1 / 15

Management Solution for Cisco NG Advanced Security Services

Management Solution for Cisco NG Advanced Security Services. IPSec & virtual Firewall Management solution October 2007. Dorado Software: Redcell Management SW. A certified Cisco Technology development Partner.

soleil
Download Presentation

Management Solution for Cisco NG Advanced Security Services

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Management Solution for Cisco NG Advanced Security Services IPSec & virtual Firewall Management solution October 2007

  2. Dorado Software: Redcell Management SW • A certified Cisco Technology development Partner • Develop specialized product packages that address Cisco-specific IT infrastructure features as part of the Redcell Security Services Management Solution

  3. 12x04 12x16 12x06 12x10 Redcell Security Services Management Overview - Cisco Edition - • Enhance Cisco’s network based security and managed security solutions by providing a scalable and easy to use GUI based provisioning and monitoring system. • Provide an easy to use, graphical based, heterogeneous network and service management system • Perform centralized configuration management • Flow-through automated provisioning, decrease service activation time and decrease errors associated with manual tasks Cisco XR 12000 SPA-IPSEC

  4. Redcell Security Services Management – Cisco Edition - • Manage XR-12K based vFW services on MSB and IPsec services on VPN SPA • Provides scalable and easy to use GUI based provisioning and monitoring system • Overall management of the MSB • Overall management of the VPN SPA • Management of VRF-Aware Service Interface (VASI) • Management of vFW • Management of IPsec and GRE • Management of Service Policies

  5. vFW Services Management Solution - Detailed 12x04 12x16 12x06 12x10 • Detailed Discovery and Asset Management of Cisco XR 12000 device • Topology (logical & geographical) of all discovered devices • Device level configuration (FW, VASI, Blade HA) • Fault Management • Performance Management (vFW MIB support) • Advanced configuration of Cisco XR-12K Multi-Service Blade (MSB) • Discovery of the MSB (Context, Resource classes, Interfaces, ACLs, HA) • Inventory (Physical & Logical) of the MSB • Centralized Service Allocation and Provisioning for Service / Security policies • ACLs • NAT / PAT • Inspections • Upgrade & Patch • Firmware / Software • Security Patches • Change Management • Firewall context and ACL changes

  6. vFW Services Management Solution - Workflow • Discovery – Bring all the target devices under management by Redcell • (Optional) – Create network objects for use in Redcell Service Policies • (Optional) – Create VASI for use within the vFW • Create the vFW service, which creates the context. This includes fault tolerance configuration, FMI assignment, Resource Class configuration, and interface configuration • Create (multiple) Service Policies for use with the context. This includes ACLs, NAT/PAT (via multimatch), management policies, and inspection (FTP/HTTP) policies

  7. Access network PoP Transit / Distribution Core Peering XB XB XB XB Typical Deployment at the PoP P P PE I PE CE PE PE P CRS-12000 P CRS-1 vFW NAT PE SP CORE XR-12000 • FW Services are provided at the customer facing interface • Stateful FW Intra-chassis HA support • Service Configuration & Network Management by Dorado Software – Redcell solution Dorado Software

  8. 12x04 12x16 12x06 12x10 IPSec Services Management Solution - Detailed • Detailed Discovery and Asset Management of Cisco XR 12000 device • Topology (logical & geographical) of all discovered devices • Device level configuration • Fault Management • Performance Management (IPSec MIB support) • Advanced configuration of Cisco XR 12000 IPSec VPN SPA • Discovery of the IPSec VPN SPA (ISAKMP, IPSec, PKI, Failover, ACL, Service Tunnel) • Inventory (Physical & Logical) of the IPSec VPN SPA • Service Allocation and Provisioning for IPSec / ISAKMP VPNs • Including IPSec + GRE tunnels • Remote Access / EZ-VPN • Upgrade & Patch • Firmware / Software • Security Patches • Change Management • IPSec + GRE service interfaces • ISAKMP configuration Cisco XR 12000 SPA-IPSEC

  9. IPSec Services Management Solution - Workflow • Discovery – Bring all the target devices under management by Redcell • (Optional) Create Service templates for use in the service • Configure (multiple) IPSec customer sites as the service endpoints • Provision the IPSec (or IPSec / GRE) service Cisco XR 12000 SPA-IPSEC

  10. Redcell Lifecycle Management Features – Cisco Edition - Redcell offers complete lifecycle management • Visibility; • Configuration file back-up and restoration; • Software (OS) release management; • Comprehensive logging & auditing; • Service & device health monitoring; • Change detection & remediation; • Event management & automation; • Graphical service, network, and device topology; • Service provisioning; and • Comprehensive reporting on everything!

  11. Redcell Lifecycle Management Features – Cisco Edition -

  12. Redcell Lifecycle Management Features – Cisco Edition -

  13. Hardware Requirements – Cisco Edition - • Application Server • Solaris SunFire V240 with Dual 1.34 GHz CPU • Windows Pentium 4, 3.2 GHz CPU • 2 GB RAM / 20 GB available disk space • Mediation Server • Solaris SunFire V240 with Dual 1.34 GHz CPU • Windows Pentium 4, 3.2 GHz CPU • 2 GB RAM / 10 GB available disk space • Database Server (Oracle) • Solaris SunFire V440 with Quad 1.593 GHz CPU • 4 GB RAM / 20 GB available disk space

  14. Deployment Options – Cisco Edition - Clustered Server High Availability

  15. Contacts • Redcell Security Services Management – Cisco Edition - link • www.doradosoftware.com/ciscoSecurity • For additional information please contact • sales-aswan@doradosoftware.com

More Related