Memory
- 1 GB DDR2-533 SDRAM
- Up to 256 MB NOR flash
- 128 kB SEEPROM
Certifications & Validations
-
NIST FIPS 140-2 Overall Level 1 validated on certificate #2242. Additionally, validated to Roles, Services, and Authentication Level 2, and Design Assurance Level 3.
- Satisfies the Assurance Activities criteria as defined within the NIAP Common Criteria (CC) Protection Profile for Network Devices, Version 1.1 and Protection Profile for Network Devices VPN Gateway Extended Package, Version 1.1
I/O Interfaces
- Four 10/100/1000 Mbps Gigabit Ethernet ports supporting auto-negotiation
- One console port supporting RS-232/422 signaling
- One auxiliary port supporting RS-232/422 signaling with handshaking
Hardware Encryption Support
- Onboard hardware encryption processor supporting IP Security (IPsec)
- Secure Sockets Layer with transparent LAN services (SSL/TLS)
- Secure Real-Time Transport Protocol (SRTP)
- Triple Digital Encryption Standard (3DES)
- Advanced Encryption Standard (AES)
- Internet Key Exchange (IKE)
Routing Protocols
- Routing Information Protocol (RIP)
- RIPv2
- Open Shortest Path First (OSPF)
- Enhanced Interior Gateway Routing Protocol (EIGRP)
- Border Gateway Protocol (BGP)
- Cisco Discovery Protocol
- IP Policy Routing
- IP Multicast Protocol Independent Multicast (PIM) Versions 1 and 2
- Internet Group Management Protocol (IGMP) Versions 1 and 2
- IP Multicast Load Splitting
- Four, 10/100/1000 Mbps, IEEE 802.3-compliant, Ethernet controllers
- Cisco Group Management Protocol (GMP)
VLANs
- Up to 32 VLANs supported per router
IPv4 and IPv6
- IPv6 routing and Cisco Express Forwarding switching
- IPv6 QoS
- IPv6 tunneling support
- Zone-based Firewall for IPv6 traffic
Encapsulations
- Point-to-Point Protocol (PPP)
- PPP over Ethernet (PPPoE) client and server for Fast Ethernet
- 802.1q VLAN trunking support
- Generic Routing Encapsulation (GRE)
- Additional protocol support
Telnet
- Asynchronous tunneling
- Storage Allocation and Coding (STAC) compression
- Real-time Transport Protocol (RTP) header compression
Radio Aware Routing
- Optimizes IP routing over fixed or temporary radio networks
- Factors radio link metrics into route calculations
- Immediately recognizes and adapts to changes in network neighbor status
- Dynamic Link Exchange Protocol (DLEP)
- Router Radio Control Protocol (R2CP)
- RFC 5578 (authored by Cisco®)
Mobile Ad Hoc Networks
- OSPFv3 enhancements for mobile ad hoc networks
Mobile IP
- Home agent and mobile router redundancy
- Mobile router preferred interfaces
- Mobile router reverse tunneling
- Mobile router asymmetric links
- Mobile router static and dynamic networks
- Static co-located care-of address
- Authentication, authorization, and accounting (AAA) server
- Cisco Mobile Networks Network Address Translation (NAT) Traversal over Mobile IP
- Support for Mobile IP tunnel templates, allowing configuration of IP Multicast and IPsec on Mobile IP tunnels
- Mobile IP foreign agent local routing optimization
Suite-B Support
- Suite-B support in IOS® SW crypto including Suite-B-GCM-128, Suite-B-GCM-256, Suite-B-GMAC-128, Suite-B-GMAC-256 as described in RFC-4869
Authentication
- Route and router authentication
- Password Authentication Protocol (PAP)
- Challenge Handshake Authentication Protocol (CHAP)
- Microsoft CHAP (MS-CHAP) local password
- IP basic and extended access lists
- Time-based access control lists (ACLs)
Secure Connectivity
- Secure collaborative communications with Group Encrypted Transport VPN, Dynamic Multipoint VPN (DMVPN), or Enhanced Easy VPN
Integrated Threat Control
- Responding to sophisticated network attacks and threats using Cisco IOS® Firewall, Cisco IOS® Zone-based Firewall, Cisco IOS® IPS, Cisco IOS® Content Filtering, and Flexible Packet Matching (FPM)
Identity Management
- Intelligently protecting endpoints using technologies such as authentication, authorization, and accounting (AAA) and public key infrastructure (PKI)
Security Protocols
- IP Security (IPsec)
- Secure Sockets Layer with transparent LAN services (SSL/TLS)
- Secure Real-time Transport Protocol (SRTP)
- Triple Digital Encryption Standard (3DES)
- Advanced Encryption Standard (AES)
- Internet Key Exchange (IKE)
Traffic Management
- QoS
- Generic traffic shaping
- Class-based Ethernet matching and mobile access routing (802.1p Class of Service [CoS])
- Committed access rate
- Flow-based Weighted Random Early Detection (WRED)
- Class-based Weighted Fair Queuing (WFQ)
- Low Latency Queuing (LLQ)
- Priority Queuing
- Weighted Fair Queuing (WFQ)
- Link Fragmentation and Interleaving (LFI)
- Traffic Policing Resource Reservation Protocol (RSVP)
Unified Communications
- Cisco Unified Communications Manager Express with support for up to 48 phones
Management Services
- Simple Network Management Protocol (SNMP) Versions 2 and 3
- Telnet
- Console port
- RADIUS
- TACACS+
- Cisco Service Assurance Agent
- Syslog
- Response Time Reporter
- Network Time Protocol (NTP) Client
- Trivial File Transfer Protocol (TFTP) Client and Server
- Dynamic Host Configuration Protocol (DHCP) Client and Server
- DHCP Relay
- Hot Standby Router Protocol (HSRP)
Tool Command Language (Tcl) Scripts
- Tcl script support
Address Conservation
- NAT Many-to-One (Port Address Translation [PAT])
- NAT Many-to-Many (Multi-NAT)
- DHCP Client Address Negotiation
- Easy IP Phase I
Physical Characteristics
- XMX/PMC conduction-cooled form factor
- Dimensions: 149 mm x 74 mm, 10 mm stacking height
LOG IN /
