User Guide
Page 1
... This is available on the NIST website at http://csrc.nist.gov/cryptval/. Cisco 2621XM and Cisco 2651XM Modular Access Routers with AIM-VPN/EP. Firmware Version: IOS 12.3(3d)) meet the security requirements of the 2621XM and 2651XM routers. Cisco Systems, Inc. Government requirements for cryptographic modules. All rights reserved. This document contains...
... This is available on the NIST website at http://csrc.nist.gov/cryptval/. Cisco 2621XM and Cisco 2651XM Modular Access Routers with AIM-VPN/EP. Firmware Version: IOS 12.3(3d)) meet the security requirements of the 2621XM and 2651XM routers. Cisco Systems, Inc. Government requirements for cryptographic modules. All rights reserved. This document contains...
User Guide
Page 3
... ideal platform for the 2651XM. Module Interfaces The interfaces for the router are located on the motherboard. and the inverse of the case; Cisco IOS features such as encompassing the "top," "front," "left," "right," and "bottom" surfaces of the three-dimensional space within the case...the connection apparatus between the WIC or Network Module and the motherboard/daughterboard that would be occupied by the Cisco 2621XM and 2651XM routers. Cisco 2621XM and Cisco 2651XM Modular Access Routers with up to Ethernet routing with AIM-VPN/EP FIPS 140-2 Non-Proprietary Security ...
... ideal platform for the 2651XM. Module Interfaces The interfaces for the router are located on the motherboard. and the inverse of the case; Cisco IOS features such as encompassing the "top," "front," "left," "right," and "bottom" surfaces of the three-dimensional space within the case...the connection apparatus between the WIC or Network Module and the motherboard/daughterboard that would be occupied by the Cisco 2621XM and 2651XM routers. Cisco 2621XM and Cisco 2651XM Modular Access Routers with up to Ethernet routing with AIM-VPN/EP FIPS 140-2 Non-Proprietary Security ...
User Guide
Page 6
... is not powered on RPS is attached and operational Off No RPS is attached Blink RPS is attached, but has a failure Activity Off In the Cisco IOS software, but no network activity Blink (500 ms ON, 500 ms OFF) In ROMMON, no errors Blink (500 ms ON, 500 ms OFF, In ROMMON..., error detected 2 sec between codes) Blink (less than 500 ms) In the Cisco IOS software, the blink rate reflects the level of these physical interfaces are separated into the logical interfaces from FIPS 140-2 as described in Table 3: Table...
... is not powered on RPS is attached and operational Off No RPS is attached Blink RPS is attached, but has a failure Activity Off In the Cisco IOS software, but no network activity Blink (500 ms ON, 500 ms OFF) In ROMMON, no errors Blink (500 ms ON, 500 ms OFF, In ROMMON..., error detected 2 sec between codes) Blink (less than 500 ms) In the Cisco IOS software, the blink rate reflects the level of these physical interfaces are separated into the logical interfaces from FIPS 140-2 as described in Table 3: Table...
User Guide
Page 8
... use Gets to User data streams on -board LAN connectors, Console/Auxiliary connectors, the power cable connection and a power switch. Cisco 2621XM and Cisco 2651XM Modular Access Routers with a terminal program. Set keys and algorithms to be used for each interface. If the password is... to the User role consist of the following: • Status Functions-view state of interfaces, state of layer 2 protocols, version of IOS currently running • Network Functions-connect to the motherboard, memory, and expansion slots. and initiate diagnostic network services (i.e., ping, mtrace) ...
... use Gets to User data streams on -board LAN connectors, Console/Auxiliary connectors, the power cable connection and a power switch. Cisco 2621XM and Cisco 2651XM Modular Access Routers with a terminal program. Set keys and algorithms to be used for each interface. If the password is... to the User role consist of the following: • Status Functions-view state of interfaces, state of layer 2 protocols, version of IOS currently running • Network Functions-connect to the motherboard, memory, and expansion slots. and initiate diagnostic network services (i.e., ping, mtrace) ...
User Guide
Page 16
... components of key management schemes: • Manual key exchange method that created the keys, and the CO role is protected by the IOS image: • Power-up bypass test - The pre-shared key is also used with support for individual tunnels are used to derive... HMAC-SHA-1 key. • Internet Key Exchange with RSA-signature authentication. Self-tests performed by a password. HMAC SHA-1 KAT Cisco 2621XM and Cisco 2651XM Modular Access Routers with that are exchanged manually and entered electronically. • Internet Key Exchange method with Diffie-Hellman key agreement ...
... components of key management schemes: • Manual key exchange method that created the keys, and the CO role is protected by the IOS image: • Power-up bypass test - The pre-shared key is also used with support for individual tunnels are used to derive... HMAC-SHA-1 key. • Internet Key Exchange with RSA-signature authentication. Self-tests performed by a password. HMAC SHA-1 KAT Cisco 2621XM and Cisco 2651XM Modular Access Routers with that are exchanged manually and entered electronically. • Internet Key Exchange method with Diffie-Hellman key agreement ...
User Guide
Page 18
... Officer may be loaded. • The value of algorithms, only the following algorithms are allowed in a FIPS 140-2 configuration: - Cisco IOS version 12.3(3d) is disabled, administrative access to use RADIUS or TACACS+ for authentication is configured to the module without the password will... secret keys that are allowed in FIPS mode: Internet Key Exchange (IKE) and IPSec manually entered keys. • Although the Cisco IOS implementation of IKE allows a number of the boot field must perform the initial configuration. System Initialization and Configuration • The Crypto...
... Officer may be loaded. • The value of algorithms, only the following algorithms are allowed in a FIPS 140-2 configuration: - Cisco IOS version 12.3(3d) is disabled, administrative access to use RADIUS or TACACS+ for authentication is configured to the module without the password will... secret keys that are allowed in FIPS mode: Internet Key Exchange (IKE) and IPSec manually entered keys. • Although the Cisco IOS implementation of IKE allows a number of the boot field must perform the initial configuration. System Initialization and Configuration • The Crypto...
User Guide
Page 23
... Welcome to Increase Your Internet Quotient, and TransPath are registered trademarks of Cisco Systems, Inc. and Access Registrar, Aironet, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Enterprise/Solver, EtherChannel, EtherFast, EtherSwitch, Fast Step, Follow Me Browsing, FormShare...
... Welcome to Increase Your Internet Quotient, and TransPath are registered trademarks of Cisco Systems, Inc. and Access Registrar, Aironet, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Enterprise/Solver, EtherChannel, EtherFast, EtherSwitch, Fast Step, Follow Me Browsing, FormShare...
Software Configuration Guide
Page 2
..., Inc.; and Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherSwitch, GigaStack, IOS, IP/TV, LightStream, MGX, MICA, the Networkers logo, Network Registrar, Packet, PIX, Post-Routing, Pre-Routing...
..., Inc.; and Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherSwitch, GigaStack, IOS, IP/TV, LightStream, MGX, MICA, the Networkers logo, Network Registrar, Packet, PIX, Post-Routing, Pre-Routing...
Software Configuration Guide
Page 3
... xviii Understanding Interface Numbering and Cisco IOS Software Basics 1-1 Understanding Interface Numbering 1-1 Cisco 2600 Series Interface Numbering 1-1 WAN and LAN Interface Numbering 1-2 Voice Interface Numbering in Cisco 2600 Series Routers 1-4 Cisco 3600 Series Interface Numbering 1-4 Cisco 3600 Series Router Slot Numbering 1-4 Cisco 3600 Series Router Unit Numbering 1-8 Cisco 3600 Series Routers Voice Interface Numbering 1-8 Cisco 3700 Series Interface Numbering...
... xviii Understanding Interface Numbering and Cisco IOS Software Basics 1-1 Understanding Interface Numbering 1-1 Cisco 2600 Series Interface Numbering 1-1 WAN and LAN Interface Numbering 1-2 Voice Interface Numbering in Cisco 2600 Series Routers 1-4 Cisco 3600 Series Interface Numbering 1-4 Cisco 3600 Series Router Slot Numbering 1-4 Cisco 3600 Series Router Unit Numbering 1-8 Cisco 3600 Series Routers Voice Interface Numbering 1-8 Cisco 3700 Series Interface Numbering...
Software Configuration Guide
Page 4
... Help 1-13 Understanding Command Modes 1-13 Undoing a Command or Feature 1-14 Saving Configuration Changes 1-15 Upgrading to a New Cisco IOS Release 1-15 Where to Go Next 1-15 2 C H A P T E R Using the Setup Command Facility 2-1 ...Serial Interface Configuration 2-7 Frame Relay Encapsulation 2-8 LAPB Encapsulation 2-8 X.25 Encapsulation 2-8 ATM-DXI Encapsulation 2-9 SMDS Encapsulation 2-9 Serial Cisco IOS Commands Generated 2-9 Asynchronous/Synchronous Serial Interface Configuration 2-9 Synchronous Configuration 2-9 Asynchronous Configuration 2-11 ISDN BRI Interface Configuration 2-12 ISDN BRI...
... Help 1-13 Understanding Command Modes 1-13 Undoing a Command or Feature 1-14 Saving Configuration Changes 1-15 Upgrading to a New Cisco IOS Release 1-15 Where to Go Next 1-15 2 C H A P T E R Using the Setup Command Facility 2-1 ...Serial Interface Configuration 2-7 Frame Relay Encapsulation 2-8 LAPB Encapsulation 2-8 X.25 Encapsulation 2-8 ATM-DXI Encapsulation 2-9 SMDS Encapsulation 2-9 Serial Cisco IOS Commands Generated 2-9 Asynchronous/Synchronous Serial Interface Configuration 2-9 Synchronous Configuration 2-9 Asynchronous Configuration 2-11 ISDN BRI Interface Configuration 2-12 ISDN BRI...
Software Configuration Guide
Page 11
...experience • System administrators who are familiar with the fundamentals of this guide to complete a basic router configuration using the Cisco IOS software to perform other configuration tasks, such as configuring a Voice-over-IP interface and other features. It also contains information... Objectives After installing the router, use this guide. This guide is designed for the person who will be familiar with Cisco IOS software • System administrators who are responsible for installing and configuring internetworking equipment, and who might not be responsible for...
...experience • System administrators who are familiar with the fundamentals of this guide to complete a basic router configuration using the Cisco IOS software to perform other configuration tasks, such as configuring a Voice-over-IP interface and other features. It also contains information... Objectives After installing the router, use this guide. This guide is designed for the person who will be familiar with Cisco IOS software • System administrators who are responsible for installing and configuring internetworking equipment, and who might not be responsible for...
Software Configuration Guide
Page 12
...following conventions to configure basic router functionality. Nonprinting characters, for which you must select one. Using the Setup Command Describes how to use the Cisco IOS software command-line interface (CLI) to convey instructions and information: Convention boldface font italic font [] {x | y | z} screen font boldface ...Chapter 1 Chapter 2 Chapter 3 Chapter 4 Appendix A Appendix B Appendix C Title Description Understanding Interface Provides an overview of the Cisco IOS software. Also provides a basic Software Basics understanding of the interface numbering Numbering and...
...following conventions to configure basic router functionality. Nonprinting characters, for which you must select one. Using the Setup Command Describes how to use the Cisco IOS software command-line interface (CLI) to convey instructions and information: Convention boldface font italic font [] {x | y | z} screen font boldface ...Chapter 1 Chapter 2 Chapter 3 Chapter 4 Appendix A Appendix B Appendix C Title Description Understanding Interface Provides an overview of the Cisco IOS software. Also provides a basic Software Basics understanding of the interface numbering Numbering and...
Software Configuration Guide
Page 15
... installed on your server. • Regulatory Compliance and Safety Information • Cisco IOS Configuration Fundamentals Configuration Guide • Cisco IOS Configuration Fundamentals Command Reference • Cisco IOS Dial Technologies Configuration Guide • Cisco IOS Wide-Area Networking Configuration Guide • Cisco IOS IP Configuration Guide Release 12.2 • Cisco IOS Wide-Area Networking Command Reference • Debug Command Reference • System Error...
... installed on your server. • Regulatory Compliance and Safety Information • Cisco IOS Configuration Fundamentals Configuration Guide • Cisco IOS Configuration Fundamentals Command Reference • Cisco IOS Dial Technologies Configuration Guide • Cisco IOS Wide-Area Networking Configuration Guide • Cisco IOS IP Configuration Guide Release 12.2 • Cisco IOS Wide-Area Networking Command Reference • Debug Command Reference • System Error...
Software Configuration Guide
Page 21
... by a slot number and a unit number. CHAPTER 1 Understanding Interface Numbering and Cisco IOS Software Basics This chapter provides an overview of the interface numbering in the Cisco 2600 series routers OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-1 Understanding Interface Numbering This section contains information with...
... by a slot number and a unit number. CHAPTER 1 Understanding Interface Numbering and Cisco IOS Software Basics This chapter provides an overview of the interface numbering in the Cisco 2600 series routers OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-1 Understanding Interface Numbering This section contains information with...
Software Configuration Guide
Page 22
... network module interfaces. the slot number is 0 for all WIC interfaces; WAN and LAN Interface Numbering The Cisco 2600 series router chassis contains the following wide-area network (WAN) and local-area network (LAN) interface ...04 Understanding Interface Numbering Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Table 1-1 Router Models Model Cisco 2610 Cisco 2610XM Cisco 2611 Cisco 2611XM Cisco 2612 Cisco 2613 Cisco 2620 Cisco 2620XM Cisco 2621 Cisco 2621XM Cisco 2650 Cisco 2650XM Cisco 2651 Cisco 2651XM Cisco 2691 Ethernet (10BASE-T) 1 2 1 Token-Ring (RJ...
... network module interfaces. the slot number is 0 for all WIC interfaces; WAN and LAN Interface Numbering The Cisco 2600 series router chassis contains the following wide-area network (WAN) and local-area network (LAN) interface ...04 Understanding Interface Numbering Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Table 1-1 Router Models Model Cisco 2610 Cisco 2610XM Cisco 2611 Cisco 2611XM Cisco 2612 Cisco 2613 Cisco 2620 Cisco 2620XM Cisco 2621 Cisco 2621XM Cisco 2650 Cisco 2650XM Cisco 2651 Cisco 2651XM Cisco 2691 Ethernet (10BASE-T) 1 2 1 Token-Ring (RJ...
Software Configuration Guide
Page 23
...1/2, and Serial 1/3) • First built-in Ethernet interface-Ethernet 0/0 • Second built-in Ethernet interface-Ethernet 0/1, or optionally in Cisco 2612 and Cisco 2613 only: Token Ring interface 0/0 Figure 1-1 Example of 1RU Router Figure 1-2 below shows a router of 2 RU height with: •... to top. Some examples are: OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-3 Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Understanding Interface Numbering Interface (port) numbers begin at 0 for ...
...1/2, and Serial 1/3) • First built-in Ethernet interface-Ethernet 0/0 • Second built-in Ethernet interface-Ethernet 0/1, or optionally in Cisco 2612 and Cisco 2613 only: Token Ring interface 0/0 Figure 1-1 Example of 1RU Router Figure 1-2 below shows a router of 2 RU height with: •... to top. Some examples are: OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-3 Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Understanding Interface Numbering Interface (port) numbers begin at 0 for ...
Software Configuration Guide
Page 24
... 1/Voice module slot 1/Voice interface 0 • 1/1/1-Chassis slot 1/Voice module slot 1/Voice interface 1 Cisco 3600 Series Interface Numbering Each individual network interface on a Cisco 3600 series router is numbered Serial 0/0. - Understanding Interface Numbering Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics - If slot W0 contains a 2-port serial WIC and slot W1 contains a 1-port...
... 1/Voice module slot 1/Voice interface 0 • 1/1/1-Chassis slot 1/Voice module slot 1/Voice interface 1 Cisco 3600 Series Interface Numbering Each individual network interface on a Cisco 3600 series router is numbered Serial 0/0. - Understanding Interface Numbering Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics - If slot W0 contains a 2-port serial WIC and slot W1 contains a 1-port...
Software Configuration Guide
Page 25
Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Figure 1-3 Cisco 3660 Router Rear View Understanding Interface Numbering Figure 1-4 Cisco 3640 Router Rear View Figure 1-5 Cisco 3620 Router Rear View OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-5
Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Figure 1-3 Cisco 3660 Router Rear View Understanding Interface Numbering Figure 1-4 Cisco 3640 Router Rear View Figure 1-5 Cisco 3620 Router Rear View OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-5
Software Configuration Guide
Page 26
... network module interfaces at the bottom left. • Slot 2 for network module interfaces at the top left, above slot 1. For the Cisco 3631 router shown in Figure 1-6, the slots are numbered as follows: • Slot 0 for all built-in Figure 1-4 and Figure ..., above slot 4. Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-6 OL-1957-04 Understanding Interface Numbering Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Figure 1-6 Cisco 3631 Router Rear View For the Cisco 3660 router (see Figure 1-3), the slots ...
... network module interfaces at the bottom left. • Slot 2 for network module interfaces at the top left, above slot 1. For the Cisco 3631 router shown in Figure 1-6, the slots are numbered as follows: • Slot 0 for all built-in Figure 1-4 and Figure ..., above slot 4. Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-6 OL-1957-04 Understanding Interface Numbering Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Figure 1-6 Cisco 3631 Router Rear View For the Cisco 3660 router (see Figure 1-3), the slots ...
Software Configuration Guide
Page 27
Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Understanding Interface Numbering Figure 1-7 Example of the Cisco 3631 Router Interface Numbering Figure 1-7 shows an example of the interface numbering where the following interfaces are installed: • A WIC ...0/0 and serial 0/1 and the logical interface in physical slot W1 is numbered Serial 0/2. - OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-7 If physical slot W0 contains a 2-port serial WIC and slot W1 contains a 1-port serial WIC, then ...
Chapter 1 Understanding Interface Numbering and Cisco IOS Software Basics Understanding Interface Numbering Figure 1-7 Example of the Cisco 3631 Router Interface Numbering Figure 1-7 shows an example of the interface numbering where the following interfaces are installed: • A WIC ...0/0 and serial 0/1 and the logical interface in physical slot W1 is numbered Serial 0/2. - OL-1957-04 Software Configuration Guide For Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Routers 1-7 If physical slot W0 contains a 2-port serial WIC and slot W1 contains a 1-port serial WIC, then ...