
QoS, HQoS
QoS, HQoS
QoS, HQoS
QoS, HQoS
QoS, HQoS
QoS, HQoS
Application Visibility
NBAR v2
NBAR v2
NBAR v2
NBAR v2
NBAR v2
NBAR v2
WAN Optimization
N/A
ISR-WAAS
ISR-WAAS,
ISR-WAAS,
ISR-WAAS
ISR-WAAS,
vWAAS on UCS E-Series
vWAAS on UCS E-Series
vWAAS on UCS E-Series
Akamai Connect
N/A
Yes
Yes
Yes
Yes
Yes
Cisco Application Centric Infrastructure
Application Policy Infrastructure Controller (APIC) with Enterprise Module
† With CAT6 LTE Advanced theoretical DL speed of 300 Mbps, with 2 NIM slots ISR4221 and ISR4321, customer may need the performance license to maximize CAT6 LTE Advanced theoretical full potential capability with 2 NIM CAT6 LTE Advanced slots depending on specific carrier SP provisioning capability & capacity.

Read the original updated info of Cisco 4000 Series. http://www.cisco.com/c/en/us/products/collateral/routers/4000-series-integrated-services-routers-isr/datasheet-c78-732542.html#_ftn7

More Related
The New ISR 4221, the New Cisco DNA-Ready Platform
Updated: Cisco ISR 4421 Added into Cisco 4000 Series
Say Something about Cisco 4400 and 4300 Series
Migrating to Cisco 4000 Series ISR…Benefits You Get

Cisco 4000 Series ISR, Top Choice for Today’s Branch Offices

Quick Questions Help You Know the Cisco ASR 1000 Series

March 23, 2017, 11:31 pm
$
0
0
The Cisco ASR 1000 Series is a class of midrange routers that offers convergence of network services on highly scalable routing platforms. It delivers superior resiliency with intelligent services and modularity to meet the long-term needs of both enterprise and service provider applications.

The ASR 1000 Series is the first system to use the Cisco Flow Processor, a groundbreaking technology that offers superior multiprocessing, advanced memory management, customized quality of service (QoS), and silicon-based service delivery and programmability for emerging requirements.
The flexibility of this processor allows you to integrate network services such as packet encryption, packet inspection, application recognition, traffic differentiation, and subscriber management on a single routing platform, the Cisco ASR 1000 Series Router, without using external network appliances or service modules.

ASR 1000 Series Routers scale from Fast Ethernet to 10 Gigabit Ethernet (GE) and from DS-0 to OC 192/STM-64 with rich QoS features, allowing network operators to guarantee bandwidth to mission-critical applications and improve overall application user experiences.

Quick questions and answers help you know the Cisco ASR 1000 family

Q: What models are included in the ASR 1000 Series?
A: The ASR 1000 Series includes seven models: the 1-rack-unit (1RU) ASR 1001-X, ASR 1001-HX, the 2RU ASR 1002-X, ASR 1002-HX, the 4RU ASR 1004, the 6RU ASR 1006 and ASR 1006-X, the 9RU ASR 1009-X, and the 13RU ASR 1013.

Table1 lists each model’s specifications.
Image may be NSFW.
Clik here to view.











Image may be NSFW.
Clik here to view.

Image may be NSFW.
Clik here to view.

































Image may be NSFW.
Clik here to view.









Q: What are the key new items introduced with the ASR 1002-HX chassis compared to other 
ASR 1000 Series Routers?

A: The ASR 1002-HX Series has 8 built-in 10-Gigabit Ethernet ports and 8 built-in 1-Gigabit Ethernet ports. The ASR 1001-HX Series has 4 built-in 10-Gigabit Ethernet ports, 8 built-in 1-Gigabit Ethernet ports, and 4 built-in configurable 10-Gigabit Ethernet or 1-Gigabit Ethernet ports.
Further, both ASR 1002-HX and ASR 1001-HX implement the software activation that is the same software activation concept as seen on ASR 1001-X and other Cisco offerings; for example, on the Cisco Integrated Services Routers Generation 2 (ISR G2) routers. System performance can be realized up to 100 Gbps (for ASR 1002-HX) and 60 Gbps (for ASR 1001- HX), through software activation of built-in ports and Ethernet port adapter (EPA) ports (for ASR1002-HX).

Q: What new key items are introduced with the ASR 1001-X chassis?
A: The ASR 1001-X Series features two built-in 10-GigabitEthernet (GE) ports. In addition, the ASR 1001-X has a network interface module (NIM) slot and a shared port adapter (SPA) slot to expand connectivity options.
Q: What are the new key items introduced with the ASR 1002-X chassis?
A: The ASR 1002-X Series has 6 built-in Gigabit Ethernet ports. Further, the ASR 100-X implements the software activation that is the same software activation concept as seen on ASR 1001 and other Cisco offerings; for example, on Cisco ISR G2 routers. System performance can be set at 5 (default), 10, 20, and 36 Gbps through software activation.
Q What are the major differences between the ASR 1013 and ASR 1006?
A: The ASR 1013 has expanded I/O capacity of up to 6 I/O slots (24 half-height SPAs), and a throughput support capability of 360 Gbps total. This model is designed to support either four 40-Gbps slots or two 100-Gbps slots in the future. The ASR 1013 has four power supplies (AC or DC) organized in two redundant pairs. Field-replaceable unit (FRU) placement is also different on the ASR 1013. From the bottom up, there are three SIP slots, a route-processor slot, an embedded-servicesprocessor (ESP) slot, another ESP slot, a route-processor slot, and then another three SIP slots.
Q: What are the major components of the ASR 1000 Series?
A: The major components of the ASR 1000 Series include:
• ASR 1000 Series chassis
• ASR 1000 Series Route Processor (RP2 module, or a route processor, are integrated in ASR 1001- X, ASR 1002-X, ASR 1001-HX, and ASR 1002-HX chassis)
• ASR 1000 Series Embedded Services Processor (ESP20, ESP40, ESP100, and ESP200)
– Note:The ESP is integrated into the ASR 1001-X, ASR 1001-HX, ASR 1002-HX, and ASR 1002-X chassis. The integrated ESP on the ASR 1002-X offers 5 Gbps by default, and is upgradable through a software license to 10, 20, or 36 Gbps. The integrated ESP on the ASR 1002-HX offers 100 Gbps by default. The integrated ESP on the ASR 1001-HX offers 60 Gbps by default.
• ASR 1000 Series SPA Interface Processor (SIP40)
–Note: The SIP is integrated on the ASR 1001-X and ASR 1002-X chassis.
• Cisco SPAs
• Cisco IOS XE Software

Q: What are the typical applications of the ASR 1000 Series in enterprise networks?
A: Examples of enterprise applications include:
• Multiservice, scalable, and highly secure enterprise headend for branch-office and remote-user aggregation.
• Enterprise private WAN router, WAN aggregation router, or Internet gateway router with high-density Gigabit Ethernet or WAN link aggregation and 10-GE uplink capability to support the performance of high-priority applications with optimized treatment of all WAN traffic.
• High-speed firewall to switch multiple Gigabits of traffic, while at the same time performing firewall and other baseline features such as NetFlow, Network Address Translation (NAT), and IPv6.
• Data Center Interconnect (DCI) with supported functions such as Ethernet over Multiprotocol Label Switching (EoMPLS), Ethernet over MPLS over generic routing encapsulation (EoMPLSoGRE), or Ethernet over MPLS over generic routing encapsulation over IP Security (EoMPLSoGREoIPsec).

Q: What are some typical applications of the ASR 1000 Series in service provider networks?
A: Examples of service provider applications include:
• Broadband aggregation terminating up to 64,000 subscriber sessions while optionally supporting features such as Cisco Unified Border Element (Service Provider Edition), for voiceover-IP (VoIP) and video telepresence services, hardwareassisted firewall for security, and Gigabit Ethernet or 10-GE or 100-GE uplink capability.
• Interfacing with the service provider’s voice and multimedia services directly at the edge. No overlay network, network appliances, or service blades are required in this solution for lower operating expenses (OpEx), lower capital expenditures (CapEx), and flexible deployment models. The solution supports protected signaling for both voice and video services and can enable 32,000 voice calls concurrent with 200 Gbps of data traffic with accounting, firewall, and callquality features enabled.

Q: What are the QoS capabilities of the ASR 1000 Series?
A: The ASR 1000 Series provides a very granular and flexible QoS architecture to help service providers and enterprise customers manage their network performance with respect to bandwidth, delay, jitter, and packet loss, which are critical to optimizing application performance and meeting service-level agreements (SLAs). The ASR 1000 Series supports multilevel hierarchical queuing, which includes traffic classification; two-rate, three-color policing; Class-Based Weighted Fair Queuing (CBWFQ); two low-latency queues; traffic shaping; and congestion-avoidance techniques such as Weighted Random Early Detection (WRED). The ASR 1000 Series provides queue and scheduling functions such as Low-Latency Queuing (LLQ), bandwidth limiting, traffic shaping, and so on, across up to 464,000 queues on dedicated hardware; up to 4000 service policies; and three levels of QoS hierarchy with queuing on the grandchild level.

Hardware
Q: What is the main difference between the ASR 1000 Series ESP2.5, ESP5, and ESP20, ESP40, ESP100, and ESP200 processors?
A: All ESPs are based on the Cisco Flow Processor for performing all data-plane forwarding functions, such as MAC classification, Layers 2 and 3 forwarding, QoS, ACL, VPN, and NetFlow.
The ASR 1000 Series ESP2.5 supports 2.5-Gbps bandwidth (integrated in the ASR 1001-X chassis), and the ESP5 supports 5-Gbps bandwidth. The ESP20 supports 20-Gbps bandwidth, the ESP40 supports 40-Gbps bandwidth, the ESP100 supports 100-Gbps bandwidth, and the ESP200 supports 200 Gbps bandwidth.
The ASR 1000 Series ESP10-N does not support IPsec services. Refer to Table 3 for more comparisons and specifications. The integrated ESP in the ASR 1001-X chassis supports from 2.5 to 5, 10, 20 Gbps (upgradable through a software license with software activation), whereas the integrated ESP in the ASR 1002-X chassis supports from 5 to 10, 20, 36 Gbps.
Table3. Cisco ASR 1000 ESP Processors: Comparison and Specifications
Image may be NSFW.
Clik here to view.











Image may be NSFW.
Clik here to view.




Image may be NSFW.
Clik here to view.

Image may be NSFW.
Clik here to view.




Q: What SPAs are supported on the ASR 1000 Series?
A: Table4 lists the SPAs supported on the ASR 1000 Series. Additional SPAs will be added in the future. For a current complete list of ASR 1000 SPA support, visit:
http://www.cisco.com/c/en/us/td/docs/interfaces_modules/shared_port_adapters/install_upgrade/ASR1000/asr_sip_spa_hw/ASRintro.html 
Time-based Cisco IOS XE Software releases are available every 4 months.
Table4. Shared Port Adapters for the Cisco ASR 1000 Series
Image may be NSFW.
Clik here to view.

Image may be NSFW.
Clik here to view.

























Image may be NSFW.
Clik here to view.

































Image may be NSFW.
Clik here to view.

















Table5 lists the maximum physical interface termination capacity of the ASR 1000 Series. 
This data assumes that all SPA slots are filled with the respective interface type.


Table5. Maximum Number of Physical Interfaces Terminated on the Cisco ASR 1000 Series
Image may be NSFW.
Clik here to view.


Image may be NSFW.
Clik here to view.








Q: What is the expected performance of the ASR 1000 Series?
A: The overall forwarding performance of the ASR 1000 Series depends on the ESP. The overall control-plane performance of the ASR 1000 Series depends on both the route processor and the ESP. 

Table 6 lists the forwarding and encryption throughput performance numbers.

Table6. Cisco ASR 1000 ESP20, ESP40, ESP100, and ESP200 Performance Comparison
Image may be NSFW.
Clik here to view.


Q: What is the ACL processing capability of the ASR 1000 Series?
A: The ASR 1000 Series processes ACLs in the ESPs. The ASR 1000 Series supports up to 4000 unique ACLs and up to 400,000 access control entries (ACEs) per system. Power

Q: What system power-supply options are available for the ASR 1000 Series?
A: The ASR 1000 Series supports, by default, two power entry modules (PEMs) with either AC receptacle or DC terminal block for redundancy. The two redundant PEMs load-share the power between them. If an external power supply fails or one PEM fails or is removed, the other PEM provides the entire power requirements for the chassis.

Q: Can one AC and one DC power supply be used together on the ASR 1000 Series?
A: No. The ASR 1000 Series supports dual power supplies by default. However, the router can be used with either two AC or two DC power supplies. The combination of one AC and one DC power supply is not supported. Q What are the power ratings for the ASR 1000 Series? A Table 7 lists the power ratings.


Q: What are the power ratings for the ASR 1000 Series?

A: Table7lists the power ratings.
Image may be NSFW.
Clik here to view.




Redundancy Support
Q: What are the redundancy and resiliency features of ASR 1000 Series Routers?
A: The ASR 1000 Series offers the following features:
• The ASR 1006, ASR 1006-X, ASR 1009-X, and ASR 1013 support 1 + 1 active and standby redundancy in dual route processor and dual ESP configurations. Switchover of the route processor does not result in switchover of the ESP, and switchover of the ESP does not result in switchover of the route processor.
• The ASR1001-X, ASR 1001-HX, ASR 1002-HX, ASR 1002-X, and ASR 1004 support dual Cisco IOS Software redundancy with a single route-processor configuration. This feature is not supported on the ASR 1006, ASR 1006-X, ASR 1009-X, or ASR 1013.
• ASR 1000 Series Routers support Nonstop Forwarding (NSF), Stateful Switchover (SSO), ISSU, and online Insertion and removal (OIR).

Q: What other high-availability features does the ASR 1000 Series support?
A: The ASR 1001-X, ASR 1001-HX, ASR 1002-HX, ASR 1002-X, and ASR 1004 support dual Cisco IOS Software redundancy, sub-package software upgrade and downgrade, and NSF. For the ASR 1004, Cisco IOS Software redundancy requires 4 GB of DRAM on the route processor 1 (ASR1000-RP1) and a High Availability license (Cisco IOS Software redundancy license). For the ASR 1001-X, ASR 1001-HX, ASR 1002-HX, and ASR 1002-X, Cisco IOS Software redundancy requires 8 GB of DRAM and the Cisco IOS Software redundancy license. Note: The The ASR 1002-X come by default with 4 GB of DRAM, upgradable to 8 or 16 GB of DRAM. The ASR 1001-X and ASR 1001-HX come by default with 8 GB of DRAM, upgradable to 16 GB of DRAM. The ASR 1002-HX comes by default with 16 GB of DRAM, upgradable to 32 GB of DRAM.


More about the ASR 1000 Series’ performance, power, IOS XE Software, Redundancy Support, Ordering Information you can refer to http://www.cisco.com/c/dam/en/us/products/collateral/routers/asr-1000-series-aggregation-services-routers/q-and-a-c67-452124.pdf

More Related Topics
The New Cisco ASR 1009-X & Cisco ASR 1006-X Router
The New Cisco ASR 1001-X Router
Cisco ASR 1000 Series Can Help Solve…

Cisco Aironet 1815w Access Point Overview

April 20, 2017, 2:59 am
$
0
0

Cisco Aironet 1815w Access Point has been released in DEC, 2016. 

With a sleek design and small form factor, the Cisco Aironet 1815w Access Point brings a full slate of Cisco high-performance functionality to multiple-dwelling-unit deployments.
The CiscoAironet1815w Access Point offers a compact, wall plate–mountable access point, ideal for hospitality, cruise ships, residential halls, or other multiple-dwelling-unit deployments.
Packing 802.11ac Wave 2 wireless standards support and Gigabit Ethernet wired connectivity into a sleek device; the 1815w is built to take full advantage of existing cabling infrastructure while blending into the visual footprint. This combination provides best-in-class performance while reducing total cost of ownership.

CiscoAironet1815w Access Point-Features and Benefits
By adhering to the 802.11ac Wave 2 standard, the 1815w provides a data rate of up to 867 Mbps on its 5-GHz radio. This exceeds the data rates offered by access points that support the 802.11n standard. It also enables a total aggregate dual-radio data rate of up to 1 Gbps. This provides the necessary foundation for enterprise and service provider networks to stay ahead of the performance expectations and needs of their wireless users.

In recent years corporate users have increasingly preferred wireless access as their form of network connectivity, due to its convenience. With this shift, there is an expectation that wireless should not slow down users’ day-to-day activities, but should enable a high-performance experience while allowing users to move about freely. The 1815w delivers industry-leading performance with highly secure and reliable wireless connections that provide a robust, mobile end-user experience.
Feature
Benefit
MU-MIMO
Multiuser (MU) multiple-input multiple-output (MU-MIMO) allows simultaneous data transmission to multiple 802.11ac Wave 2–capable clients to improve the client experience. Prior to MU-MIMO, 802.11n and 802.11ac Wave 1 access points could transmit data to only one client at a time. This was typically referred to as single-user MIMO (SU-MIMO).
Gigabit Ethernet ports
Three local Gigabit Ethernet ports are available to securely connect wired devices to the network. Traffic from wired devices can be tunneled back to a wireless LAN controller (for compatible controllers) or be locally switched by the access point. One of these Ethernet ports can also provide Power over Ethernet (PoE) out to power a device such as an IP phone or a security camera.
Cisco Mobility Express solution
Flexible deployment through the Cisco Mobility Express solution is ideal for small to medium-sized deployments that require 50 or fewer access points. Easy setup allows the 1815w to be deployed on networks without a physical controller.
Learn more: Mobility Express-even better than before
Integrated Bluetooth 4.1
Integrated Bluetooth low-energy (BLE) 4.1 radio for location and asset tracking (future availability).

Image may be NSFW.
Clik here to view.


Ordering Information
Product Name
Part Number
Cisco Aironet 1815w
●  AIR-AP1815w-x-K9: Dual-band, controller-based 802.11a/g/n/ac, Wave 2
●  AIR-AP1815w-x-K9C: Dual-band 802.11a/g/n/ac Wave 2 with default software Mobility Express
◦   Regulatory domains: (x = regulatory domain)
◦   For Mobility Express, part number AIR-AP1815w-x-K9C offers default software option Mobility Express
Customers are responsible for verifying approval for use in their individual countries. To verify approval that corresponds to a particular country or the regulatory domain used in a specific country, visit http://www.cisco.com/go/aironet/compliance.
Not all regulatory domains have been approved. As they are approved, the part numbers will be available on the Global Price List.

Reference From http://www.cisco.com/c/en/us/products/collateral/wireless/aironet-1815-series-access-points/datasheet-c78-738481.html


More Related
Which Aironet 1815 Model Is Right for You?
Mobility Express-even better than before
Viewing all 70 articles
Browse latest View live
Search