In this chapter, you will learn to:
Configure the VPN 3002 using the CLI
Configure the VPN 3002 device Remote Access
Configure a variety of VPN 3000 and 3002 features
Configure for a backup server and for load balancing
Configure the client auto-update feature
This chapter looks at configuring the Cisco VPN 3002 Remote Hardware Client for basic operations, as well as advanced features and options. The 3002 device was introduced and described in Chapter 13. That information won’t be repeated here, but the features introduced will be explored and the configuration steps defined.
The Cisco VPN 3002 Hardware Client communicates with a VPN 3000 Series Concentrator to create a VPN across a TCP/IP network (such as the Internet). The VPN 3002 requires minimal configuration, and allows the VPN administrator to monitor, configure, and upgrade multiple VPN 3002 hardware clients from a central location.
The VPN 3002 Remote Hardware Client is a small, footprint-dedicated device designed for organizations with many remote users and sites that require secure VPN connections. Figure 15-1 shows the book-sized (2 ? 8.6 ? 6.5 inches) 3002 device.
The VPN 3002 Hardware Client device can be used to connect one or more devices, including workstations, servers, hubs, cash registers, printers, and IP telephones to a company’s central network. Each 3002 unit eliminates the need to install and configure VPN client software on the local workstation(s), plus it supports workstations running any TCP/IP supporting operating system (OS), including Windows, Sun Solaris UNIX, Mac, and Linux.
Currently, the 3002 case supports two models: the VPN 3002 has one public and one private 10/100BASE-T Ethernet interface, and the VPN 3002-8E has one public interface and a built-in 8-port 10/100-Mbps auto-sensing Ethernet switch as its private interface. Each 3002 can connect to LAN switches providing connections for up to 253 host devices. Figure 15-2 shows the back of the both models. The upper unit is the 3002-8E that incorporates the integrated switch, which can provide simplified installation for the small office or home needing to connect several computers to the network. The lower unit is the VPN 3002, which has a single private interface.
Both models share the following features found in many Cisco devices:
Motorola PowerPC CPU
Software-based encryption
SDRAM memory for normal operation
NVRAM for storing system configuration parameters
Flash memory for file management and device OS
Single power supply