English dropdown-ico

Cisco Systems 7206VXR NPE-400 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22

Go to page of

Similar user manuals

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of Cisco Systems 7206VXR NPE-400, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Cisco Systems 7206VXR NPE-400 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of Cisco Systems 7206VXR NPE-400. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of Cisco Systems 7206VXR NPE-400 should contain:
- informations concerning technical data of Cisco Systems 7206VXR NPE-400
- name of the manufacturer and a year of construction of the Cisco Systems 7206VXR NPE-400 item
- rules of operation, control and maintenance of the Cisco Systems 7206VXR NPE-400 item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Cisco Systems 7206VXR NPE-400 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Cisco Systems 7206VXR NPE-400, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Cisco Systems service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Cisco Systems 7206VXR NPE-400.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the Cisco Systems 7206VXR NPE-400 item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    Corporate Headquarters: Copyright © 2004 Cisco Systems, Inc. All rights reserved. Cisco Systems, Inc., 170 West Tasman Drive, San Jose, CA 95134-1706 USA FIPS 140-2 Nonproprietary Security Policy for Cisco 7206VXR NPE-400 Router with VAM Introduction This is a non-propriet ary Cryptographic Module Secu rity Polic y for Cisco Systems. This security[...]

  • Page 2

    2 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 FIPS 140-2 Submission Package • Documentation Feedback , page 18 • Obtaining T echnical Assistance, page 18 • Obtaining Addition al Publications and Informati on, page 20 FIPS 140-2 Submission Package The Security Polic y document is one item in [...]

  • Page 3

    3 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Cryptographic Module Cryptographic Module The Cisco 7206VXR NPE-400 router wi th V AM is a multiple-chip standalone cryptographic module. The Cisco 7206VXR supports multi-protocol routing and brid ging with a wide v ariety of protocols and port adapte [...]

  • Page 4

    4 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Module Interfaces Ta b l e 1 shows the front panel LEDs, which provide overall status of the router o peration. The front pane l displays whether or not the rou ter is booted, if the redundant po wer is attached and operat ional, and ov erall acti vity[...]

  • Page 5

    5 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Module Interfaces The VPN Acceleration Module (V AM) is a single -width acceleration module that pro vides high-performance, hardware-assiste d t unneling and encrypti on services suitable for virtual pri vate network (VPN) remote access, site-to- site[...]

  • Page 6

    6 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Roles and Servic es In addition to th e b uilt-in interf aces, the router also has addition al port adapters that can optio nally be placed in an av ailable slot. Thes e port adapters ha ve man y embod iments, including multi ple Ethernet, token ring, [...]

  • Page 7

    7 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Roles and Services The User and Crypto Of ficer passw ords and the RADI US/T ACA CS+ shared sec rets must each be at least 8 alphanumeric characters in length. See the “Secure Operation” section on page 16 for more information. If o nly integ ers 0[...]

  • Page 8

    8 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Physical Security Physical Security The router is encased in a steel chassis. The front of the router includes six port adapter slots . The rear of the router includes on- board LAN connectors, PC Card slo ts, and Console/Auxiliary co nnectors, power c[...]

  • Page 9

    9 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Cryptographic Key M anagement Figure 4 T amper Evidence La bel Placement (Fr ont View) Figure 5 T amper Evidence La bel Placement (Rear View) Cryptographic Key Management The router securely administers both crypto graphic ke ys and other crit ical sec[...]

  • Page 10

    10 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Cryptographic Key Management The module supports the fol lo wing critical security parameters (CSPs) : T able 2 Cr itical Secur ity Par amet ers # CSP Name Description Storage 1 CSP 1 This is the seed key for X9.31 PRNG. This ke y is stored in DRAM an[...]

  • Page 11

    11 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Cryptographic Key M anagement 14 CSP14 The IPSec encryption key . Zeroized when IPSec session is terminat ed. DRAM (plainte xt) 15 CSP1 5 The IPSec authentication k ey . The zeroization is the same as above. DRAM (plainte xt) 16 CSP1 6 The RSA public [...]

  • Page 12

    12 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Cryptographic Key Management The services accessing the CSPs, the type of access and which role accesses the CSPs a re listed in th e Figure 6 . 25 CSP2 5 This ke y is used by th e router to authenticate itself to the peer . The key is id entical to #[...]

  • Page 13

    13 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Cryptographic Key M anagement Figure 6 Role and Service Access t o CSPs[...]

  • Page 14

    14 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Cryptographic Key Management The module supports DE S (only for le gac y system s), 3DES, DES-MA C, TDES-M A C, AES, SHA-1, HMA C SHA-1, MD5, MD4, HMA C MD5, Dif fie-Hellman, RSA (for digit al signatures and encryption/decryptio n (for IKE authenticat[...]

  • Page 15

    15 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Self-Tests Key Zeroization All of the ke ys and CSPs of the module can be zer oized. Please refer to the Description column of Ta b l e 2 for information on meth ods to zeroize each k e y and CSP . Self-Tests T o pre vent secure data from bei ng relea[...]

  • Page 16

    16 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Secure Oper ation – Continuous random num ber generator test Secure Operation The Cisco 7206VXR NPE-400 ro uter with a single VPN Acceler ation Module (V AM) meets all the Le vel 2 requirements for FIPS 140-2. Follo w the setting in structions provi[...]

  • Page 17

    17 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Obtaining Documentation • If the Crypto Of f icer loads an y IOS image onto the router , this will put the router into a non -FIPS mode of operation. IPSec Requirements and Cryptographic Algorithms There are two types of k ey man agement method that[...]

  • Page 18

    18 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Documentation Fe edback Y ou can access the Cisco website at this URL: http://www .cisco.com Y ou can access international Cisco w ebsites at this URL: http://www .cisco .com/public/cou ntries_languages.shtml Ordering Documentation Y ou can f ind inst[...]

  • Page 19

    19 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Obtaining Technical Assista nce Cisco Technical Support Website The Cisco T echnical Su pport W ebsite provides online documen ts and tools for trou bleshooting an d resolving technical issues with Cisc o pro ducts and technologies. The webs ite is a [...]

  • Page 20

    20 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Obtaining Additional Pub lications and Information Obtaining Additional Publications and Information Information about Cisco products, techno logies, and netw ork solutions is a v ailable from various online and printed sources. • Cisco Marketplace [...]

  • Page 21

    21 FIPS 140-2 Nonproprietary Security Policy fo r Cisco 7206VXR NPE-400 Router with VAM OL-3959-01 Obtaining Additional Publ ications and Information This document is to be used in conjunction with the docu ments that sh ipped with your hardware . CCSP, the Cisco Squ are Bridge log o, Cisco Unity , Follow Me Brow si ng, FormShare, and St ackWise ar[...]

  • Page 22

    22 FIPS 140-2 Nonproprietary Security Policy for Cisco 7206V XR NPE-400 Router with VAM OL-3959-01 Obtaining Additional Pub lications and Information[...]