1. Home
  2. Networking
  3. CCSP Cisco Certified Security Professional Certification

Chapter 15: Configuring Cisco VPN 3002 Remote Clients

Chapter 15: Configuring Cisco VPN 3002 Remote Clients

Overview

In this chapter, you will learn to:

  • Configure the VPN 3002 using the CLI

  • Configure the VPN 3002 device Remote Access

  • Configure a variety of VPN 3000 and 3002 features

  • Configure for a backup server and for load balancing

  • Configure the client auto-update feature

This chapter looks at configuring the Cisco VPN 3002 Remote Hardware Client for basic operations, as well as advanced features and options. The 3002 device was introduced and described in Chapter 13. That information won’t be repeated here, but the features introduced will be explored and the configuration steps defined.

The Cisco VPN 3002 Hardware Client communicates with a VPN 3000 Series Concentrator to create a VPN across a TCP/IP network (such as the Internet). The VPN 3002 requires minimal configuration, and allows the VPN administrator to monitor, configure, and upgrade multiple VPN 3002 hardware clients from a central location.

The VPN 3002 Remote Hardware Client is a small, footprint-dedicated device designed for organizations with many remote users and sites that require secure VPN connections. Figure 15-1 shows the book-sized (2 ? 8.6 ? 6.5 inches) 3002 device.

Click To expand
Figure 15-1: Cisco VPN 3002 Client device (front view)

The VPN 3002 Hardware Client device can be used to connect one or more devices, including workstations, servers, hubs, cash registers, printers, and IP telephones to a company’s central network. Each 3002 unit eliminates the need to install and configure VPN client software on the local workstation(s), plus it supports workstations running any TCP/IP supporting operating system (OS), including Windows, Sun Solaris UNIX, Mac, and Linux.

Currently, the 3002 case supports two models: the VPN 3002 has one public and one private 10/100BASE-T Ethernet interface, and the VPN 3002-8E has one public interface and a built-in 8-port 10/100-Mbps auto-sensing Ethernet switch as its private interface. Each 3002 can connect to LAN switches providing connections for up to 253 host devices. Figure 15-2 shows the back of the both models. The upper unit is the 3002-8E that incorporates the integrated switch, which can provide simplified installation for the small office or home needing to connect several computers to the network. The lower unit is the VPN 3002, which has a single private interface.


Figure 15-2: Cisco VPN 3002 Client models

Both models share the following features found in many Cisco devices:

  • Motorola PowerPC CPU

  • Software-based encryption

  • SDRAM memory for normal operation

  • NVRAM for storing system configuration parameters

  • Flash memory for file management and device OS

  • Single power supply




BackCover
CCSP - Cisco Certified Security Professional Certification All-in-One Exam Guide
Introduction
Part I: Introduction to Network Security
Part II: Securing the Network Perimeter
Part III: Virtual Private Networks (VPNs)
Chapter 9: Cisco IOS IPSec Introduction
Chapter 10: Cisco IOS IPSec for Preshared Keys
Chapter 11: Cisco IOS IPSec Certificate Authority Support
Chapter 12: Cisco IOS Remote Access Using Cisco Easy VPN
Chapter 13: Cisco VPN Hardware Overview
Chapter 14: Cisco VPN 3000 Remote Access Networks
Chapter 15: Configuring Cisco VPN 3002 Remote Clients
The VPN 3002 in the Network
Configuring the 3002 Device
Common Configuration Tasks
Basic Configuration for the VPN 3002
Other VPN 3002 Software Features
Auto-Update Feature
Chapter Review
Chapter 16: Cisco VPN 3000 LAN-to-LAN Networks
Part IV: PIX Firewalls
Part V: Intrusion Detection Systems (IDS)
Part VI: Cisco SAFE Implementation
Appendix A: Access Control Lists
Appendix B: About the CD
List of Figures
List of Tables
List of Sidebars