Presentation is loading. Please wait.

Presentation is loading. Please wait.

Management Solution for Cisco NG Advanced Security Services IPSec & virtual Firewall Management solution October 2007.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Management Solution for Cisco NG Advanced Security Services IPSec & virtual Firewall Management solution October 2007."— Presentation transcript:

1 Management Solution for Cisco NG Advanced Security Services IPSec & virtual Firewall Management solution October 2007

2 Dorado Software: Redcell Management SW A certified Cisco Technology development Partner Develop specialized product packages that address Cisco- specific IT infrastructure features as part of the Redcell Security Services Management Solution

3 Redcell Security Services Management Overview - Cisco Edition - Enhance Cisco’s network based security and managed security solutions by providing a scalable and easy to use GUI based provisioning and monitoring system. Provide an easy to use, graphical based, heterogeneous network and service management system Perform centralized configuration management Flow-through automated provisioning, decrease service activation time and decrease errors associated with manual tasks Cisco XR 12000 SPA-IPSEC 12x06 12x16 12x10 12x04

4 Redcell Security Services Management – Cisco Edition - Manage XR-12K based vFW services on MSB and IPsec services on VPN SPA Provides scalable and easy to use GUI based provisioning and monitoring system Overall management of the MSB Overall management of the VPN SPA Management of VRF-Aware Service Interface (VASI) Management of vFW Management of IPsec and GRE Management of Service Policies

5 vFW Services Management Solution - Detailed Detailed Discovery and Asset Management of Cisco XR 12000 device –Topology (logical & geographical) of all discovered devices –Device level configuration (FW, VASI, Blade HA) –Fault Management –Performance Management (vFW MIB support) Advanced configuration of Cisco XR-12K Multi- Service Blade (MSB) –Discovery of the MSB (Context, Resource classes, Interfaces, ACLs, HA) –Inventory (Physical & Logical) of the MSB Centralized Service Allocation and Provisioning for Service / Security policies –ACLs –NAT / PAT –Inspections Upgrade & Patch –Firmware / Software –Security Patches Change Management –Firewall context and ACL changes 12x06 12x16 12x10 12x04

6 vFW Services Management Solution - Workflow 1.Discovery – Bring all the target devices under management by Redcell 2.(Optional) – Create network objects for use in Redcell Service Policies 3.(Optional) – Create VASI for use within the vFW 4.Create the vFW service, which creates the context. This includes fault tolerance configuration, FMI assignment, Resource Class configuration, and interface configuration 5.Create (multiple) Service Policies for use with the context. This includes ACLs, NAT/PAT (via multimatch), management policies, and inspection (FTP/HTTP) policies

7 Access network Transit / Distribution CorePeeringPoP Typical Deployment at the PoP P CRS-12000 CRS-1 XB XB PE XB XB I P P P SP CORE PE XR-12000  FW Services are provided at the customer facing interface  Stateful FW Intra-chassis HA support  Service Configuration & Network Management by Dorado Software – Redcell solution CE vFW NAT Dorado Software

8 IPSec Services Management Solution - Detailed Detailed Discovery and Asset Management of Cisco XR 12000 device –Topology (logical & geographical) of all discovered devices –Device level configuration –Fault Management –Performance Management (IPSec MIB support) Advanced configuration of Cisco XR 12000 IPSec VPN SPA –Discovery of the IPSec VPN SPA (ISAKMP, IPSec, PKI, Failover, ACL, Service Tunnel) –Inventory (Physical & Logical) of the IPSec VPN SPA Service Allocation and Provisioning for IPSec / ISAKMP VPNs –Including IPSec + GRE tunnels –Remote Access / EZ-VPN Upgrade & Patch –Firmware / Software –Security Patches Change Management –IPSec + GRE service interfaces –ISAKMP configuration Cisco XR 12000 SPA-IPSEC 12x06 12x16 12x10 12x04

9 IPSec Services Management Solution - Workflow 1.Discovery – Bring all the target devices under management by Redcell 2.(Optional) Create Service templates for use in the service 3.Configure (multiple) IPSec customer sites as the service endpoints 4.Provision the IPSec (or IPSec / GRE) service Cisco XR 12000 SPA-IPSEC

10 Redcell Lifecycle Management Features – Cisco Edition - Visibility; Configuration file back-up and restoration; Software (OS) release management; Comprehensive logging & auditing; Service & device health monitoring; Change detection & remediation; Event management & automation; Graphical service, network, and device topology; Service provisioning; and Comprehensive reporting on everything! Redcell offers complete lifecycle management

11 Redcell Lifecycle Management Features – Cisco Edition - Deep Discovery and Resynchronization Discover entire environment many different ways including via subnet, IP range, IP address or host name. Deep discovery all H/W, S/W, physical, and logical subcomponents. Inventory ViewSingle database and Graphical User Interface (GUI) of complete device assets for consistent IPsec and Firewall service configuration and activation Equipment Group Management Create static, dynamic, nested, and mixed groups for applying one- to-many changes to disparate network devices and group reporting Discrete ConfigurationReal-time discrete configuration of devices via GUI Active ConfigurationGraphical scripting / command-based configuration Configuration File Management Device configuration file backup, restore, view, edit, delete and compare. Template-based creation and management of full or partial, configlet, configuration files.

12 Redcell Lifecycle Management Features – Cisco Edition - Device Asset TopologyHierarchical visual mapping with alarm propagation. Visualize interrelationships of managed systems and underlying infrastructure down to the interconnect level. Task/ Job SchedulerPerform functions and tasks at scheduled times and intervals Audit TrailRecord all actions – system, user, device MonitoringPerformance monitoring (SNMP data collection & graphing, primarily used for thresholding), event/alarm monitoring (syslog/SNMP traps), and service monitoring (correlates SNP and Syslog events to defined services for service monitoring, as service-affecting alarms) ReportingFlexible template-based inventory reporting by device, subcomponent, and service. Exportable to.csv, html,.pdf formats User Security ManagementMulti-level security for individual user and group administration OSS interfaceWeb services/SOAP (XML) and SNMP trap forwarding

13 Application Server –Solaris SunFire V240 with Dual 1.34 GHz CPU –Windows Pentium 4, 3.2 GHz CPU –2 GB RAM / 20 GB available disk space Mediation Server –Solaris SunFire V240 with Dual 1.34 GHz CPU –Windows Pentium 4, 3.2 GHz CPU –2 GB RAM / 10 GB available disk space Database Server (Oracle) –Solaris SunFire V440 with Quad 1.593 GHz CPU –4 GB RAM / 20 GB available disk space Hardware Requirements – Cisco Edition -

14 Clustered Server High Availability Deployment Options – Cisco Edition -

15 Contacts Redcell Security Services Management – Cisco Edition - link  www.doradosoftware.com/ciscoSecurity www.doradosoftware.com/ciscoSecurity For additional information please contact  sales-aswan@doradosoftware.com sales-aswan@doradosoftware.com

Download ppt "Management Solution for Cisco NG Advanced Security Services IPSec & virtual Firewall Management solution October 2007."

Similar presentations

Lantech Pioneering Industrial and IP Networks TM Lantech-View Pro Network Management System.

Lantech Pioneering Industrial and IP Networks TM Lantech-View Pro Network Management System.
RiT PatchView Solution

RiT PatchView Solution
Customer Strategic Presentation March 2010

Customer Strategic Presentation March 2010
HetnetIP Ethernet BackHaul Configuration Automation Demo.

HetnetIP Ethernet BackHaul Configuration Automation Demo.
The System Center Family Microsoft. Mobile Device Manager 2008.

The System Center Family Microsoft. Mobile Device Manager 2008.
IP ADDRESS MANAGEMENT [IPAM]

IP ADDRESS MANAGEMENT [IPAM]
Overview of DVX 9000.

Overview of DVX 9000.
© 2006 IBM Corporation IBM Systems and Technology Group IBM Director v5.10 Craig Elliott

© 2006 IBM Corporation IBM Systems and Technology Group IBM Director v5.10 Craig Elliott
Highly Available Central Services An Intelligent Router Approach Thomas Finnern Thorsten Witt DESY/IT.

Highly Available Central Services An Intelligent Router Approach Thomas Finnern Thorsten Witt DESY/IT.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
VMware Update 2009 Daniel Griggs Solutions Architect, Virtualization Servers & Storage Solutions Practice Dayton OH.

VMware Update 2009 Daniel Griggs Solutions Architect, Virtualization Servers & Storage Solutions Practice Dayton OH.
Microsoft Virtual Server 2005 Product Overview Mikael Nyström – TrueSec AB MVP Windows Server – Setup/Deployment Mikael Nyström – TrueSec AB MVP Windows.

Microsoft Virtual Server 2005 Product Overview Mikael Nyström – TrueSec AB MVP Windows Server – Setup/Deployment Mikael Nyström – TrueSec AB MVP Windows.
Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.

Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.
Welcome Course 20410B Module 0: Introduction Audience

Welcome Course 20410B Module 0: Introduction Audience
1 © 2001, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Easy VPN Solutions Applications and Implementation with Cisco IOS.

1 © 2001, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Easy VPN Solutions Applications and Implementation with Cisco IOS.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
©2010 Check Point Software Technologies Ltd. | [Unrestricted] For everyone Endpoint Security Current portfolio and looking forward October 2010.

©2010 Check Point Software Technologies Ltd. | [Unrestricted] For everyone Endpoint Security Current portfolio and looking forward October 2010.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod3_L7 1 Network Security 2 Module 6 – Configure Remote Access VPN.

© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod3_L7 1 Network Security 2 Module 6 – Configure Remote Access VPN.
Introducing Kerio Control Unified Threat Management Solution Release date: June 1, 2010 Kerio Technologies, Inc.

Introducing Kerio Control Unified Threat Management Solution Release date: June 1, 2010 Kerio Technologies, Inc.
These materials are licensed under the Creative Commons Attribution-Noncommercial 3.0 Unported license (http://creativecommons.org/licenses/by-nc/3.0/)

These materials are licensed under the Creative Commons Attribution-Noncommercial 3.0 Unported license (

Similar presentations

Ads by Google