Cisco 1700, 800, 1800, 3700, 7300 User Manual
...
CISCO ROUTER GUIDE
FOR TELEWORKERS, SMALL OFFICES, SMALL TO MEDIUM-SIZED BUSINESSES,
AND ENTERPRISE BRANCH AND HEAD OFFICES
CISCO ACCESS AND INTEGRATED SERVICES ROUTERS
Cisco SOHO, 800, 1700, 1800, 2600, 2800, 3700, 3800, 7200, and 7300 Series
FALL 20 04 /W INT ER 200 5 V.1
Cisco Access and Integrated
Services Routers
For Teleworkers, Small Offices, Small to Medium-Sized
Businesses, and Enterprise Branch and Head Offices
This is your guide to Cisco Access Routers and Cisco Integrated
Services Routers, the broadest and most versatile portfolio of
products for enabling the deployment of multiple advanced services.
Cisco Systems is the worldwide leader in networking systems
for organizations of all sizes, offering solutions that fully support
enterprise-wide deployment of networked business applications.
A foundation of the Intelligent Information Network, Cisco
routers provide high availability, comprehensive security, ease of
management, and advanced quality of service (QoS) for today’s most
demanding network services, including IP communications, video,
customer relationship management, financial transactions and other
real-time applications.
This guide shows how Cisco Access Routers and Cisco Integrated
Services Routers enable you to meet your current and future needs
with modular designs, allowing incremental migration as your
business and network requirements change.
In this guide, you can see for yourself how Cisco delivers benefits
beyond basic data access, providing services such as voice, security,
and wireless as part of an integrated routing system that maximizes
productivity and investment protection.
We’ve color-coded the guide to help you distinguish the new Cisco
Integrated Services Routers (red sections) from the popular line of
Cisco Access Routers (teal sections).
Cisco Access and Integrated
Services Routers
For Teleworkers, Small Offices, Small to Medium-Sized
Businesses, and Enterprise Branch and Head Offices
Quick Reference Guide
Series Overview
Cisco SOHO Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
Cisco 800 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Cisco 1700 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Cisco 1800 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
Cisco 2600 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
Cisco 2800 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Cisco 3700 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Cisco 3800 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57
Cisco 7200/7301 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Cisco 7304 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
Modularity
Network Modules. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
Interface Cards . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120
Advanced Integration Modules and Security Modules . . . . . . . . . . . 139
Compatibility Quick Looks
Network Module Compatibility Quick Look . . . . . . . . . . . . . . . . . . . . . 147
Interface Card Compatibility Quick Look . . . . . . . . . . . . . . . . . . . . . . . 153
Advanced Integration Module Compatibility Quick Look. . . . . . . . . . 156
Port Adapter Compatibility Quick Look . . . . . . . . . . . . . . . . . . . . . . . . 158
Product Transition Matrix . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162
NEW
Power Branch Solutions for Teleworkers,
Small to Medium-Sized Business, and
Enterprise Branch and Head Offi ces
Cisco offers the industry’s broadest and most versatile portfolio of
secure, high-performance access and integrated services routers, enabling
the deployment of a wide array of services to the farthest reaches of an
organization, from the home offi ce to the small offi ce to the large
enterprise branch and head offi ce.
Cisco SOHO Series
Small Offi ce/Home Offi ce
• Manageability and
reliability of Cisco
IOS® Software
Business-cla ss security
• Stateful inspection
fi rewall
Fixed confi guration
• 3DES Software
Encryption (Cisco SOHO
91, 96, 97)
• Some models with
integrated 4-port hub or
4-port 10/100 switch
• Dual Ethernet, ADSL,
ADSL over ISDN, and
G.SHDSL
Cisco 800 Series
Teleworker
Small Remote Offi ce
• Manageability and
reliability of Cisco
IOS Software
Business-cla ss security
• Stateful inspection
fi rewall
• VPN 3DES encryption
(hardware based on
Cisco 830s)
• Voice and data
integration
(Cisco 827-4V)
Fixed confi guration
• Some models with
integrated 4-port
hub or 4-port 10/100
switch
• Dual Ethernet, ADSL,
ADSL over ISDN, and
G.SHDSL
Cisco 1700 Series
Small/Medium-Sized
Business, Small Enterprise
Branch Offi ce
• Built-in Fast Ethernet
(10/100) LAN
• Manageability and
reliability of Cisco
IOS Software
Business-cla ss security
• Stateful inspection
fi rewall
• VPNs: software and
hardware encryption,
Cisco Easy VPN server/
remote
• Intrusion Prevention
System (IPS)
Multiservice data/voice
• Analog and digital voice
• Survivable Remote Site
Telephony (SRST)
• IP Communications
Express (CCME/CUE)
Modularity
• WAN/voice modular slots
• Wide array of WAN/voice
interface cards
• T1/E1, ISDN, ADSL,
G.SHDSL, Frame Relay
options through Network
Admission Control
NEW
Cisco 1800 Series
Small to Medium-sized
Businesses and Small
Enterprise Branch Offi ces
• Wire-speed performance
with secure data services
enabled at up to T1/E1/
xDSL rates
• Increased services density
for secure data services
• Support for nextgeneration High-speed
WAN Interface Cards
• Increased fl exibility
through support of
internal AIM slot for
high-speed VPN and
future applications
• Built-in dual Fast
Ethernet ports
• Support for over 30
existing and new modules
Secure Networking
• Hardware-based
VPN acceleration
on motherboard
• Anti-virus defense
• Intrusion Prevention
System (IPS)
• SDM Support
Integrated Switching
• Support for the new
4-port 10/100 managed
EtherSwitch module
acceleration
Cisco 2600 Series
Small/Medium-Sized
Enterprise Branch Offi ce
• Built-in Fast Ethernet
(10/100) LAN
Business-cla ss security
• Stateful inspection fi rewall
• VPNs: software and
hardware encryption,
Cisco Easy VPN
• Intrusion Prevention
System (IPS)
Multiservice data/voice
• Analog and digital
voice
• IP Communications Express
(CCME/SRST/CUE)
Modularity
• Wide array of WAN/voice
interface cards
• Network and advanced
integration module (AIM)
support
• Supports more than 70
network modules, AIMs,
voice/WAN interfaces
NEW
Cisco 2800 Series
Small to Medium-sized
Businesses and Enterprise
Branch Offi ce
• Wire-speed performance
up to multiple T1/E1/xDSL
rates
• Increased services density
for security, voice, caching,
video, network analysis,
and L2 switching
• Support for new
enhanced interfaces
(NME, HWIC, EVM, and
PVDM2)
• Built-in dual Fast Ethernet
or Gigabit Ethernet ports
• Support for over 90
existing and new modules
• Optional support for
integrated Power over
Ethernet (PoE)
Secure Networking
• Hardware-based
VPN acceleration on
motherboard
• Anti-Virus Defense
• Intrusion Prevention
System (IPS)
• SDM Support
IP Communica tions and
IP Telephony Support
• IP Communications
Express (CCME/SRST/CUE)
• Enhanced Modularity
(EVM and PVDM2 support)
Integrated Switching
• Up to 44 powered 10/100
switch ports
• 802.3af Power over
Ethernet compliance
Cisco 3700 Series
Integrated Enterprise
Branch Offi ce
• Built-in Fast Ethernet
(10/100) LAN
• Manageability and
reliability of Cisco
IOS Software
• High-service density in
compact form
• Single platform IP
telephony infrastructure
• Optional integrated
inline powered
low-density switching
Business-cla ss security
• Stateful inspection
fi rewall
• VPNs: software and
hardware encryption,
Cisco Easy VPN
• Intrusion Prevention
System (IPS)
• Software compression
Multiservice data/voice
• Analog and digital voice
• IP Communications
Express (CCME/SRST/CUE)
Modularity
• Wide array of WAN/voice
interface cards
• Network and advanced
integration module (AIM)
support
• Supports more than 70
network modules, AIMs,
and voice/WAN Interfaces
NEW
Cisco 3800 Series
Medium-Sized to Large
Businesses and Enterprise
Branch Offi ces
• Wire-speed performance
with services enabled at
up to T3/E3 rates
• Increased services
density for security, voice,
caching, video, network
analysis, and L2 switching
• Support for new enhanced
interfaces (NME, HWIC,
EVM, and PVDM2)
• Built-in dual Gigabit
Ethernet ports
• Support for over 90
existing and new modules
• Single small form
pluggable port
• High availability and
resiliency through online
insertion and removal
support, as well as
redundant systems and
optional inline power
Secure Networking
• Hardware-based
VPN acceleration on
motherboard
• Anti-virus defense
through Network
Admission Control
• Intrusion Prevention
System (IPS)
• SDM Support
IP Communica tions and
IP Telephony Support
• IP Communications Express
(CCME/SRST/CUE)
• Enhanced Modularity (EVM
and PVDM2 support)
Integrated Switching
• Up to 72 powered 10/100
switch ports
• 802.3af Power over
Ethernet compliance
Cisco 7200/7301 Series
Enterprise Head Offi ce
Environments
• Application versatility
Managed Network
Services, WAN
Aggregation, MPLS, VPN,
broadband aggregation,
QoS, and multiservice
Business-cla ss security/VPN
• Stateful inspection fi rewall
• VPNs: software and
hardware encryption,
Cisco Easy VPN
• Hardware compression
• Service-level validation
features
• Intrusion detection
system (IDS)
Multiservice data/voice
• Analog and digital voice
• Survivable Remote Site
Telephony (SRST)
• Multiservice interchange
(MIX)-enabled backplane
for service integration
Modularity
• Supports over 70
interfaces, providing a
comprehensive range
of connectivity options
from FE to GE, and DSO
through OC-12 DPT
• Shared interfaces with
Cisco 7400, Cisco 7500,
and Cisco 7600 Series
routers for common
sparing
• Built-in FE/GE ports on
the NPE-G1 processor for
high-performance LAN
connectivity
—
• Flexible processing
options, including
hardware-accelerated
IP services, with Parallel
Express Forwarding
• Comprehensive
management services
through Cisco Element
Cisco 7304 Series
Enterprise Head Offi ce
Environments
• High-performance
connectivity up to
OC-48 speeds
• Built-in GE for highperformance LAN
connectivity
• Hardware-accelerated
services with Parallel
Express Forwarding
• Optional redundant
processor and power
supplies for high availability in a single box
solution
• Multiprotocol support
Business-cla ss security/VPN
• Hardware-accelerated
Access Control Lists
• Stateful inspection
fi rewall
• Software compression
Modularity
• More than 20 network
line cards
• Chassis supports up
to 4 line cards or port
adapters
• Built in GE ports on
processor
• Support for 7x00 port
adapters
• Manageability and
reliability of Cisco IOS
Software
Cisco SOHO Series
Cisco SOHO Series broadband routers provide secure connectivity to small
remote offices with up to five users and teleworkers. The Cisco SOHO Series
Routers can support integrated security features of Cisco IOS Software such
as stateful inspection firewall protection, strong encryption for virtual private
networks (VPNs), easy setup for non-technical users with a Web-based setup tool,
and advanced management capabilities to lower operational costs. These routers
connect to a DSL line with an integrated modem (ADSL: SOHO 97; ADSL over
ISDN: SOHO 96; G.SHDSL: SOHO 78) or connect to an external DSL or cable
modem (SOHO 91).
BENE F I T S A N D ADVANTAG E S
Secure Internet Access
The Cisco SOHO Series Routers, recommended
for up to five users, allow all users in a small
office to share a secure broadband connection
with an integrated stateful inspection firewall.
Corporate teleworkers or small-office users can
also take advantage of the Cisco SOHO Series
Routers for VPN connections to the corporate
network. The SOHO 91, 96, and 97 routers can
set up secure Triple Data Encryption Standard
(3DES) encrypted connections using Cisco IOS
Software or, for all the SOHO Series Routers,
users can initiate VPN tunnels from PC-based
VPN clients on the LAN.
Easy Setup and Deployment
The Cisco SOHO Series Routers include the Cisco
Router Web Setup tool (CRWS), a Web-based
configuration tool that allows users to quickly selfinstall the router. Because CRWS is Web-based,
no additional software is required on the PC for
configuration. Users simply point a browser to
the router and follow a few easy steps to quickly
get the router up and running. Additionally,
the Cisco Configuration Express service allows
enterprise or service provider customers who
order products direct from Cisco to have preconfigured Cisco SOHO Series Routers shipped from
the manufacturer directly to the end users.
Advanced Management Features
for Low Cost of Ownership
To simplify management and reduce ongoing
operational costs, the Cisco SOHO Series
Routers take advantage of many debug and
troubleshooting features in Cisco IOS Software.
To further reduce operational costs, the routers
support centralized management and configuration updates with the Cisco IE 2100 Intelligent
Engine management appliance. The Cisco SOHO
Series Routers provide the right combination of
integrated security features, a four-port 10/100
Ethernet LAN switch on the SOHO 91, 96, and
97 routers, and advanced management features
to secure broadband connections for small
office and home office users. Cisco SOHO 90
Series routers offer out-of-band management
feature via virtual auxiliary port. Dynamic DNS
feature is available on Cisco 830 routers, which
enables the router to be accessible from outside
using a DNS name even when the WAN IP
address changes frequently.The Cisco SOHO
Series Routers use the same Cisco IOS Software
used in large service provider and enterprise
networks, allowing small-office users to take
advantage of the proven reliability of
Cisco IOS Software.
7
Cisco SOHO Series
Internet
Small Businesses with Site-to-Site,
Software-based VPNs
Small Business with
Firewall Protection
Cisco SOHO Series Router
Cisco SOHO 90 Series Router
Stateful Firewall
Cisco SOHO Series
WHEN TO DEPL OY
The Cisco SOHO Series is recommended when
you need to deploy:
• Affordable, small business multiuser access
with a DSL or cable line
• Internet access security with a stateful
inspection firewall
• An easy setup solution for non-technical
users
• Site-to-site software based VPNs
(Cisco SOHO 91, 96, and 97)
• A secure teleworker solution for users
who utilize PC VPN clients
• The proven reliability and manageability
of Cisco IOS Software
SERI E S D I STINCT I O N S
Cisco SOHO Series
WAN Technologies Ethernet, ADSL, ADSL over ISDN, G.SHDSL
Security Stateful firewall
VPN IPsec passthrough, IPsec 3DES encryption (Cisco SOHO 91, 96, and 97)
QoS DSL ATM QoS only
Upgradability Software updates to default software image only
APPL I C AT I ON EXAMP L E
PLATF O R M OVE R V I EW
Platform Target Key Fixed LAN Fixed WAN DRAM (MB) Flash (MB) Power
Market Features Connections Connections default max default max Supply
Ethernet to Ethernet Routers
Cisco SOHO 91 Small Business, Stateful firewall, 4-port 1-port 32 32 8 8 External
Remote Office, software-based 10/100 switch Ethernet
Teleworker IPsec 3DES, 10 MB
IOS Remote
Management
ADSL over ISDN Routers
Cisco SOHO 96 Small Business, Stateful firewall, 4-port 1-port 32 32 8 8 External
Remote Office software-based 10/100 switch ADSL over
Teleworker IPsec 3DES, ISDN
IOS Remote
Management
ADSL Routers
Cisco SOHO 97 Small Business, Stateful firewall, 4-port 1-port 32 32 8 8 External
Remote Office, software-based 10/100 switch ADSL
Teleworker IPsec 3DES,
IOS Remote
Management
G.SHDSL Routers
Cisco SOHO 78 Small Business, Firewall, Web 4-port 1-port 16 16 8 8 External
Remote Users GUI, IOS Remote Ethernet hub G.SHDSL
with VPN PC Management (10BASE-T)
Clients
SERI E S S P E C IFICATI O N S
Processor RISC CPU
Flash Memory 8 MB
System DRAM Memory 16 – 32 MB
Internal Power Supply No
Dimensions (H x W x D) 2.0 x 9.7 x 8.5 in. (5.1 x 24.6 x 21.6 cm)
Performance 9 Mbps Clear Text
Console Port 1 (up to 115.2 Kbps)
Maximum Ethernet Ports 4-port Ethernet LAN switch (SOHO90), 4-port hub (SOHO78)
Voice/Data Support 0
Integrated Modems 0
Maximum Number of ISDN BRI Ports 0
Maximum Number of ISDN PRI Ports 0
Integrated CSU/DSU No
Compression SW
Encryption SW
Redundant Power Supply Support No
Minimum Cisco IOS Software Release Dependent upon model
8
9
Cisco SOHO Series
CISC O I O S M EMORY R E Q UIREME N T S
Cisco SOHO Series Description DRAM (MB) Flash (MB)
soho78-y1-mz IP 16 8
soho91-k9oy6-mz IP/FW 3DES 32 8
soho96-k9oy6-mz IP/FW 3DES 32 8
soho97-k9oy1-mz IP/FW 3DES 32 8
Cisco 800 Series
ORDE R I N G I N FORMATI O N
Cisco SOHO Series Part Number Description
Cisco SOHO 78 CISCOSOHO78 Cisco SOHO 78 router, 1 G.SHDSL, 4E hub
Cisco SOHO 91 CISCOSOHO91 Ethernet router, 1E, 4E, 10/100 switch, stateful firewall, IPsec 3DES
Cisco SOHO 96 CISCOSOHO96 ADSL over ISDN router, 4E, 10/100 switch, stateful firewall, IPsec 3DES
Cisco SOHO 97 CISCOSOHO97 ADSL router, 4E, 10/100 switch, stateful firewall, IPsec 3DES
10
Cisco 800 Series of secure broadband routers are ideal for providing secure Internet
and corporate network connectivity to small remote offices and teleworkers.
The Cisco 800 Series of secure broadband routers provides a wide range of rich,
integrated security services, advanced quality-of-service (QoS) features for high-
quality voice, video, and data applications, and easy deployment and remote
management features with Cisco IOS software. The routers connect to the Internet
or corporate networks through an ADSL (Cisco 837, 827-4V), ADSL over ISDN
(Cisco 836), G.SHDSL (Cisco 828), ISDN (Cisco 801, 803), serial (Cisco 805), or via
an Ethernet WAN port connected to an external DSL or cable modem (Cisco 831).
BENE F I T S A N D A DVANTA G E S
Advanced Security and Performance for
Enterprise Class VPNs
The Cisco 800 Series delivers integrated
enterprise-class security services, including
hardware-accelerated IP security (IPsec) (Cisco
831, 836, and 837), Advanced Encryption
Standard (AES) and Triple Data Encryption
Standard (3DES) encryption for virtual private
networks (VPNs), and a stateful inspection
firewall for secure Internet connectivity.
A stateful firewall offers more intelligent
perimeter security by denying or permitting
WAN traffic based on a session’s state, so
requests from users behind the firewall can be
received, while still preventing unauthorized
access. With the support of Cisco Easy VPN
Remote, setup, management, and maintenance
of VPN connections is simple using Cisco
800 Series Routers. Other important security
features offered by Cisco 830 routers are
Intrusion Detection System (IDS), Dynamic
Multipoint VPN (DMVPN), DMZ interface, 802.1x,
Quality of Service for VPNs and Public Wireless
LAN security features.
High-quality, Secure Voice and Video
The advanced QoS features of the Cisco
800 Series Routers, combined with highperformance encryption on the 831, 836, and
837, provide high-quality voice and video
services to remote users. When IP phones are
connected at a remote site, a Cisco 800 Series
Router can queue and prioritize the voice traffic
over data traffic to ensure a high-quality, secure
voice over IP (VoIP) connection from the remote
or home office back to the corporate network.
Manageable, Scalable, and Reliable Access
The Cisco 800 Series utilizes valuable
management and deployment tools to deliver
the industry’s lowest total cost of ownership
for connecting small remote offices and
teleworkers to the corporate network. As a
remotely manageable platform, the Cisco 800
Series supports advanced remote troubleshooting commands available in Cisco IOS
Software; a virtual auxiliary port for
out-of-band management with an external
modem on the Cisco 831 and Cisco 837;
11
Cisco 800 Series
Cisco 800 Series
BENE F I T S A N D A DVANTA G E S continued
an ISDN port on the Cisco 836 router for out of
band management; and Secure Shell Protocol
(SSH) for secure in-band management via
Telnet. For scalability in deployment and
management, the Cisco Router Web Setup tool
(CRWS) or SDM allows non-technical users
to quickly set up the router and turn on key
features such as the stateful firewall. Cisco also
provides a suite of solutions—such as Cisco
Easy VPN, Cisco IE2100 management appliance,
Cisco VPN Solution Center (VPN SC), Cisco
Router Management Center (Router MC), and
Cisco Configuration Express—that allow for
scalable network deployment and management,
including automated security policy push, and
configuration updates.
SECU R I T Y FEATUR E S
VPN
• Encryption – AES and 3DES SW + HW (HW on 830 Series Only)
• Cisco Easy VPN Remote
• Cisco Site-to-Site VPN
• DMVPN
• DMZ
• 802.1x
• URL Filtering – Using Websense or N2H2 server
• MAX IPsec Tunnels Supported – 10 concurrent
Certifications
• ICSA – IPsec, Firewall (in process)
• Common Criteria – IPsec
For reliable access, the virtual AUX port on
the Cisco 831 and Cisco 837 and Cisco 836
can be used for dial backup with an external
modem, should the primary WAN connection
fail. The Cisco 836 offers this same functionality
but with an integrated ISDN port also. Dynamic
DNS feature is available on Cisco 830 routers
which enables the router to be accessible from
outside using a DNS name even when the WAN
IP address changes frequently. Additionally, the
Cisco 800 Series runs Cisco IOS Software, the
industry-proven software that has become the
standard for reliable business access.
WHEN TO DEPL OY
The Cisco 800 Series is recommended when you
need to deploy:
• Managed firewall and VPNs for small remote
offices and teleworkers
• High-performance VPNs over DSL or cable
(Cisco 831 or Cisco 837) with AUX port
functionality for remote sites or with ADSL
over ISDN and an integrated ISDN port
(Cisco 836)
• QoS features for voice, video, and missioncritical applications
• Simple to deploy and setup with Cisco Easy
VPN support
• VoIP with IP Phones (Cisco 831, 836, or 837) or
integrated VoIP ports (827-4V)
• The proven reliability and manageability of
Cisco IOS Software
SERI E S D I STINCT I O N S
Cisco 800 Series
WAN Technologies Ethernet, ADSL, ADSL over ISDN, G.SHDSL, serial
LAN Ports 4-port 10 MB Hub or 4-port 10/100 managed switch (Cisco 831, 836, or 837)
DMZ One LAN switch port can be converted in to a DMZ (Separate LAN) on 830 routers
Security Stateful Firewall, IDS and AES (Cisco 831, 836, or 837)
VPN Software IPsec 3DES encryption, hardware encryption
acceleration (Cisco 831, 836, or 837)
AUX or ISDN backup Virtual AUX port on 831 and 837, ISDN port on 836 for dial backup
Functionality and out-of-band management
Upgradability Software updates and upgrades to new software feature sets,
upgradable memory
SECU R I T Y A P P LICATI O N E X A M PLE
12
13
Cisco 800 Series
Internet
Broadband VPN Connection
for Small Remote Office with External Modem
Teleworker with IP Phone
Cisco
830 Series
Router
Cisco 831
Corporate
Headquarters
VPN Tunnels
IP
Cisco 800 Series
APPL I C AT I ON EXAMP L E
PLATF O R M OVE R V I EW
Platform Target Key Fixed LAN Fixed WAN DRAM (MB) Flash (MB) Power
Market Features Connections Connections default max default max Supply
ISDN and Serial Routers
Cisco 801 Small Business, Stateful firewall, 1-port 1-port ISDN 8 12 8 12 External
Remote Office, IPsec 3DES, Ethernet BRI (S/T)
Teleworker QoS, IOS Remote (10BASE-T)
Management
Cisco 803 Small Business, Stateful firewall, 4-port 1-port ISDN 8 12 8 12 External
Remote Office, IPsec 3DES, Ethernet hub BRI (S/T)
Teleworker QoS, IOS Remote (10BASE-T) 2 analog
Management telephone ports
Cisco 805 Small Business, Stateful firewall, 1-port 1-port serial 4 12 8 16 External
Remote Office, IPsec 3DES, Ethernet (up to
Teleworker QoS, IOS Remote (10BASE-T) 512 Kpbs)
Management
Ethernet to Ethernet Routers
Cisco 831 Small Business, Stateful firewall, 4-port 1-port 48 48 12 24 External
Remote Office, hardware-based 10/100 switch Ethernet
Teleworker IPsec 3DES, 10 MB
QoS, Virtual AUX
port, Easy VPN,
IOS Remote
Management
ADSL over ISDN Routers
Cisco 836 Small Business Stateful firewall, 4-port 1-port 48 48 12 24 External
Remote Office hardware-based 10/100 switch ADSL over
Teleworker IPsec 3DES, QoS, ISDN
ISDN Line,
Cisco Easy VPN, 1-port
IOS Remote ISDN
Management BRI S/T
14
PLATF O R M OVE R V I EW continued
Platform Target Key Fixed LAN Fixed WAN DRAM (MB) Flash (MB) Power
Market Features Connections Connections default max default max Supply
ADSL Routers
Cisco 827-4V Small Business, Stateful firewall, 4-port 1-port 48 32 8 16 External
Remote Office, software-based 10/100 hub ADSL
Teleworker IPsec 3DES, QoS, 10 MB
Easy VPN, IOS
Remote Management
Cisco 837 Small Business Stateful firewall, 4-port 1-port 48 48 12 24 External
Remote Office, hardware-based Ethernet switch ADSL
Teleworker IPsec 3DES, QoS, (10BASE-T)
Virtual AUX,
Cisco Easy VPN,
IOS Remote
Management
G.SHDSL Routers
Cisco 828 Small Business, Stateful firewall, 4-port 1-port 16 32 8 8 External
Remote Office, IPsec 3DES, Ethernet hub G.SHDSL
Teleworker Easy VPN, QoS, (10BASE-T)
IOS Remote
Management
SERI E S S P E C IFICATI O N S
Processor RISC CPU
Flash Memory 8–16 MB (Cisco 830 Series expandable up to 24 MB)
System DRAM Memory 4–48 MB (Cisco 800 Series expandable from 12–48 MB
depending on model)
Internal Power Supply No
Dimensions (H x W x D) 2.0 x 9.7 x 8.5 in. (5.1 x 24.6 x 21.6 cm)
Performance 9 Mbps Clear Text
Console Port 1 (up to 115.2 Kbps)
Auxiliary Port Virtual AUX functionality through Console for out-of-band
management or dial backup
ISDN Port ISDN port on the 836 for out-of-band management and dial backup
Maximum Ethernet Ports 4-port 10/100 switch on 830 Series, 4-port 10 MB hub
or a single 10 MB LAN port on other models
DMZ One DMZ port on 831, 836, and 837 only
Maximum High-speed Serial (up to 512 Kbps) 1 (Cisco 805)
Maximum Low-speed Serial (up to 128 Kbps) 0
Voice/Data Support Cisco 827-4V only
Integrated Modems 0
Maximum Number of ISDN BRI Ports 1 (Cisco 836)
Maximum Number of ISDN PRI Ports 0
Integrated CSU/DSU No
Compression SW
Encryption SW on most models and HW on 830 Series models
Redundant Power Supply Support No
Minimum Cisco IOS Software Release Dependent upon model
15
Cisco 800 Series
Cisco 800 Series
CISC O I O S M EMORY R E Q UIREME N T S
Description DRAM (MB) Flash (MB)
Cisco 801-804
c800-k8nosy6-mw IP/IPX/Firewall/IPsec 3DES Plus 12 8
c800-k8osy6-mw IP/Firewall/IPsec 3DES Plus 12 8
c800-oy6-mw IP/Firewall 8 8
c800-sy6-mw IP Plus 8 8
c800-y6-mw IP 4 8
Cisco 805
c805-k8nosy6-mw IP/IPX/Firewall/IPsec 3DES Plus 12 8
c805-k8osy6-mw IP/Firewall/IPsec 3DES Plus 12 8
c805-oy6-mw IP/Firewall 8 4
c805-sy6-mw IP Plus 8 8
c805-y6-mw IP 8 4
Cisco 828
c806-k9osy6-mz IP/Firewall/IPsec 3DES Plus 20 8
c806-oy6-mz IP/Firewall 16 8
c806-sy6-mz IP Plus 16 8
c806-y6-mz IP 16 8
Cisco 831
c831-k9o3y6-mz IP/Firewall/IPsec 3DES 32 8
c831-k9o3sy6-mz IP/Firewall/IPsec 3DES Plus 32 8
Cisco 836
c836-k9o3y6-mz IP/FW/IPsec 3DES 32 8
c836-k9o3sy6-mz IP/FW PLUS IPsec 3DES 32 8
c836-k9o3s8y6-mz IP/FW PLUS IPsec 3DES Dial Backup 32 8
ORDE R I N G I N FORMATI O N
Cisco 800 Series Part Number Description
Cisco 801 CISCO801 ISDN/Ethernet router
Cisco 803 CISCO803 ISDN BRI/Ethernet router, 4-port hub, 2 POTS
Cisco 805 CISCO805 Cisco 805 Ethernet/serial router
Cisco 811 CISCO811 ISDN Ethernet router with integrated Japan DSU
Cisco 813 CISCO813 ISDN/Ethernet router with integrated 4-port hub, Japan DSU
Cisco 827-4V CISCO827-4V Cisco 827-4V ADSL router 1E, 1 ADSL, 4 voice
Cisco 828 CISCO828 Cisco 828 G.SHDSL router 1E, 1 G.SHDSL
Cisco 831 CISCO831-K9 Ethernet router, 1E, 4E 10/100 switch, stateful firewall,
IPsec 3DES hardware, virtual AUX
Cisco 836 CISCO836-K ADSL over ISDN router, 1 ADSL over ISDN, 4-port 10/100 switch,
ISDN port, stateful firewall, hardware-based IPsec 3DES
Cisco 837 CISCO837-K9 ADSL router, 4E, 10/100 switch, stateful firewall,
IPsec 3DES hardware, virtual AUX
Cisco 837
c837-k9o3y6-mz IP/Firewall/IPsec 3DES 32 8
c837-k9o3sy6-mz IP/Firewall/IPsec 3DES Plus 32 8
16
17
Cisco 800 Series
NOT E S
Cisco 1700 Series
The Cisco 1700 Series of access routers is designed to provide a cost-effective,
integrated routing platform for small and medium-sized businesses and enterprise
small branch offices, ensuring new services can be deployed efficiently as needs
change. These routers provide flexibility and manageability through a variety of
modular and fixed design offerings to meet demanding and evolving requirements,
such as comprehensive security, multiservice data/voice/video/fax integration, and
business-class DSL support.
BENE F I T S A N D A DVANTA G E S
Flexibility and Investment Protection
The modularity of the Cisco 1700 Series
allows it to easily adapt to evolving needs.
Interchangeable WAN interface cards (WICs),
voice interface cards (VICs), and voice/WAN
interface cards (VWICs) enable easy additions or
changes, without requiring a forklift upgrade of
an entire platform. The wide range of available
WIC solutions supports WAN technologies such
as broadband DSL, ISDN, leased lines, and
Frame Relay, while VIC solutions can support
voice over IP and voice over Frame Relay. These
modules are shared with Cisco 1800, 2600,
2800, 3700, and 3800 Series Routers.
Comprehensive Security
To keep networks secure and protect sensitive
information, businesses deploy a range of
security technologies, including firewall, VPN,
and Intrusion Prevention System (IPS). Cisco
1700 Series Routers provide stateful inspection
firewall, wire-speed VPN with hardware
encryption module, and intrusion detection
capabilities. As new security technologies are
developed, they may simply be uploaded.
18
Business-class DSL Connectivity
DSL WICs supporting different standards (such
as ADSL over POTS, ADSL over ISDN, ADSL
over POTS with dying gasp, and G.SHDSL)
offer business-class broadband service with
scalable performance, flexibility, and security for
branch offices. The Cisco 1700 Series provides
the perfect solution for a variety of businesses
requiring high-speed business-class DSL
connectivity on a secure, high-performance,
modular platform.
Multiservice Data/Voice/
Video/Fax Integration
In addition to supporting the same security
and business-class DSL features as the entire
Cisco 1700 Series, the Cisco 1751 and 1760
offer a cost-effective way to extend converged
multiservice data/voice networking to branch
offices. They work with existing phones and
other equipment, simplifying deployment of IP
telephony. Service integration using IP protocols
over the Internet enables administrators to
reduce long-distance toll charges between
offices, and support voice-enabled desktop
applications such as integrated messaging
and packet video.
19
V
PSTN
IP Networ
k
Analog Voice
or
ISDN BRI Lines
Analog Phone
Cisco 1760KTS/PBX
Cisco Catalyst® Switch
PC
PC
PC
Fa
x
Cisco IP Phone
IP
Cisco IOS Router Enabled with
Firewall and Easy VPN Remote
Mobile Worker with Cisco
VPN Client Enabled on Laptop
Cisco Router Enabled
with Firewall and
Easy VPN Server
Bra nch
Off ice
Tel ewor ker
VPN Tunnels
Internet
Cisco 1700 Series
Cisco 1700 Series
SECU R I T Y FEATUR E S
VPN
• Encryption – 3DES (SW + HW), AES (SW) available in 12.2(13)T
• VPN QoS – Preclassification support
• Easy VPN server and easy VPN remote
• MAX IPsec tunnels supported – 100 with VPN module
• IDS – 59 signatures supported
Certifications
• ICSA – IPsec, Firewall (in process)
• Common Criteria – (VPN): Cisco 1720 and 1750
• Common Criteria – IPsec, Cisco 1710, 1721, 1751, and 1760 (in process)
SECU R I T Y EXAMPL E
Easy VPN Remote Application
WHEN TO DEPL OY
The Cisco 1700 Series is ideal for customers
who need:
• The flexibility to add or change WAN services
to support changing needs and applications,
including VPNs, integrated voice/fax/data
over the WAN, broadband DSL, and cable
access services
• An integrated access solution that combines
a best-in-class router with firewall, high-speed
encryption, VPN tunnel server, DSU/CSU, and
ISDN NT-1 functions in one platform
• VPN remote aggregation to terminate VPN
software clients at the branch office
APPL I C AT I ON EXAMP L E
• High-speed business-class DSL
connectivity on a secure, high-performance
modular platform
• A secure access solution with VPN (T1/E1
speeds) and firewall for enterprise small
branch offices and small to medium-sized
businesses
• Multiservice voice/video/fax/data integration
• Up to five serial interfaces (including the
AUX port); for example: retail/point-of-sale
or small bank branch office applications
Easy VPN Server Application
20
21
Cisco 1700 Series
Cisco 1700 Series
PLATF O R M OVE R V I EW
VICs/ Fixed DRAM (MB) Flash (MB) Power
WICs VICs WICs LAN Ports* default max default max Supply
Cisco 1701-K9 - - - 1 96 128 32 32 AC
Cisco 1711-VPN/K9 - - - 1 96 128 32 32 AC
Cisco 1712-VPN/K9 - - - 1 96 128 32 32 AC
Cisco 1721 2 - - 1 64 128 32 32 AC
Cisco 1751 - 1 2 1 64 128 32 32 AC
Cisco 1751-V - 1 2 1 96 128 32 32 AC
Cisco 1760 - 2 2 1 64 128 32 64 AC
Cisco 1760-V - 2 2 1 96 128 32 64 AC
*The Cisco 1711 and 1712 have two fixed interfaces. The Cisco 1711 comes with one ADSL over POTS and one ISDN BRI-S/T interface.
The Cisco 1712 offers one ADSL over ISDN and one ISDN BRI-S/T interface.
SERI E S S P E C IFICATI O N S
Processor RISC CPU
Dimensions (H x W x D)
1711, 1712, 1721, 1751, 1751-V 4.0 x 11.2 x 8.7 in. (10.0 x 28.4 x 22.1 cm)
1760, 1760-V (rack-mount) 1.7 x 17.5 x 12.8 in. (4.32 x 44.5 x 32.5 cm)
Flash Memory 32 MB (some models expandable to 64 MB)
System DRAM Memory 64 MB (all models expandable to 128 MB)
Internal Expansion Slots 1 (e.g., for VPN Module)
Internal Power Supply AC (internal for Cisco 1760 only)
Console Port 1 (up to 115.2 Kbps)
Auxiliary Port 1 (up to 115.2 Kbps)
Maximum Ethernet Connections 5 (1XFE onboard + 4 ports on WIC-4ESW)
Maximum 10/100 Ethernet Ports 1
Maximum High-speed Serial (up to 2 Mbps) 4
Voice/Data Support Cisco 1751, 1751-V, 1760, 1760-V
Maximum Number of ISDN BRI Ports 4/4
Integrated CSU/DSU Yes, with optional T1/E1, Fractional T1/E1, 56k/64k support
Compression SW
Encryption SW + HW
Redundant Power Supply Support No
Minimum Cisco IOS Release Dependent upon model
802.11q VLAN Support Yes
NOT E S
22
23
Cisco 1700 Series
CISC O I O S M E M O RY R E Q U I R EMENT S
Cisco 1700 Series Data and Voice Software Feature Sets for Cisco IOS Release 12.3(10)
Recommended
Platform Image Name Software Product Description Product Code Flash DRAM
1751-V, 1760 c1700-adventerprisek9-mz Cisco 1700 IOS ADVANCED ENTERPRISE SERVICES S17AESK9-12310 32 96
1751-V, 1760 c1700-advipservicesk9-mz Cisco 1700 IOS ADVANCED IP SERVICES S17AISK9-12310 32 96
1721, 1751, 1751-V, 1760 c1700-advsecurityk9-mz Cisco 1700 IOS ADVANCED SECURITY S17ASK9-12310 16 48
1751-V, 1760 c1700-bk9no3r2sv8y7-mz Cisco 1700 IOS IP/ADSL/IPX/AT/IBM/VOX/FW/IDS
PLUS IPSEC 3DES S17Q7V8K9-12310 32 96
1721, 1751, 1751-V, 1760 c1700-bk9no3r2sy7-mz Cisco 1700 IOS IP/ADSL/IPX/AT/IBM/FW/IDS
PLUS IPSEC 3DES S17Q7HK9-12310 16 64
1720, 1721, 1750, 1751, 1751-V, 1760 c1700-bnr2sy7-mz Cisco 1700 IOS IP/ADSL/IPX/AT/IBM PLUS S17Q7P-12310 16 48
1721, 1751, 1751-V, 1760 c1700-entbase-mz Cisco 1700 IOS ENTERPRISE BASE S17EB-12310 16 48
1751-V, 1760 c1700-entservicesk9-mz Cisco 1700 IOS ENTERPRISE SERVICES S17ESK9-12310 32 64
1721, 1751, 1751-V, 1760 c1700-ipbase-mz Cisco 1700 IOS IP BASE S17IPB-12310 16 48
1751-V, 1760 c1700-ipvoice-mz Cisco 1700 IOS IP VOICE S17IPV-12310 16 64
1751-V, 1760 c1700-k9o3sv8y7-mz Cisco 1700 IOS IP/ADSL/VOX/FW/IDS PLUS IPSEC 3DES S17C7V8K9-12310 32 96
1720, 1721, 1750, 1751, 1751-V, 1760 c1700-k9o3sy7-mz Cisco 1700 IOS IP/ADSL/FW/IDS PLUS IPSEC 3DES S17C7HK9-12310 16 48
1751-V, 1760 c1700-spservicesk9-mz Cisco 1700 IOS SP SERVICES S17SPK9-12310 16 64
1750, 1751, 1751-V, 1760 c1700-sv3y-mz Cisco 1700 IOS IP/VOICE PLUS S17CVP-12310 16 48
1751, 1751-V, 1760 c1700-sv8y7-mz Cisco 1700 IOS IP/ADSL/VOX PLUS S17C7V8P-12310 16 64
1720, 1721, 1750, 1751, 1751-V, 1760 c1700-sy7-mz Cisco 1700 IOS IP/ADSL PLUS S17C7P-12310 16 48
1720, 1721, 1750, 1751, 1751-V, 1760 c1700-y-mz Cisco 1700 IOS IP S17C-12310 8 32
1720, 1721, 1750, 1751, 1751-V, 1760 c1700-y7-mz Cisco 1700 IOS IP/ADSL S17C7-12310 16 48
24
25
Cisco 1700 Series
ORDE R I N G I N FORMATI O N
Routers
Product Number Product Description
CISCO1760 10/100 modular router with 4 slots, 32 MB Flash/64 MB DRAM, IOS IP,
19-inch chassis
CISCO1760-V 10/100 modular router with 3 slots, 32 MB Flash/96 MB DRAM, IOS IP,
19-inch chassis
CISCO1751 10/100 modular router with 3 slots, IOS IP, 32 MB Flash/64 MB DRAM
CISCO1751-V 10/100 modular router with voice, 32 MB Flash/96 MB DRAM
CISCO1721 10/100 modular router with 2 slots (data only),
32 MB Flash/64 MB DRAM
CISCO1712-VPN/K9 1712 security router with VPN module, 4-port switch, ISDN-BRI-S/T,
32 MB Flash/96 MB DRAM, IOS IP/FW/3DES
CISCO1711-VPN/K9 1711 security router with VPN module, 4-port switch, analog modem
32 MB Flash/96 MB DRAM, IOS IP/FW/IDS
CISCO1701-K9 ADSLoPOTS router with ISDN-BRI-S/T, IOS IP/FW/3DES,
32 MB Flash/96 MB DRAM
DSL Bundles
Product Number Product Description
CISCO1760-ADSL 1760 bundle with ADSLoPOTS WIC, IP/ADSL, 32 MB Flash/64 MB DRAM
CISCO1760-SHDSL 1760 bundle with WIC-1SHDSL, IP/ADSL, 32 MB Flash/64 MB DRAM
CISCO1721-ADSL 1721 bundle with ADSLoPOTS WIC, IP/ADSL, 32 MB Flash/64 MB DRAM
CISCO1721-ADSL-DG 1721 bundle with WIC-1ADSL-DG, IP/ADSL, 32 MB Flash/64 MB DRAM
CISCO1721-ADSL-I 1721 bundle with ADSLoISDN WIC, IP/ADSL, 32 MB Flash/64 MB DRAM
CISCO1721-SHDSL 1721 bundle with WIC-1SHDSL, IP/ADSL, 32 MB Flash/64 MB DRAM
CISCO1721-SHDSL-V2 1721 bundle with WIC-1SHDSL-V2, IP/ADSL, 32 MB Flash/64 MB DRAM
Security Bundles
Product Number Product Description
CISCO1760-VPN/K9 1760 VPN bundle with VPN module, 32 MB Flash/96 MB DRAM, IP Plus/FW/3DES
CISCO1760-VPN/K9-A 1760 VPN bundle with ADSL WIC, VPN module, 32 MB Flash/96 MB DRAM,
IP Plus/FW/3DES
CISCO1760-V3PN/K9 1760 V3PN bundle with 1760-V, VPN module, PVDM-256K-4,
32 MB Flash/128 MB DRAM, IOS advanced IP services
CISCO1751-VPN/K9 1751 VPN bundle with VPN module, 32 MB Flash/96 MB DRAM, IP Plus/FW/3DES
CISCO1751-VPN/K9-A 1751 VPN bundle with ADSL WIC, VPN module, 32 MB Flash/96 MB DRAM,
IP Plus/FW/3DES
CISCO1721-VPN/K9 1721 VPN bundle with VPN module, 32 MB Flash/96 MB DRAM, IP Plus/FW/3DES
CISCO1721-VPN/K9-A 1721 VPN bundle with ADSL WIC, VPN module, 32 MB Flash/96 MB DRAM,
IP Plus/FW/3DES
CISCO1700-VPNU/K9= VPN Upgrade kit with VPN module, 32 MB DRAM, IP Plus/FW/3DES
Cisco 1800 Series
Cisco Systems® is redefi ning best-in-class enterprise and small to medium-sized
business (SMB) routing with a new line of integrated services routers that are
optimized for the secure, wire-speed delivery of data services. Founded on
20 years of leadership and innovation, Cisco 1800 Series integrated services
routers intelligently embed data and security into a single, resilient system
for fast, scalable delivery of mission-critical business applications. The Cisco
1800 Series architecture has been specifi cally designed to meet requirements
of SMBs, small enterprise branch offi ces, and service-provider-managed
services applications for delivery of concurrent secure data services at wire-
speed performance. The integrated, secure systems architecture of the Cisco
1800 Series delivers maximum business agility and investment protection.
BENE F I T S A N D A DVANTA G E S
Enhanced Architecture
The Cisco 1841 Integrated Services Router
provides secure data connectivity at up to one
T1/E1/xDSL WAN connectivity rates. It provides
signifi cant additional value compared to prior
generations of Cisco 1700 Series routers by
offering more than a fi ve-fold performance
increase, integrated onboard hardware-based
encryption enabled by an optional Cisco IOS®
Software security image, and a dramatic
increase in interface card slot performance and
density. Support for one internal Advanced
Integration Module (AIM) slot is provided for
additional hardware-accelerated encryption
and scalability. The modular architecture
on the Cisco 1841 router also supports two
newly designed high-speed WAN interface
card (HWIC) slots which signifi cantly increase
data-throughput capability (up to 800 Mbps
aggregate). The Cisco 1841 also offers integrated
dual high-speed Ethernet LAN ports to allow
LAN segmentation and to help enable
connectivity speeds up to 100BASE-T Ethernet
technology. Ample default memory (Flash,
SDRAM) is provided to support deployment
of concurrent services.
Flexibility and Investment Protection
The modular architecture of the Cisco 1841
router offers a wide variety of LAN and
WAN options; interface cards and modules
are fi eld-upgradable to accommodate
future technologies. The Cisco 1841 delivers
investment protection with support for more
than 30 modules and interface cards, including
existing WICs and voice WAN interface cards
(VWICs – on the Cisco 1841 router for data
support only) as well as Advanced Integration
Modules (AIM). This integrated services router
provides many types of slots to add connectivity
and data and security services in the future on
an integrate-as-you-grow basis.
Market-leading Integrated Security
A primary component of the Cisco Selfdefending Network, the Cisco 1841 integrated
services router ships with the industry’s
26
27
Cisco 1800 Series
Cisco 1800 Series
28
BENE F I T S & A DVAN TA G E S continued
most comprehensive security services
embedded within the router that can be enabled
with a Cisco IOS Security Image. This provides
customers with a single, resilient platform to
rapidly deploy secure networks and applications. The Cisco 1800 Series was designed with
integrated security to provide a tight coupling
among security, routing, and other integrated
services throughout the network. With a Cisco
IOS Software-based VPN, fi rewall, and intrusion
prevention system (IPS), as well as optional
enhanced VPN acceleration, and network
admission control (NAC) support for anti-virus
defense, the Cisco 1841 offers a robust and
adaptable security solution for branch-offi ce
routers. Every Cisco 1800 Series router comes
with the factory-installed Cisco Router and
Security Device Manager (SDM). Cisco SDM is
an intuitive, Web-based device manager that
offers easy router confi guration and monitoring,
startup wizards for quick deployment and lockdown, smart wizards to help enable security
and routing features, Cisco Technical Assistance
Center (TAC)-approved router confi gurations,
and subject-related educational content.
Integrated Services
By providing integrated services, as well as
great modular density and high performance,
the Cisco 1841 router provides security,
versatility, scalability, and fl exibility for multiple
applications to the small-to-medium-sized
business, small enterprise branch offi ce, and the
service provider customer edge. The Cisco 1841
router easily accommodates several network
applications, such as secure branch-offi ce data
access (including NAC for antivirus defense),
VPN access and fi rewall protection, businessclass DSL, IPS support, inter-VLAN routing,
and serial device concentration. The Cisco 1841
router provides customers with the industry’s
most fl exible, secure, and adaptable infrastructure to meet both today’s and tomorrow’s
business requirements for maximum
investment protection.
SECU R I T Y FEATUR E S
Cisco IOS Software Firewall
• Stateful, application-based fi ltering (context-based access control)
• Per-user authentication and authorization
• Real-time alerts
• Transparent fi rewall
• IPv6 fi rewall
VPN
• Advanced Encryption Standard (AES) 128, 192, and 256 ;
Triple Data Encryption Standard (3DES), and DES cryptology support
• Embedded hardware-based VPN acceleration on the motherboard
• Support for optional higher-performance AIM-based security acceleration
• Cisco Easy VPN remote and server support
• Dynamic Multipoint VPN (DMVPN)
Onboard USB 1.1 port
• Future support for secure token and Flash memory
IPS
• More than 700 IPS signatures supported in Cisco IOS Software,
with the ability to load and enable selected IPS signatures
URL fi ltering
• Local URL fi ltering in Cisco IOS Software based on external server
Cisco SDM
• Cisco Router and Security Device Manager (SDM)
SECU R I T Y EXAMPL E
Branch offi ce Network Admission Control (NAC) helps ensure that every endpoint complies with
network security policies before being granted access, protecting the network from viruses and worms.
WHEN TO DEPL OY
Deploy the Cisco 1800 Series when you need:
• Performance and densities for concurrent data
and security services up to one T1/E1/xDSL
WAN connectivity rates
• The fl exibility to add or change WAN services
to support changing needs and applications,
including serial T1, E1, ISDN and broadband
DSL, etc.
• VPN connections, or plan to migrate to them
over time
• Low density (up to eight ports) of integrated
10/100 switching
• Integrated security services as part of the
Cisco Self-Defending Network, which enable
network device protection, threat defense,
secure connectivity, and endpoint protection
and control
• Advanced management for security, routing,
quality of service (QoS), and switching
services with Cisco SDM Version 2.0
PLATF O R M OVE R V I EW
Fixed
LAN
HWIC
AIM
PVDM*
NME*
Slots
EVM*
Slots
Cisco
1841
Ports
Slots
Slots
Slots
2 2 1 0 0 0 128 384 32 128 AC
* NME = Enhanced Network Module; EVM = Extension Voice Module; PVDM = Packet Voice/Digital
Signal Processor Module
DRAM (MB)
Default Max
Flash (MB)
Default Max
Power
Supply
29
Cisco 1800 Series
Cisco 1800 Series
SERI E S S P E C IFICATI O N S
Dimensions (H x W x D)
Cisco 1841 1.73 x 13.5 x 10.8 in. (43.9 x 343 x 274 mm)
Console port 1 (up to 115.2 kbps)
Auxiliary port 1 (up to 115.2 kbps)
USB port 1
Integrated channel service Yes, with optional T1/E1, Fractional T1/E1, 56k/64k support
unit/data service unit (CSU/DSU)
Voice/data support Only data support
Compression Software and hardware
Encryption Hardware support on motherboard; optional AIM for enhanced performance
Maximum 10/100 switch ports
Cisco 1841 8 (without onboard Fast Ethernet ports)
Maximum integrated modems 4
Maximum ISDN Basic Rate 4
Interface (BRI) ports
CISC O I O S M E M O RY R E Q U I R EMENT S
Support for Cisco 1800 Series routers begins with Cisco IOS Software Release 12.3(8)T4.
The following table lists the memory requirements for Cisco IOS Software on the Cisco 1841
Integrated Services Router.
Cisco IOS Software Feature Sets Software Image Flash Memory DRAM Memory
IP Base c1841-ipbase 32 MB 128 MB
IP Broadband* c1841-broadband 32 MB 128 MB
Enterprise Base c1841-entbase 32 MB 128 MB
Advanced Security c1841-advsecurityk9 32 MB 128 MB
SP Services c1841-spservicesk9 32 MB 128 MB
Enterprise Services c1841-entservicesk9-mz 32 MB 128 MB
Advanced IP Services c1841-advipservicesk9-mz 32 MB 128 MB
Advanced Enterprise Services c1841-adventerprisek9-mz 32 MB 128 MB
* IP Broadband image is first available on 12.3(11)T
ORDE R I N G I N FORMATI O N
Cisco 1800 Series Base Chassis Part Numbers
Part Number Product Description
CISCO1841 Cisco 1800 Series Modular Router with two integrated Fast Ethernet slots,
two WAN slots, IP BASE, 32 MB of Flash memory and 128 MB of DRAM
PROD U C T B U NDLES
SECURITY BUNDLES
Product Number Product Description
CISCO1841-SEC/K9 Cisco 1841 security bundle with advanced security, 64 MB Flash/256 MB DRAM
CISCO1841-HSEC/K9 Cisco 1841 security bundle with AIM-VPN/BPII-PLUS, Advanced IP Services,
64 MB Flash/256 MB DRAM
CISCO1841-T1SEC/K9 Cisco 1841 security bundle with WIC-1DSU-T1-V2, Advanced Security,
64 MB Flash/256 MB DRAM
BROADBAND BUNDLES
Product Number Product Description
CISCO1841-ADSL Cisco 1841 asymmetric DSL (ADSL) over POTS (ADLSoPOTS) bundle, IP broadband,
32 MB Flash/128 MB DRAMs
CISCO1841-ADSLI Cisco 1841 ADSLoISDN bundle, IP broadband, 32 MB Flash/128 MB DRAM
CISCO1841-ADSL-DG Cisco 1841 ADSLoPOTS bundle with dying gasp, IP broadband, 32 MB Flash/
128 MB DRAM
CISCO1841-SHDSL Cisco 1841 G.SHDSL 2-wire bundle, IP broadband, 32 MB Flash/128 MB DRAM
T1 BUNDLES
Product Number Product Description
CISCO1841-T1 Cisco 1841 security bundle, advanced security, 32 MB Flash/128 MB DRAM
30
31
Cisco 1800 Series
NOT E S
Cisco 2600 Series
Cisco extends enterprise/provider-class versatility, integration, and power to
branch offices with Cisco 2600 Series modular access routers. With more than
2 million 2600 Series units installed worldwide, this popular series offers network
managers and service providers flexibility and investment protection in a compact,
single-box solution.
BENE F I T S A N D A DVANTA G E S
Integrated Flexible Routing
and Low-density Switching
With the suppor t of an optional 16- port
10/100 EtherSwitch® network module, branch
offices can take advantage of the flexibili ty of
integrated routing and switching func tions
in one unit for low por t densities. This offers
high- speed connec tions between individual
desk tops, servers, and other net work
resources in a single unit for Layer 2, and
allows WAN connec tion at Layer 3 through
the router. An optional external power chassis
provides power to IP phones and Cisco
Aironet® 802.11 base stations.
Integration of Content Networking
and Branch-office Routing
With the integration of an optional Content
Engine Network Module with branch-office
routing, Cisco offers the industry’s first and
only router-integrated content-delivery system.
Combining intelligent caching, content routing
and management with robust branch-office
routing, WAN bandwidth is conserved for
32
important branch IP services such as voice
over IP (VoIP), while simplifying configuration,
deployment, and operations.
Versatility/Investment Protection
Thousands of field-upgradable customized
solutions ensure easy migration to future
network requirements. More than 80 WAN
interface cards (WICs) and network modules
(NMs) are shared with the Cisco 1700, 1800,
2800, 3700, and 3800 Series products. The
advanced integration module (AIM) slot offers
expandability for integration of advanced
services, such as hardware-assisted data
compression, encryption, voice and ATM
hardware-assisted data compression, voice
mail, and encryption.
Integration of Security
and Branch-office Routing
By integrating optional VPN modules, IOSbased firewall, IOS or optional hardware-based
intrusion detection, or Web site-filtering using
the content engine network modules or
33
Cisco IOS Router Enabled with
Firewall and Easy VPN Remote
Mobile Worker with Cisco
VPN Client Enabled on Laptop
Cisco Router Enabled
with Firewall and
Easy VPN Server
Bra nch
Off ice
Tel ewor ker
VPN Tunnels
Internet
Cisco 2600 Series
Cisco 2600 Series
BENE F I T S A N D A DVANTA G E S continuedBENE F I T S A N D A DVANTA G E S continued
Cisco IOS software, Cisco offers the industry’s
most robust and adaptable security solution
for branch office routers. The optional VPN
modules support 3DES, AES, and hardwarebased compression. Additionally, the new
Cisco Intrusion Detection System (IDS) network
module allows traffic inspection at the first
point of entry into the network while freeing the
router CPU from processor-intensive IDS tasks.
Multiservice Voice/Data Networks
Supports up to 90 simultaneous calls, using
analog and digital connections to phones,
faxes, key systems, PBXs, and PSTN switches,
for Cisco IP telephony networks. Delivers
IP telephony enriching features including
Survivable Remote Site Telephony (SRST), Cisco
CallManager Express (CCME) for localized call
processing, Cisco Unity™ Express (CUE) for
voice-mail, audioconferencing and transcoding
capabilities. Using Cisco IOS quality-of-service
(QoS) features, such as LLQ, CB-WFQ, WRED,
CAR, RSVP, and Custom and Priority Queuing,
voice traffic is digitized and encapsulated in IP
packet, Frame Relay, or ATM and consolidated
with data to extend multiservice infrastructure
to the branch office.
Business-class DSL Connectivity
The WIC-1ADSL, WIC-1ADSL-DG, WIC-1ADSLI-DG, WIC-1SHDSL, and WIC-1SHDSL-V2 offer
business-class broadband service with scalable
performance, flexibility, quality of service, and
security for branch and regional offices. The
Cisco 2600 Series provides the perfect solution
for a variety of businesses requiring high-speed
business-class DSL connectivity on a secure,
high-performance, modular platform.
Interoperability/Multiprotocol
Support
Offers a comprehensive set of protocols
and services, including virtual private
networking, firewall protection, encryption,
WAN optimization, and enhanced multimedia
support features.
SECU R I T Y FEATUR E S
VPN
• Encryption – 3DES (SW + HW), AES (SW + HW)
• VPN QoS – Preclassification support
• Easy VPN Server and client
• MAX IPsec Tunnels Supported – 800 with VPN module
• HA – High Availability
• URL Filtering – IOS or HW (Content Engine Network Module [NM-CE])-based
IPS (Intrusion Prevention Systems)
• SW-based (IOS) and HW-based options
• More than 700 signatures supported
Certifications
• ICSA – IPsec, Firewall – 2651XM
• Common Criteria – IPsec
• FIPS – 140-2, Level 2, Cisco 2621, 2621XM, 2651, 2651XM, and 2691
SERI E S F E AT URES OV E RVIE WSECU R I T Y FEATUR E S E X A M PLE
Easy VPN Server Application
WHEN TO DEPL OY
Deploy the Cisco 2600 Series when you need:
• A cost-effective solution for the long term that
adapts to evolving network requirements
• Virtual private network (VPN)/extranet access
with firewall protection to reduce costs and
increase security for partners and employees
• Dial concentration with async, ISDN, or
analog modems
• Integrated routing and switching functionality
• Complete Cisco CallManager IP Telephony
Voice Gateway Router integration for analog
and digital telephony interfaces
• Complete small office telephony solution
using Cisco CallManager Express and
Cisco Unity™ Express or high-availability
voice gateway for Cisco CallManager with
Survivable Remote Site Telephony (SRST)
• Audioconferencing, and transcoding in
conjunction with Cisco CallManager VoIP,
VoFR, or VoATM toll bypass for all TDM PBXs,
key systems, analog telephony devices, and
the PSTN
• Integrated content delivery networking such
as caching content filtering and content
delivery for e-communications
• Serial device concentration of point-ofsale devices, ATMs, alarm systems, SDLC
controllers with legacy terminals, and LAN
devices sharing a single WAN connection
• High-speed business-class DSL connectivity
on a secure, high-performance modular
platform
• Support for advanced QoS features such as
the Resource Reservation Protocol (RSVP),
Weighted Fair Queuing (WFQ), and IP
Precedence to reduce recurring WAN costs
34
35
Cisco 2600 Series
IP
IP
IP
V
IP
IP
IP
M
M
M
M
M
Cisco 2600 Series
BENE F I T S A N D A DVANTA G E S continuedAPPL I C AT I ON EXAMP L E
Options
• Complete Cisco Voice Gateway Router functionality
• Cisco Survivable Remote Site Telephony (SRST)
• Voice-mail support with Cisco Unity Express (CUE)
• Cisco CallManager Express (CCME)
• VPN-enabled routers
• Integrated stateful firewall
• Cisco IOS intrusion prevention
• WCCP for content networking
• Integrated content networking
• Dial access
• Integrated low-density switching
PLATF O R M OVE R V I EW
Fixed DRAM (MB) Flash (MB) Power
NMs AIMs WICs LAN Ports default max default max Supply
Cisco 2610XM / 2611XM 1 1 2 1 / 2 FE 128 256 32 48 AC, DC, RPS
Cisco 2612 1 1 2 1TR, 1E 32 64 8 16 AC, DC, RPS
Cisco 2620XM / 2621XM 1 1 2 1 / 2 FE 128 256 32 48 AC, DC, RPS
Cisco 2650XM / 2651XM 1 1 2 1 / 2 FE 256 256 32 48 AC, DC, RPS
Cisco 2691 1 2 3 2 FE 256 256 32* 128** AC, DC, RPS
* Compact Flash
SERI E S F E AT URES OV E RVIE WSERI E S S P E C IFICATI O N S
Dimensions (H x W x D)
All except Cisco 2691 1.69 x 17.5 x 11.8 in. (43 x 445 x 300 mm)
1 Rack Unit (RU) height
Cisco 2691 3.50 x 17.1 x 11.0 in. (88 x 434 x 279 mm)
2 Rack Units (RU) height
Console Port 1 (up to 115.2 Kbps)
Auxiliary Port 1 (up to 115.2 Kbps)
Integrated CSU/DSU Yes, with optional T1/E1, Fractional T1/E1, 56k/64k support
Voice/Data Support Yes
Compression SW + HW
Encryption SW + HW
Maximum 10/100 Ethernet Ports 18
Maximum Gig Ethernet Ports 1
Maximum Token Ring Ports 1
Maximum High-speed Serial (up to 2 Mbps) 10
Maximum Low-speed Serial (up to 128 Kbps) 22 sync, 39 async
Maximum Integrated Modems 22 analog
Maximum Number of ISDN BRI Ports 22
Maximum Number of ISDN PRI Ports 2
Minimum Cisco IOS Release:
Cisco 2610XM IOS 12.1(14) Mainline, 12.2(12) Mainline or 12.2(8) T1
Cisco 2611XM IOS 12.1(14) Mainline, 12.2(12) Mainline or 12.2(8) T1
Cisco 2612 IOS 12.0 Mainline
Cisco 2620XM IOS 12.1(14) Mainline, 12.2(12) Mainline or 12.2(8) T1
Cisco 2621XM IOS 12.1(14) Mainline, 12.2(12) Mainline or 12.2(8) T1
Cisco 2650XM IOS 12.1(14) Mainline, 12.2(12) Mainline or 12.2(8) T1
Cisco 2651XM IOS 12.1(14) Mainline, 12.2(12) Mainline or 12.2(8) T1
Cisco 2691 IOS 12.2(8)T1
36
37
Cisco 2600 Series
Cisco 2600 Series
CISC O I O S M E M O RY R E Q U I R EMENT S
Support for Cisco 2600XM Series Routers starts in Cisco IOS Mainline releases 12.1(14), 12.2(12),
and in 12.2(8)T1
Cisco IOS Release 12.3 T Memory Recommendations for the Cisco 2600XM Series and 2612 Routers
Feature Set Software Image Flash Memory DRAM Memory
IP Base c260 0-ipbase-mz 16 MB 64 MB
IP Voice c2600-ipvoice-mz 32 MB 96 MB
SP Services c2600-spservicesk9-mz 32 MB 128 MB
Enterprise Base c260 0-entbase-mz 32 MB 96 MB
Enterprise Service c2600-enterservicesk9-mz 32 MB 128 MB
Enterprise Plus/H323 MCM c2600-jsx-mz 32 MB 128 MB
Advanced Security c260 0-advsecuirtyk9-mz 32 MB 96 MB
Advanced IP Services c2600-advipservicesk9-mz 32 MB 128 MB
Advanced Enterprise Services c2600-adventerprisek9-mz 32 MB 128 MB
Enterprise/SNASW PLUS c2600-a3js-mz 32 MB 128 MB
Voice to IP to Voice to IP Gateway c2600-js2-mz 32 MB 128 MB
Voice IP to Voice IP Gateway IP Sec 3DES c260 0-jk9s2-mz 32 MB 128 MB
Int. voice/video GK, IPIP GW, TDMIP GW c2600-ipvoice_ivs-mz 32 MB 128 MB
Int. voice/video GK, IPIP GW, TDMIP GW AES c260 0-adventerprisek9_ivs-mz 32 MB 128 MB
Telco feature set c2600-telco-mz 32 MB 64 MB
Enterprise SSG c2600-g4js-mz 32 MB 128 MB
Enterprise/SNASW Plus IPsec 3DES c2600-a3jk9s-mz 32 MB 128 MB
Support for Cisco 2691 starts in Cisco IOS releases 12.2(8)T1
Cisco IOS Release 12.3 T Memory Recommendations for the Cisco 2691 Router
Feature Set Software Image Flash Memory DRAM Memory
IP Base c2691-ipbase-mz 32 MB 128 MB
IP Voice c2691-ipvoice-mz 32 MB 128 MB
SP Services c2691-spservicesk9-mz 64 MB 128 MB
Advanced Security c2691-advsecurityk9-mz 32 MB 128 MB
Advanced IP Services c2691-advipservicesk9-mz 64 MB 128 MB
Advanced Enterprise Services c2691-adventerprisek9-mz 64 MB 128 MB
Advanced Enterprise Services c2691-adventerprisek9_sna-mz 64 MB 192 MB
with SNA Switching
Enterprise Base c2691-enterbase-mz 32 MB 128 MB
Enterprise Services c2691-c2691-entservicesk9-mz 64 MB 128 MB
Enterprise Plus/H.323 MCM c2691-jsx-mz 64 MB 128 MB
Enterprise/SNASw Plus c2691-a3js-mz 64 MB 192 MB
Enterprise/SNASw Plus IPsec 3DES c2691-a3jk9s-mz 64 MB 192 MB
Int. voice/video GK, IPIP GW, TDMIP GW c2691-ipvoice_ivs-mz 32 MB 128 MB
Int. voice/video GK, IPIP GW, TDMIP GW AES c2691-adventerprisek9_ivs-mz 64 MB 128 MB
ORDE R I N G I N FORMATI O N
The Cisco 2600 is ordered from components. You must specify:
• A 2600 Series chassis: All Cisco 2600 chassis ship with the minimum recommended memory for
the most recent default Cisco IOS IP Base feature set, documentation, console, auxiliary and LAN
cables, 19-inch rack-mount brackets, RJ-45 to DB-9 and DB-25 converters, and blank panels that
cover unused WAN interface card and or network module slots. AC, DC, and RPS power options
are available for all chassis
• A CD software pack with desired software release
• A power cord
Optional items:
• Cisco IOS feature set upgrade. The IP Base feature set is the default and included with the chassis
• Up to two WAN interface cards (up to three for Cisco 2691)
• A network module
• An advanced integration module (up to two for Cisco 2691)
• Flash memory upgrade
• DRAM memory upgrade
• Cables
• NEBS/ETSI compliance kit (not available for Cisco 2691)
• Feature license for IP Telephony
38
39
Cisco 2600 Series
BENE F I T S A N D A DVANTA G E S continuedPROD U C T B U NDLES
VPN PRODUCT BUNDLES
Product Number Product Description
C2611XM-2FE/VPN/K9 AC router, AIM-VPN/BPII-PLUS, 256 MB DRAM, 32 MB Flash,
Cisco IOS Advanced IP Services
C2621XM-2FE/VPN/K9 AC router, AIM-VPN/BPII-PLUS, 256 MB DRAM, 32 MB Flash,
Cisco IOS Advanced IP Services
C2651XM-2FE/VPN/K9 AC router, AIM-VPN/BPII-PLUS, 256 MB DRAM, 32 MB Flash,
Cisco IOS Advanced IP Services
C2691-VPN/K9 AC router, AIM-VPN/EPII-PLUS, 256 MB DRAM, 32 MB Flash,
Cisco IOS Advanced IP Services
C2691-V3PN/K9 AC router, AIM-VPN/EPII-PLUS, AIM-ATM-VOICE-30, 256 MB DRAM,
32 MB Flash, CISCO IOS Advanced IP Services
DSL BUNDLES
Product Number Product Description
CISCO2611XM-ADSL AC router, 1 WIC-1ADSL, 32 MB Flash, 256 MB DRAM, IOS SP Services
CISCO2621XM-ADSL AC router, 1 WIC-1ADSL, 32 MB Flash, 256 MB DRAM, IOS SP Services
CISCO2651XM-ADSL AC router, 1 WIC-1ADSL, 32 MB Flash, 256 MB DRAM, IOS SP Services
CISCO2611XM-SHDSL AC router, 1 WIC-1SHDSL-V2, 32 MB Flash, 256 MB DRAM, IOS SP Services
CISCO2621XM-SHDSL AC router, 1 WIC-1SHDSL-V2, 32 MB Flash, 256 MB DRAM, IOS SP Services
CISCO2651XM-SHDSL AC router, 1 WIC-1SHDSL-V2, 32 MB Flash, 256 MB DRAM, IOS SP Services
VOICE GATEWAY BUNDLES
Product Number Product Description
CISCO2611XM-V-CCME AC router, FL-CCME-36, NM-HD-2V, 32M MB Flash, 256 MB DRAM,
CISCO IOS SP Services
CISCO2651XM-V AC router, 1 AIM-VOICE-30, 32 MB Flash upgrade, 256 MB DRAM, IOS SP Services
CISCO2651XM-V-CCME AC router, FL-CCME-48, AIM-ATM-VOICE-30, 32 MB Flash, 256MB DRAM,
CISCO IOS SP Services
CISCO2651XM-V-SRST AC router, FL-SRST-MEDIUM for 48 IP Phones, 1 AIM-VOICE-30,
32 MB Flash, 256 MB DRAM, Cisco IOS IP Voice
TERMINAL SERVER BUNDLES
Product Number Product Description
CISCO2610XM-16TS AC router, 1 NM-16A, 2 CAB-OCTAL-KIT, 128 MB DRAM, 32 MB Flash,
CISCO IOS IP Base
Cisco 2800 Series
Cisco Systems® is redefi ning best-in-class enterprise and small to medium-
sized business routing with a new line of integrated services routers that are
optimized for the secure, wire-speed delivery of concurrent data, voice, and
video services. Founded on 20 years of leadership and innovation, Cisco 2800
Series integrated services routers intelligently embed data, security, and voice
services into a single, resilient system for fast, scalable delivery of mission-critical
business applications. The unique integrated systems architecture of the Cisco
2800 Series delivers maximum business agility and investment protection.
BENE F I T S A N D A DVANTA G E S
Enhanced Architecture
The Cisco 2800 Series features support for new
interface cards. Depending on the router model,
this can include up to four high-speed WAN
interface card (HWIC) slots, up to one Enhanced
Network Module (NME) slot, and up to one
Extension Voice Module (EVM) slot. Embedded
on the motherboard of the router is a hardwarebased VPN accelerator, up to three PVDM (Packet
Voice DSP Module) slots for integrated digital
signal processor (DSP) modules, two advanced
integration module (AIM) slots, up to two USB 1.1
ports, and two Fast Ethernet 10/100 ports (2801,
2811) or two Gigabit Ethernet 10/100/1000 ports
(2821, 2851). Additionally, optional support for
inline power (including 802.3af) is offered.
Investment Protection and Versatility
The Cisco 2800 Series provides signifi cant
additional value compared to prior generations
of Cisco routers such as the Cisco 1700 and 2600
Series routers at similar price points by offering
up to a fi ve-fold performance improvement,
up to a ten-fold increase in security and voice
performance, new embedded service options,
and dramatically increased slot performance
and density while maintaining support for most
of the more than 90 existing modules that are
available today for the Cisco 1700 Series and
Cisco 2600 Series.
Integrated Switching
With support of up to 44 ports of integrated
switching with inline power, the Cisco
2800 Series offers an excellent platform
for combining two of the most common
components of any network infrastructure.
Additionally, with support for the new 802.3af
(Power over Ethernet [PoE]) standard, the new
4- and 9-port Cisco EtherSwitch® HWICs can
provide power to any 802.3af-compliant devices,
greatly expanding the number and types of
devices that can be powered from the router’s
integrated switch ports. An optional upgrade
to the internal power supply provides
power to the integrated switch ports.
40
41
Cisco 2800 Series
Cisco 2800 Series
BENE F I T S & A DVAN TA G E S continued
Integrated Services
With the optional integration of numerous
services modules, the Cisco 2800 Series offers
the ability to easily integrate the functions of
standalone network appliances and components
into the Cisco 2800 Series chassis itself. Many
of these modules, such as the Cisco Network
Analysis Module, Cisco Unity™ Express
Voice-mail Module, Cisco Intrusion Detection
Module, and Cisco Content Engine Module,
have embedded processors and hard drives
that allow them to run largely independently
of the router while allowing management from
a single management interface. This flexibility
greatly expands the potential applications of the
Cisco 2800 Series beyond traditional routing,
while maintaining the benefits of integration.
Secure Networking
Integrated on the motherboard of every
Cisco 2800 Series router is hardware-based
encryption acceleration that offloads the
encryption processes to provide greater IPsec
throughput with less overhead for the router
CPU, when compared with software-based
solutions. With the optional integration of VPN
modules (for enhanced performance and tunnel
count), content engine network modules for
URL filtering, or intrusion-prevention network
modules, combined with the rich Cisco IOS®
Software security feature set that includes
firewall, network access control (NAC), voice
and video-enabled VPN (V3PN), intrusion
prevention, and Dynamic Multipoint VPN
(DMVPN), Cisco offers the industry’s most
robust and adaptable security solution for
branch-office routers.
IP Telephony
The Cisco 2800 Series allows network managers
to provide scalable analog and digital telephony
without investing in a one-time solution, giving
enterprises greater control of their converged
telephony needs. Using voice and fax modules,
the Cisco 2800 Series can be deployed for
applications ranging from voice over IP (VoIP)
and voice over Frame Relay (VoFR) transport
to robust, centralized solutions using the
Cisco Survivable Remote Site Telephony
(SRST) solution or distributed call processing
using Cisco CallManager Express (CCME).
The architecture is highly scalable with the
ability to support up to 12 T1/E1s trunks, 52
foreign-exchange-station (FXS) ports, or 36
foreign-exchange-office (FXO) ports concurrent
with data routing and other services.
SECU R I T Y FEATUR E S
Cisco IOS Firewall
• Stateful, application-based filtering (context-based access control)
• Per-user authentication and authorization
• Real-time alerts
• Transparent firewall
• IPv6 firewall
VPN
• Data Encryption Standard (DES), Triple DES (3DES), and Advanced Encryption Standard (AES) 128, 192, and 256
bit cryptology support
• Embedded hardware-based VPN acceleration on the
motherboard
• Support for optional higher-performance AIM-based security acceleration with Layer 3 compression
• Support for up to 1500 VPN tunnels with AIM-VPN module
• Cisco Easy VPN remote and server support
• Dynamic Multipoint VPN (DMVPN)
SERI E S F E AT URES OV E RVIE W
Features Details
Multiprotocol Label Switching (MPLS)
VPN Support
Onboard USB 1.1 ports • Future support for secure token and Flash memory
Intrusion Prevention System (IPS) • More than 700 IPS signatures supported in Cisco IOS Software,
URL Filtering • Onboard filtering with an optional content engine network module
Cisco Router and Security Device
Manager (SDM), version 2.0 and above
IP Telephony Features
IP Phone Support • Optional integrated power supply with inline power, 802.3af support
Analog Voice Support • One EVM on the Cisco 2821 and Cisco 2851
Digital Voice Support • Up to 192 calls
DSP (PVDM) Slots on
Motherboard
Cisco CallManager Express (CCME) • Up to 72/96* phones
Cisco SRST • Up to 72/96* phones
Voice Mail • Up to 100 mailboxes using Cisco Unity™ Express network module
Voice Interfaces • FXS, FXO, Direct Inward Dial (DID), E&M, Centralized Automated
• Specific Provider Edge (PE) capabilities
• Virtual routing and forwarding (VRF) firewall and VRF IPsecOnboard
USB 1.1 Port(s)
with the ability to load and enable selected IPS signatures
• Optional high-performance IDS Network Module with more than
1000 signatures
• Local URL filtering in Cisco IOS Software based on external server
• Comes standard on all Cisco 2800 Series routers
• Up to 360W of inline power
• Up to 52 FXS and 36 FXO ports
• Up to three DSP slots on motherboard
• Local Conferencing and Transcoding
Message Accounting (CAMA), Cisco Unity Express (CUE), Basic Rate
Interface (BRI), T1, E1, J1 Primary Rate Interface (PRI), Q.SIG, channel
associated signaling (CAS)
* Note: A maximum of 72 IP phones are supported in Cisco IOS
12.3(8)T4 on the Cisco 2851, in Cisco 12.3(11)T a maximum of
96 IP phones will be supported on the Cisco 2851
42
43
Cisco 2800 Series
IP
Cisco 2800 Series
NETW O RK EXAMP L E
WHEN TO DEPL OY
Deploy the Cisco 2800 Series when you need:
• Performance and densities for concurrent
data, security, voice, and advanced services
up to multiple T1/E1/xDSL connections
• VPN connections, or plan to migrate to them
over time
• Integrated security services as part of the
Cisco Self Defending Network, which enable
network device protection, threat defense,
secure connectivity, and endpoint protection
and control
• Integrated 10/100 switching with PoE support;
up to 44 ports with inline power
• High-availability features such as an
integrated redundant power supply (RPS)
connector for quick connections to an external
redundant power supply, Error Correction
Code (ECC) Double Data Rate (DDR) SDRAM
memory to detect and correct SDRAM errors
without user intervention, and Cisco IOS
Software warm reboot support for reduced
downtime caused by system reboots (Note:
Cisco 2801 does not support ECC DDR DRAM.
Cisco IOS warm reboot support will be offered
at a later point in time.)
• Secure integrated call processing, voice mail,
flexible telephony interfaces, redundancy for
centralized call processing, or robust DSP
support, including local conferencing and
transcoding
• Advanced management for security, routing,
quality of service (QoS), and switching
services with Cisco SDM Version 2.0
PLATF O R M OVE R V I EW
NME EVM AIM HWIC PVDM*
Cisco 2801 0*** 0 2 2** 2 2 FE 128 384 64 128 AC,
Cisco 2811 1 0 2 4 2 2 FE 256 768 64 256 AC,
Cisco 2821 1 NME or
NME-X
Cisco 2851 1 NME,
NMD,
NME-X, or
NME-XD
*Number of PVDM slots on the motherboard, additional DSP resources can be added using a network module
**Four interface card slots total are supported on the Cisco 2801 router; two slots support HWIC, WIC, VIC, or VWIC
modules; one slot supports WIC, VIC, or VWIC modules; one slot supports VIC or VWIC modules (in voice mode only)
***Cisco 2801 router does not support Network Modules
1 2 4 3 2 GE 256 1024 64 256 AC,
1 2 4 3 2 GE 256 1024 64 256 AC,
Fixed LAN
Ports
DRAM (MB)
Default Max
Flash (MB)
Default Max
Power
Supply
AC-IP
AC-IP,
DC
AC-IP,
DC
AC-IP,
DC
SERI E S S P E C IFICATI O N S
Dimensions (Height x Width x Depth)
Cisco 2801 1.72 x 17.5 x 16.5 in. (43.7 x 445 x 419 mm); 1-rack-unit (RU) height
Cisco 2811 1.75 x 17.25 x 16.4 in. (44.5 x 438.2 x 416.6 mm); 1-RU height
Cisco 2821, Cisco 2851 3.5 x 17.25 x 16.4 in. (88.9 x 438.2 x 416.6 mm) 2-RU height
Console Port 1 (up to 115.2 Kbps)
Auxiliary Port 1 (up to 115.2 Kbps)
USB Port(s)
Cisco 2801 1
Cisco 2811, Cisco 2821, Cisco 2851 2
Integrated Channel Service Unit/Data Yes, with optional T1/E1, Fractional T1/E1, 56k/64k support
Service Unit (CSU/DSU)
Voice/Data Support Yes, for voice through VIC, VWIC, NM, and EVM
Compression Software and hardware, with optional AIM support
Encryption Hardware support on motherboard; optional AIM for enhanced
performance
44
45
Cisco 2800 Series
Cisco 2800 Series
SERI E S S P E C IFICATI O N S continued
Maximum 10/100 Switch Ports with Inline Power
Cisco 2801 16
Cisco 2811 24
Cisco 2821 24
Cisco 2851 44
Maximum Inline Power Distribution
Cisco 2801 120W
Cisco 2811 160W
Cisco 2821 240W
Cisco 2851 360W
Maximum 1 GB ports 3, including HWIC (not supported on 2801)
Maximum Token Ring Ports 0
Maximum High-speed Serial
(up to 2 Mbps)
Maximum Low-speed Serial
(up to 2 Mbps)
Maximum Integrated Modems 24 analog
Maximum ISDN BRI Ports 20
Maximum ISDN PRI Ports 2
Integrated RPS Connector
Cisco 2801 No
Cisco 2811, Cisco 2821, Cisco 2851 Yes; use Cisco RPS-675 Redundant Power System
Minimum Cisco IOS Software Release
Cisco 2801 12.3(8)T4
Cisco 2811 12.3(8)T4
Cisco 2821 12.3(8)T4
Cisco 2851 12.3(8)T4
12
24 synchronous, 40 asynchronous
CISC O I O S M E M O RY R E Q U I R EMENT S
Cisco IOS Software Release 12.3T Memory Recommendations for Cisco 2801 Routers
Feature Sets Software Image Flash Memory DRAM Memory
IP Base c2801-ipbase-mz 64 MB 128 MB
IP Voice c2801-ipvoice-mz 64 MB 128 MB
Enterprise Base c2801-entbase-mz 64 MB 128 MB
Advanced Security c2801-advsecurityk9-mz 64 MB 128 MB
SP Services c2801-spservicesk9-mz 64 MB 128 MB
Enterprise Services c2801-entservicesk9-mz 64 MB 128 MB
Advanced IP Services c2801-advipservicesk9-mz 64 MB 128 MB
Advanced Enterprise Services c2801-adventerprisek9-mz 64 MB 128 MB
Cisco IOS Software Release 12.3T Memory Recommendations for Cisco 2811, 2821, and 2851 Routers
Feature Sets Software Image Flash Memory DRAM Memory
IP Base c2800nm-ipbase-mz 64 MB 256 MB
IP Voice c2800nm-ipvoice-mz 64 MB 256 MB
Enterprise Base c2800nm-entbase-mz 64 MB 256 MB
Advanced Security c2800nm-advsecurityk9-mz 64 MB 256 MB
SP Services c280 0nm-spservicesk9-mz 64 MB 256 MB
Enterprise Services c2800nm-entservicesk9-mz 64 MB 256 MB
Advanced IP Services c2800nm-advipservicesk9-mz 64 MB 256 MB
Advanced Enterprise Services c2800nm-adventerprisek9-mz 64 MB 256 MB
Advanced Enterprise Services with
SNA Switching
Int. voice/video GK, IPIP GW, TDMIP GW c2800nm-ipvoice_ivs-mz 64 MB 256 MB
Int. voice/video GK, IPIP GW, TDMIP
GW AES
c2800nm-adventerprisek9_na-mz 64 MB 256 MB
c2800nm-adventerprisek9_ivs-mz 64 MB 256 MB
46
47
Cisco 2800 Series
Cisco 2800 Series
ORDE R I N G I N FORMATI O N
All Cisco 2800 Series chassis ship with IP Base software, 64 MB of Compact Flash, either 128 or
256 MB of SDRAM, console, auxiliary and LAN cables, a power cord, 19-inch rack-mount brackets,
and blank panels that cover unused WIC or network module slots.
Optional items:
• Cisco IOS Software feature set upgrade or revision; IP Base is default and included with the
chassis
• Interface cards (HWICs, WICs, VWICs, or VICs)
• Several WAN/LAN network module options
• Several services module options, including content engine, IDS, network analysis, and CESoIP
• Up to two AIMs
• Cisco EtherSwitch modules (4-, 9-, 16-, or 36-port [2851 only])
• External RPS (Cisco RPS-675 [not supported on 2801])
• Flash/SDRAM memory upgrade
• Cables
• Feature license for IP Telephony
Cisco 2800 Series Base Chassis Part Numbers
Part Number Product Description
CISCO2851 Integrated services router with AC power, 2GE, slots for 1 NME-XD, 1EVM,
CISCO2851-AC-IP Integrated services router with AC power including inline power distribution
CISCO2851-DC Integrated services router with DC power, 2GE, slots for 1 NME-XD, 1 EVM,
CISCO2821 Integrated services router with AC power, 2GE, slots for 1 NME-X, 1 EVM,
CISCO2821-AC-IP Integrated services router with AC power including inline power distribution
CISCO2821-DC Integrated services router with DC power, 2GE, slots for 1 NME-X, 1 EVM,
CISCO2811 Integrated services router with AC power, 2FE, slots for 1 NME, 4 HWICs,
CISCO2811-AC-IP Integrated services router with AC power including inline power distribution
CISCO2811-DC Integrated services router with DC power, 2FE, slots for 1 NME, 4 HWICs,
CISCO2801 Integrated services router with AC power, 2FE, slots for 4 Interface Cards,
CISCO2801-AC-IP Integrated services router with AC power including inline power distribution
48
4 HWICs, 2 AIMs, 3 PVDMs; and Cisco IOS IP Base Software
capability, 2GE, slots for 1 NME-XD, 1 EVM, 4 HWICs, 2 AIMs, 3 PVDMs; and
Cisco IOS IP Base Software
4 HWICs, 2 AIMs, 3 PVDMs; and Cisco IOS IP Base Software
4 HWICs, 2 AIMs, 3 PVDMs; and Cisco IOS IP Base Software
capability, 2GE, slots for 1 NME-X, 1 EVM, 4 HWICs, 2 AIMs, 3 PVDMs; and
Cisco IOS IP Base Software
4 HWICs, 2 AIMs, 3 PVDMs; and Cisco IOS IP Base Software
2 AIMs, 2 PVDMs; and Cisco IOS IP Base Software
capability, 2FE, slots for 1 NME, 4 HWICs, 2 AIMs, 2 PVDMs; and Cisco IOS IP
Base Software
2 AIMs, 2 PVDMs; and Cisco IOS IP Base Software
2 AIMs, 2 PVDMs; and Cisco IOS IP Base Software
capability, 2FE, slots for 4 Interface Cards, 2 AIMs, 2 PVDMs; and Cisco IOS IP
Base Software
PROD U C T B U NDLES
SECURITY
Part Number Product Description
CISCO2851-V/K9 Cisco 2851 voice bundle with PVDM2-48, 64 MB Flash/256 MB DRAM, and Cisco
IOS SP services
CISCO2851-CCME/K9 Cisco 2851 voice bundle with PVDM2-48, CCME featuring 72/96*-phone license,
64 MB Flash/256 MB DRAM, and Cisco IOS SP services
CISCO2851-SRST/K9 Cisco 2851 voice bundle with PVDM2-48, SRST featuring 72/96*-phone license,
64 MB Flash/256 MB DRAM, and Cisco IOS SP services
CISCO2851-V3PN/K9 Cisco 2851 V3PN bundle with Cisco IOS advanced IP services Image,
PVDM2-48, FL-CCME-72/96*, 64 MB Flash/256 MB DRAM, and
AIM-VPN-EPII-PLUS
CISCO2821-V/K9 Cisco 2821 voice bundle with PVDM2-32, 64 MB Flash/256 MB DRAM, and
Cisco IOS SP services
CISCO2821-CCME/K9 Cisco 2821 voice bundle with PVDM2-32, CCME featuring 48-phone license,
64 MB Flash/256 MB DRAM, and Cisco IOS SP services
CISCO2821-SRST/K9 Cisco 2821 voice bundle with PVDM2-32, SRST featuring 48-phone license,
64 MB Flash/256 MB DRAM, and Cisco IOS SP services
CISCO2821-V3PN/K9 Cisco 2821 V3PN bundle with Cisco IOS advanced IP services, 64 MB Flash/256 MB
DRAM, PVDM2-32, CCME featuring 48-phone license, and AIM-VPN-EPII-PLUS
CISCO2811-V/K9 Cisco 2811 voice bundle with PVDM2-16, 64 MB Flash/256 MB DRAM,
and Cisco IOS SP services
CISCO2811-CCME/K9 Cisco 2811 voice bundle with PVDM2-16, CCME featuring 36-phone license,
64 MB Flash/256 MB DRAM, and Cisco IOS SP services
CISCO2811-SRST/K9 Cisco 2811 voice bundle with PVDM2-16, SRST featuring 36-phone license,
64 MB Flash/256 MB DRAM, and Cisco IOS SP services
CISCO2811-V3PN/K9 Cisco 2811 V3PN bundle with Cisco IOS advanced IP services, PVDM2-16, CCME
featuring 36-phone license, 64 MB Flash/256 MB DRAM, and AIM-VPN-EPII-PLUS
CISCO2801-V/K9 Cisco 2801 voice bundle, PVDM2-8, Cisco IOS SP services, 64 MB Flash/
256 MB DRAM
CISCO2801-CCME/K9 Cisco 2801 voice bundle with CCME featuring 24-phone license,
Cisco IOS SP services, 64 MB Flash/256 MB DRAM
CISCO2801-SRST/K9 Cisco 2801 voice bundle with SRST featuring 24-phone license,
Cisco IOS SP services, 64 MB Flash/256 MB DRAM
CISCO2801-V3PN/K9 Cisco 2801 V3PN bundle with AIM-VPN, PVDM2-8, Cisco IOS advanced IP services,
64 MB Flash/256 MB DRAM, CCME featuring 24-phone license
* Note: The 2851 CCME, SRST, and V3PN bundles will ship with 72 IP phone licenses
initially, but will be converted to 96 IP phones licenses once Cisco IOS 12.3(11)T is
available.
49
Loading...