Download presentation title/size 30

Cisco Integrated Services Routers
Router-Integrated Services
Session Number
Presentation_ID
© 2003 Cisco Systems, Inc. All rights reserved.
1
A New Router Portfolio That Extends Integrated
Services to Businesses of All Sizes
• Cisco redefines best in class routing with the
industry’s FIRST portfolio engineered for
secure, wire-speed delivery of concurrent
data, voice and video services
• Cisco’s integrated systems approach to
embedded services speeds application
deployment and reduces operating
costs and complexity
• Founded on more than 20 years of
innovation and leadership—FIRST to
embed security and voice services
into a single routing system
• Integrated Services Routers provide
customers with unparalleled services
performance and investment protection
© 2004 Cisco Systems, Inc. All rights reserved.
2
Agenda
• Technology Trends and Momentum for Services
• Cisco Integrated Services Router Portfolio
• Router-Integrated Services
• Summary
© 2004 Cisco Systems, Inc. All rights reserved.
3
Technology Trends
• Converged networks are
driving requirements for
greater intelligence
• New and growing application
deployment with unpredictable
traffic patterns
Greater reliance on delivery optimization
• Increased simultaneous
application use and desktop
computing power increasing
• Security is Mission-critical
Networks are more open with everincreasing threats
© 2004 Cisco Systems, Inc. All rights reserved.
4
S2
SMBs and Enterprises Prefer Systems
Approach to Services & Applications
• More than half of the respondents
PREFERRED router-integrated
services for their small offices and
enterprise branch offices
• Converged data, security, voice
enables customers to protect,
optimize, grow their businesses
• Systems approach maximizes
operating efficiencies:
More time for network
planning, design
Improve network monitoring and
troubleshooting
Functions that SHOULD
be router-integrated n=331
Firewall
VPN
Intrusion Detection
Anti-Virus Software
IP Telephony
Compression
Content Filtering
Caching
QoS
Offload voice and data staff
Leverage better
pricing/packaging
Streaming
Multicasting
0
50
100
150
200
250
Cisco Survey: June 03
© 2004 Cisco Systems, Inc. All rights reserved.
5
Traditional Branch Solution:
Separate Applications
Security
Firewall, IDS and VPN
Appliances
Content Delivery
Content Engine
Voice Services
Hybrid / Key System
Data
Branch Access Router
Local Connectivity
LAN Switch
© 2004 Cisco Systems, Inc. All rights reserved.
6
New Option:
Integrated Solution for Advanced Services
Integrated Services
Router
Security
Content Delivery
IP Telephony
Low Density L2 Switching
© 2004 Cisco Systems, Inc. All rights reserved.
7
Are You Deploying With The Future In Mind?
Considerations For The Future
Cashflow for Future Costs
What are the Future Cost
Implications of Today’s
Product Decisions?
Option A
Option B
Value of service integration
Value of future proofing
Total Cost
Cost
• Essential questions to
consider …
Incremental
Technology
Upgrade
Initial
Cost
YR0
• Essential variables to
assess …
YR1
YR2
YR3
YR4
YR5
Buy vs. Lease in Today’s $
Future Costs
Lease vs. Purchase
© 2004 Cisco Systems, Inc. All rights reserved.
Cost
Net Present Value of
Various
Alternatives
Buy
Lease
YR1
YR2
YR3
YR4
YR5
8
Building A Foundation To Support
Future Requirements
Advanced Security Software/
Modules
Future Proof
Investment
Video, Content
Modules
Voice
Services
Density, Scalability,
High Availability
Integrated Intelligent
Network that Adapts,
Scales and Performs
Presentation_ID
© 2002,
2004 Cisco
©
Cisco Systems,
Systems, Inc.
Inc. All
All rights
rights reserved.
reserved.
Incremental port
functionality &
performance
9
Cisco Evolution: Transport & Performance to
Integrated & Embedded Concurrent Services
Future
Self Defending
Transport &
Performance
Video
Auto Secure
Auto Attendant
Auto QoS
Network Admission
Control
Voice Mail
Software
Distribution
Dynamic Intrusion
Protection Control
802.1x
DMVPN
Security
Conferencing
Call Processing
Voice Scalability
Convergence Apps
Voice
Integrated
Basic
Integration
Intelligent Application Services
Services
Advanced
Services
Wireless
Router Service Evolution
Integrated &
Embedded
Services
System Level
Management
Prepositioning
Caching
App Optimization
Voice Gateway
Compression
VPN
Toll Bypass
Multiple Apps
Security
Security
Traffic Aware
© 2004 Cisco Systems, Inc. All rights reserved.
3rd
Gen
Advanced QoS
(LLQ, MPLS)
IDS
Firewall
4th
Gen
2nd
Gen
Basic QoS
Voice
Voice Transport
App Optimization
Application
Transport
1st
Gen
Multi-Protocol
10
Cisco’s New Integrated Services Routers
Embedded Security And Voice In Cisco Branch + Small Office Routers
CONCURRENT WIRE-SPEED SERVICES
Sustained wire-speed
performance with
concurrent services
Up to… 5X service
density, 7X performance,
4X memory!
Integrated
Services
Routers
Backward compatibility
with existing router
modules for solid
investment protection
Embedded security,
tightly integrated
with voice
Industry-leading network
availability and resilience
Plus headroom to grow!
© 2004 Cisco Systems, Inc. All rights reserved.
11
Cisco Integrated Services Router Portfolio
Session Number
Presentation_ID
© 2003 Cisco Systems, Inc. All rights reserved.
12
Scalable from Small Business to Large Enterprises
Right-Sized Router, Right-Sized Requirements
3800 Series
Increased Value Extended
to New Markets
Performance and Services Density
• Substantial increase in
price/performance!
2800 Series
FCS
September 2004
Highest Density and
Performance for
Concurrent Services
• Extension into new markets!
• Greater service densities
across the portfolio!
1800 Series
FCS
September 2004
Embedded, Advanced Voice, Video, Data & Security
Services
FCS
September 2004
Integrated Security & Data
Enterprise Branch Office
© 2004 Cisco Systems, Inc. All rights reserved.
Small Branch
SMB
13
Cisco’s Integrated Services Routers:
Key Features & Benefits
Embedded Security and Voice
• Fast, on-board encryption
• Highest voice services densities
• Integrated DSP slots and POE
Integrated
Services
Extended Services,
Headroom and
Investment Protection
Higher Performance
• New ASIC, Bus design and processor boost
performance for services
• Double services density
• Double memory defaults
Increased Modularity
• Increased high speed slots — up to 2.2 Gbps
• High density and larger form factor
network modules
Resiliency
• Redundant power option with online
insertion and removal
• Increased environmental thresholds
Security
Voice
Content
L2 Switching
Wireless*
Management
Integrated
Services
Routers (ISR)
Investment Protection
•
•
•
•
Leverages existing modules
Up to 4X memory capacity
GE, USB, wireless for new media
Slot to slot communication
© 2004 Cisco Systems, Inc. All rights reserved.
* future
14
Cisco Router-Integrated Services
Session Number
Presentation_ID
© 2003 Cisco Systems, Inc. All rights reserved.
15
The FIRST To Offer An Integrated Systems Approach
“Jet Engine” Simplicity, Reliability, Performance – In Your Router!
Call
Processing
Voice Mail,
Auto Attendant
Network
Analysis
Video
Benefits of Systems
Approach
Security
Services
Video
Quality of
Service
Routing
On-Board
Hardware
Acceleration
© 2004 Cisco Systems, Inc. All rights reserved.
Application
Optimization
High
Speed
ASIC
• Simplicity through
automation, intelligence
• Maximum end user
performance
• End to end security
• Ease of management and
deployment
• Scalable for future
requirements
• Lowest TCO, highest ROI
High
Speed
LAN/WAN
Interfaces
16
Hardware Innovation Raises Security Leadership
Cisco Self-defending Networks Delivered At Wire-speed!
Complete, Preventative, Scalable Security Solutions
Endpoint Protection & Control
Leverage the network to
intelligently protect endpoints
Network Admission Control,
802.1x
Network Device Protection
Protect the network
infrastructure from attacks and
vulnerabilities
Control Plane Policing
© 2004 Cisco Systems, Inc. All rights reserved.
Secure Connectivity
Secure and scalable
network connectivity
VPN, DMVPN, V3PN, Secure
Voice
Threat Defense
Prevent and respond to network
attacks and threats such as worms
Intrusion Protection, Firewall
17
Cisco Router and Security Device Manager
(SDM) for Simplified Management
New!
• One touch router lock-down,
auto secure
• Implements NSA guidelines,
ICSA, TAC recommendations
• Built-in GUI available for all
1800, 2800, 3800 series
• Industry leading router and
security management tool for:
• VPN
• Firewall
• Routing
• LAN/WAN Interfaces
• WAN
© 2004 Cisco Systems, Inc. All rights reserved.
18
Hardware Innovation Raises Voice Leadership
Cisco Services and Applications Delivered At Wire-speed!
Affordable, Secure, Scalable Voice Solutions
Advanced Voice Applications
Integrated Modularity
Leverages modularity for integration
of voice applications
Scales service capabilities and
voice densities
Cisco CallManager Express,
Survivable Remote Site
Telephony, Cisco Unity
Express
New extension voice module
New high speed interface cards
Core Performance
Embedded Modularity
The foundation for unmatched
voice performance
Enables embedded conferencing,
automated attendant and voice mail
New processor
New specialized voice silicon
New adaptable interfaces
New digital signal processor slots
Advanced Integration module slots
© 2004 Cisco Systems, Inc. All rights reserved.
19
Router-Integrated Services
IP Communications for the Enterprise Branch Office
Affordable and robust IP Telephony application
including integrated voice mail and full featured
automated attendant is required
Solution: Cisco CallManager Express (CCME)
and Cisco Unity Express (CUE)
• Localized Call Processing with Cisco CallManager
Express (CCME)
• Failover Localized Call Processing with Cisco
Survivable Remote Site Telephony (SRST)
• Distributed Voicemail via Cisco Unity Express
(NM-CUE, or AIM-CUE)
• Etherswitch® Module for Line Powering IP Phones
• Centralized DSP resources for voice connectivity
• Higher digital and analog voice densities
• Greater voice call capacity and gateway performance
© 2004 Cisco Systems, Inc. All rights reserved.
Data Center
CCM
IP WAN
Cisco Integrated
Services Router
CCME and NM-CUE
or AIM-CUE
Remote
Users
20
Router-Integrated Services
Voice and Video Enabled VPN (V3PN)
Managing separate voice & data
networks is costly and inefficient.
Network connectivity is too difficult or
expensive to reach remote offices and
Teleworkers.
Cisco Integrated
Services Router
Internet
IOS Security
Services
Data Center
Solution: V3PN
• Reduces data, video and telephony bandwidth
expenses while ensuring high-quality connections
• Cost-effective, high-bandwidth connectivity
regardless of location
• Connectivity for all locations,
including SOHOs
• Enhanced security over traditional WANs
• ISR on-board crypto accelerates performance
• Fast network deployment
Remote
Users
• QoS, SLA and Multicast Support
© 2004 Cisco Systems, Inc. All rights reserved.
21
Router-Integrated Services
Network Admission Control (NAC)
Companies need to minimize downtime due to viruses
and worms, protect network availability and integrity,
manage network access, and enforce security policy
Solution: Cisco Network Admission Control (NAC)
• Reduces IT costs by preventing external and internal threats
• Prevents “contagious” endpoints from infecting network; reduces downtime
• Day-zero protection, increases network availability, resilience, and
productivity
• Leverages existing Cisco, antivirus, and endpoint investments
• Integrated Services Router is one of first network devices to enable NAC
Policy
(AAA) Svr
Credentials
Credentials
Cisco Integrated
Services Router
Credentials
HTTPS
RADIUS
EAP/UDP,
EAP/802.1x
Notification
Access
Rights
Comply?
Enforcement
© 2004 Cisco Systems, Inc. All rights reserved.
22
Router-Integrated Services
Intrusion Prevention Systems (NM-CIDS, IOS IPS)
Data Center
Threat Defense: prevent and respond to
network attacks such as worms and virus
Solution: Intrusion Prevention System (IPS)
• IPS in hardware with NM-CIDS, or software with
IOS IPS
• IOS IPS: Inline Intrusion Prevention - send
alarm, drop packet, reset connection
• Dynamically load customizable signatures
• IDS Network Module stores signature data base
locally and captures/logs all events
• External NM FE allows for complete IDS
segmented Net/Op and Sec/Op management
NM-CIDS
 Dedicated CPU
 Monitors, and Report alarms
 Built in GU for Graphical reports
© 2004 Cisco Systems, Inc. All rights reserved.
Hacker
Internet
Monitoring
Cisco Integrated
Services Router
(IOS IPS option)
IDS
DATABASE
NM-CIDS
Remote
Users
23
Router-Integrated Services
LAN Switching with Transparent Firewall
Providing LAN segmentation with security
in multiple branch sites can be costly and
time consuming to deploy
NM-ESW
Solution: EtherSwitch (NM-ESW or HWIC-ESW)
and IOS Transparent Firewall
• VLAN and transparent IOS FW enables segmented
networks with secure access control
• Simplify subnets, no changing IP addresses on a
device by device basis
• Configure the router and integrated switch without
visiting the remote site
16 and 36 ports of 10/100 Ethernet
HWIC-ESW NEW
4 and 9 port
Hi-Speed WAN Interface Card
Branch Office
WAN
IOS FW
How do you allow only
some devices in?
© 2004 Cisco Systems, Inc. All rights reserved.
Wireless
data base
Cisco Integrated
Services Router
16 Port NM-16ESW
Head
Quarters
24
Router-Integrated Services
Application & Content Networking (NM-CE)
Web applications, including intranet portals, consume
expensive wide-area-network (WAN) bandwidth. HTTP and
streaming content must be delivered FAST.
Data Center
Internet
Need to use the WAN deliver new product, service or
regulatory training, distance learning or staff development
services
Cisco Integrated
Services Router
NM-CE
Solution: Cisco ACNS
• Accelerate Siebel, SAP, intranet portals and software distribution
• Pre-load rich content to Router content engine network module
• Deliver RN, WMT, QT, MPEG, ASF, PDF, other video formats
• Total bandwidth controls, centralized management
• Advanced implementation of WCCP v2 for ease of management
Remote
Users
© 2004 Cisco Systems, Inc. All rights reserved.
25
Router-Integrated Services
Content Security (NM-CE)
As companies extend Web applications and Internet access to
employees, they need to manage what the Internet is used for
and potential threats from “un-trusted” sites/content
Internal Users
Web Content
Server
Untrusted or
Inappropriate
Content
Cisco Integrated
Services Router
Internet
NM-CE
Anti-Virus
Internet Proxy Cache
- Internet traffic logging and reporting
NM-CE
- Internet and Application Access Control
- Internet and Application Use Policy enforcement
- URL Filtering Server
- ICAP handoff to AV servers to scan and clean Web content
- Caches virus-free Web content
© 2004 Cisco Systems, Inc. All rights reserved.
26
Router-Integrated Services
Network Analysis (NM-NAM)
Integrated traffic monitoring network module in branch routers to
build application level visibility into network infrastructure
• Useful for performance
monitoring, troubleshooting and
capacity planning at remote sites
• Easy to deploy and use with
embedded web based Traffic
Analyzer
New
NM-NAM
• Full visibility into applications,
hosts, conversations, and IP
based services including VoIP,
QoS, and VPN
• Reduces the need to send
personnel to remote sites or haul
monitoring data to central site
© 2004 Cisco Systems, Inc. All rights reserved.
27
Leading US Retailer To Deploy Converged Voice
and Data Solution for Remote Offices
“The Cisco 2800 Series router will become the
‘communications hub’ of our new stores and regional
offices. Instead of building separate voice key systems and
data networks, we’ll be able to deploy a single converged
solution that’s easier to manage, lowers our operating costs
and leverages the infrastructure already in place.
As we update our network, we’ll be able to easily adapt to
different WAN links and quickly add new services, when we
need them.
We’ll also have a secure platform for future applications like
kiosks, where we’ll provide partner connectivity using VPN
and encryption, while protecting our internal assets and
applications.”
© 2004 Cisco Systems, Inc. All rights reserved.
28
Best-of-Class Integrated Services Routers:
New Opportunities for Service Providers and Partners
“As a premier provider of managed services to the
most demanding of organisations, BT requires its
service platforms to deliver best-in-class service
capabilities, while at the same time, maintain the
highest levels of performance, security, and reliability.
Cisco’s new Integrated Services Routers, with their
ability to readily accommodate multiple services on a
single proven system, enables BT to be more effective
and more efficient in provisioning and supporting
managed services for its wide array of customers - from
the smallest networked business to the largest of global
corporations.”
Ron Maxwell,
British Telecom Product Manager for Convergent Solutions
© 2004 Cisco Systems, Inc. All rights reserved.
29
Summary
• Redefining “best in class” routing:
unique systems approach
• Complete new family for today’s
and tomorrow’s needs
Secure, data, voice, video
services at wire speed
More value, headroom for growth
• Industry and technology
leadership
• Maximum investment protection
• Comprehensive support and
services, global partnerships
© 2004 Cisco Systems, Inc. All rights reserved.
30
Presentation_ID
© 2004
Cisco
Systems,
Inc.AllAll
rights
reserved.
© 2004
Cisco
Systems, Inc.
rights
reserved.
31