Chapter 15: Configuring Cisco VPN 3002 Remote Clients

Chapter 15: Configuring Cisco VPN 3002 Remote Clients


In this chapter, you will learn to:

  • Configure the VPN 3002 using the CLI

  • Configure the VPN 3002 device Remote Access

  • Configure a variety of VPN 3000 and 3002 features

  • Configure for a backup server and for load balancing

  • Configure the client auto-update feature

This chapter looks at configuring the Cisco VPN 3002 Remote Hardware Client for basic operations, as well as advanced features and options. The 3002 device was introduced and described in Chapter 13. That information won’t be repeated here, but the features introduced will be explored and the configuration steps defined.

The Cisco VPN 3002 Hardware Client communicates with a VPN 3000 Series Concentrator to create a VPN across a TCP/IP network (such as the Internet). The VPN 3002 requires minimal configuration, and allows the VPN administrator to monitor, configure, and upgrade multiple VPN 3002 hardware clients from a central location.

The VPN 3002 Remote Hardware Client is a small, footprint-dedicated device designed for organizations with many remote users and sites that require secure VPN connections. Figure 15-1 shows the book-sized (2 ? 8.6 ? 6.5 inches) 3002 device.

Click To expand
Figure 15-1: Cisco VPN 3002 Client device (front view)

The VPN 3002 Hardware Client device can be used to connect one or more devices, including workstations, servers, hubs, cash registers, printers, and IP telephones to a company’s central network. Each 3002 unit eliminates the need to install and configure VPN client software on the local workstation(s), plus it supports workstations running any TCP/IP supporting operating system (OS), including Windows, Sun Solaris UNIX, Mac, and Linux.

Currently, the 3002 case supports two models: the VPN 3002 has one public and one private 10/100BASE-T Ethernet interface, and the VPN 3002-8E has one public interface and a built-in 8-port 10/100-Mbps auto-sensing Ethernet switch as its private interface. Each 3002 can connect to LAN switches providing connections for up to 253 host devices. Figure 15-2 shows the back of the both models. The upper unit is the 3002-8E that incorporates the integrated switch, which can provide simplified installation for the small office or home needing to connect several computers to the network. The lower unit is the VPN 3002, which has a single private interface.

Figure 15-2: Cisco VPN 3002 Client models

Both models share the following features found in many Cisco devices:

  • Motorola PowerPC CPU

  • Software-based encryption

  • SDRAM memory for normal operation

  • NVRAM for storing system configuration parameters

  • Flash memory for file management and device OS

  • Single power supply

Part III: Virtual Private Networks (VPNs)