Manual Cisco Systems 7206VXR NPE-400

22 pages 0.45 mb
Download

Go to site of 22

Summary
  • Cisco Systems 7206VXR NPE-400 - page 1

    Corporate Headquarters: Copyright © 2004 Cisco Systems, Inc. All rights reserved. Cisco Systems, Inc., 170 West Tasman Drive, San Jose, CA 95134-1706 USA FIPS 140-2 Nonproprietary Security Policy for Cisco 7206VXR NPE-400 Router with VAM Introduction This is a non-propriet ary Cryptographic Module Secu rity Polic y for Cisco Systems. This security ...

  • Cisco Systems 7206VXR NPE-400 - page 2

    2 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 FIPS 140-2 Submission Package • Documentation Feedback , page 18 • Obtaining T echnical Assistance, page 18 • Obtaining Addition al Publications and Informati on, page 20 FIPS 140-2 Submission Package The Security Polic y document is one item in ...

  • Cisco Systems 7206VXR NPE-400 - page 3

    3 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Cryptographic Module Cryptographic Module The Cisco 7206VXR NPE-400 router wi th V AM is a multiple-chip standalone cryptographic module. The Cisco 7206VXR supports multi-protocol routing and brid ging with a wide v ariety of protocols and port adapte ...

  • Cisco Systems 7206VXR NPE-400 - page 4

    4 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Module Interfaces Ta b l e 1 shows the front panel LEDs, which provide overall status of the router o peration. The front pane l displays whether or not the rou ter is booted, if the redundant po wer is attached and operat ional, and ov erall acti vity ...

  • Cisco Systems 7206VXR NPE-400 - page 5

    5 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Module Interfaces The VPN Acceleration Module (V AM) is a single -width acceleration module that pro vides high-performance, hardware-assiste d t unneling and encrypti on services suitable for virtual pri vate network (VPN) remote access, site-to- site ...

  • Cisco Systems 7206VXR NPE-400 - page 6

    6 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Roles and Servic es In addition to th e b uilt-in interf aces, the router also has addition al port adapters that can optio nally be placed in an av ailable slot. Thes e port adapters ha ve man y embod iments, including multi ple Ethernet, token ring, ...

  • Cisco Systems 7206VXR NPE-400 - page 7

    7 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Roles and Services The User and Crypto Of ficer passw ords and the RADI US/T ACA CS+ shared sec rets must each be at least 8 alphanumeric characters in length. See the “Secure Operation” section on page 16 for more information. If o nly integ ers 0 ...

  • Cisco Systems 7206VXR NPE-400 - page 8

    8 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Physical Security Physical Security The router is encased in a steel chassis. The front of the router includes six port adapter slots . The rear of the router includes on- board LAN connectors, PC Card slo ts, and Console/Auxiliary co nnectors, power c ...

  • Cisco Systems 7206VXR NPE-400 - page 9

    9 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Cryptographic Key M anagement Figure 4 T amper Evidence La bel Placement (Fr ont View) Figure 5 T amper Evidence La bel Placement (Rear View) Cryptographic Key Management The router securely administers both crypto graphic ke ys and other crit ical sec ...

  • Cisco Systems 7206VXR NPE-400 - page 10

    10 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Cryptographic Key Management The module supports the fol lo wing critical security parameters (CSPs) : T able 2 Cr itical Secur ity Par amet ers # CSP Name Description Storage 1 CSP 1 This is the seed key for X9.31 PRNG. This ke y is stored in DRAM an ...

  • Cisco Systems 7206VXR NPE-400 - page 11

    11 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Cryptographic Key M anagement 14 CSP14 The IPSec encryption key . Zeroized when IPSec session is terminat ed. DRAM (plainte xt) 15 CSP1 5 The IPSec authentication k ey . The zeroization is the same as above. DRAM (plainte xt) 16 CSP1 6 The RSA public ...

  • Cisco Systems 7206VXR NPE-400 - page 12

    12 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Cryptographic Key Management The services accessing the CSPs, the type of access and which role accesses the CSPs a re listed in th e Figure 6 . 25 CSP2 5 This ke y is used by th e router to authenticate itself to the peer . The key is id entical to # ...

  • Cisco Systems 7206VXR NPE-400 - page 13

    13 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Cryptographic Key M anagement Figure 6 Role and Service Access t o CSPs ...

  • Cisco Systems 7206VXR NPE-400 - page 14

    14 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Cryptographic Key Management The module supports DE S (only for le gac y system s), 3DES, DES-MA C, TDES-M A C, AES, SHA-1, HMA C SHA-1, MD5, MD4, HMA C MD5, Dif fie-Hellman, RSA (for digit al signatures and encryption/decryptio n (for IKE authenticat ...

  • Cisco Systems 7206VXR NPE-400 - page 15

    15 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Self-Tests Key Zeroization All of the ke ys and CSPs of the module can be zer oized. Please refer to the Description column of Ta b l e 2 for information on meth ods to zeroize each k e y and CSP . Self-Tests T o pre vent secure data from bei ng relea ...

  • Cisco Systems 7206VXR NPE-400 - page 16

    16 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Secure Oper ation – Continuous random num ber generator test Secure Operation The Cisco 7206VXR NPE-400 ro uter with a single VPN Acceler ation Module (V AM) meets all the Le vel 2 requirements for FIPS 140-2. Follo w the setting in structions provi ...

  • Cisco Systems 7206VXR NPE-400 - page 17

    17 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Obtaining Documentation • If the Crypto Of f icer loads an y IOS image onto the router , this will put the router into a non -FIPS mode of operation. IPSec Requirements and Cryptographic Algorithms There are two types of k ey man agement method that ...

  • Cisco Systems 7206VXR NPE-400 - page 18

    18 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Documentation Fe edback Y ou can access the Cisco website at this URL: http://www .cisco.com Y ou can access international Cisco w ebsites at this URL: http://www .cisco .com/public/cou ntries_languages.shtml Ordering Documentation Y ou can f ind inst ...

  • Cisco Systems 7206VXR NPE-400 - page 19

    19 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Obtaining Technical Assista nce Cisco Technical Support Website The Cisco T echnical Su pport W ebsite provides online documen ts and tools for trou bleshooting an d resolving technical issues with Cisc o pro ducts and technologies. The webs ite is a ...

  • Cisco Systems 7206VXR NPE-400 - page 20

    20 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Obtaining Additional Pub lications and Information Obtaining Additional Publications and Information Information about Cisco products, techno logies, and netw ork solutions is a v ailable from various online and printed sources. • Cisco Marketplace ...

  • Cisco Systems 7206VXR NPE-400 - page 21

    21 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Obtaining Additional Publ ications and Information This document is to be used in conjunction with the docu ments that sh ipped with your hardware . CCSP, the Cisco Squ are Bridge log o, Cisco Unity , Follow Me Brow si ng, FormShare, and St ackWise ar ...

  • Cisco Systems 7206VXR NPE-400 - page 22

    22 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Obtaining Additional Pub lications and Information ...

Manufacturer Cisco Systems Category Network Router

Documents that we receive from a manufacturer of a Cisco Systems 7206VXR NPE-400 can be divided into several groups. They are, among others:
- Cisco Systems technical drawings
- 7206VXR NPE-400 manuals
- Cisco Systems product data sheets
- information booklets
- or energy labels Cisco Systems 7206VXR NPE-400
All of them are important, but the most important information from the point of view of use of the device are in the user manual Cisco Systems 7206VXR NPE-400.

A group of documents referred to as user manuals is also divided into more specific types, such as: Installation manuals Cisco Systems 7206VXR NPE-400, service manual, brief instructions and user manuals Cisco Systems 7206VXR NPE-400. Depending on your needs, you should look for the document you need. In our website you can view the most popular manual of the product Cisco Systems 7206VXR NPE-400.

A complete manual for the device Cisco Systems 7206VXR NPE-400, how should it look like?
A manual, also referred to as a user manual, or simply "instructions" is a technical document designed to assist in the use Cisco Systems 7206VXR NPE-400 by users. Manuals are usually written by a technical writer, but in a language understandable to all users of Cisco Systems 7206VXR NPE-400.

A complete Cisco Systems manual, should contain several basic components. Some of them are less important, such as: cover / title page or copyright page. However, the remaining part should provide us with information that is important from the point of view of the user.

1. Preface and tips on how to use the manual Cisco Systems 7206VXR NPE-400 - At the beginning of each manual we should find clues about how to use the guidelines. It should include information about the location of the Contents of the Cisco Systems 7206VXR NPE-400, FAQ or common problems, i.e. places that are most often searched by users in each manual
2. Contents - index of all tips concerning the Cisco Systems 7206VXR NPE-400, that we can find in the current document
3. Tips how to use the basic functions of the device Cisco Systems 7206VXR NPE-400 - which should help us in our first steps of using Cisco Systems 7206VXR NPE-400
4. Troubleshooting - systematic sequence of activities that will help us diagnose and subsequently solve the most important problems with Cisco Systems 7206VXR NPE-400
5. FAQ - Frequently Asked Questions
6. Contact detailsInformation about where to look for contact to the manufacturer/service of Cisco Systems 7206VXR NPE-400 in a specific country, if it was not possible to solve the problem on our own.

Do you have a question concerning Cisco Systems 7206VXR NPE-400?

Use the form below

If you did not solve your problem by using a manual Cisco Systems 7206VXR NPE-400, ask a question using the form below. If a user had a similar problem with Cisco Systems 7206VXR NPE-400 it is likely that he will want to share the way to solve it.

Copy the text from the picture

Comments (0)