Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Cisco Hardware Question

1 view
Skip to first unread message

Tom

unread,
Jun 29, 2009, 9:58:55 AM6/29/09
to
Hello,

We're looking for a single Cisco device that can support multiple
functions.

The functions I'm thinking of are:

Gateway (basic router functions)
VPN Server (IPSec)
Firewall
Web Proxy Server
VoIP Media Gateway (Similar to Audiocodes MP-112)
Remote admin (this is probably default with Cisco)
VLAN support

Anyone know of a single Cisco device capable of all these functions?

Thanks!

Thanks:)

Thrill5

unread,
Jun 29, 2009, 8:20:01 PM6/29/09
to
All of these features are supported in IOS with the exception of Web Proxy,
IOS doesn't do that. You need a router that supports VoIP to act as a voice
PSTN gateway, because this requires codecs and the appropriate interface
hardware. The selection of the router platform is dependent on many
different factors such as how many and types of interfaces you need to
support, and the expected packets to processed.


"Tom" <tdenh...@gmail.com> wrote in message
news:d5a0c2c7-2ded-42db...@l34g2000vbi.googlegroups.com...

Tom

unread,
Jun 29, 2009, 8:38:53 PM6/29/09
to
On Jun 29, 8:20 pm, "Thrill5" <nos...@somewhere.com> wrote:
> All of these features are supported in IOS with the exception of Web Proxy,
> IOS doesn't do that.  You need a router that supports VoIP to act as a voice
> PSTN gateway, because this requires codecs and the appropriate interface
> hardware.  The selection of the router platform is dependent on many
> different factors such as how many and types of interfaces you need to
> support, and the expected packets to processed.
>
> "Tom" <tdenham...@gmail.com> wrote in message

>
> news:d5a0c2c7-2ded-42db...@l34g2000vbi.googlegroups.com...
>
> > Hello,
>
> > We're looking for a single Cisco device that can support multiple
> > functions.
>
> > The functions I'm thinking of are:
>
> > Gateway (basic router functions)
> > VPN Server (IPSec)
> > Firewall
> > Web Proxy Server
> > VoIP Media Gateway (Similar to Audiocodes MP-112)
> > Remote admin (this is probably default with Cisco)
> > VLAN support
>
> > Anyone know of a single Cisco device capable of all these functions?
>
> > Thanks!
>
> > Thanks:)

Thanks Thrill5...we're looking for an off the shelf device that might
be able to do it all. We currently use a combo of devices such as
Cisco 1812, 2600 switch and a couple of Linux boxes. Maybe we could
put some kind of Cisco device and Linux proxy in place to handle the
load. The ports would be fairly low and we're going over a VSAT link,
so latency is pretty poor. Surprisingly the current setup works
pretty good, even with latency, however it's difficult to configure
because of all the various parts we have in our rack.

Anyway...thanks again.

Rob

unread,
Jun 30, 2009, 1:10:32 PM6/30/09
to
Tom <tdenh...@gmail.com> wrote:
> Thanks Thrill5...we're looking for an off the shelf device that might
> be able to do it all. We currently use a combo of devices such as
> Cisco 1812, 2600 switch and a couple of Linux boxes. Maybe we could
> put some kind of Cisco device and Linux proxy in place to handle the
> load. The ports would be fairly low and we're going over a VSAT link,
> so latency is pretty poor. Surprisingly the current setup works
> pretty good, even with latency, however it's difficult to configure
> because of all the various parts we have in our rack.

Of course you could do all of it with a single Linux box (except probably
the switch). But you need to study and experiment a lot to get everything
working.
In the past I have read about a Cisco web proxy module that was in fact
a Linux box in a network module, but it seems it has been discontinued.

Aaron Leonard

unread,
Jun 30, 2009, 1:15:08 PM6/30/09
to

~ All of these features are supported in IOS with the exception of Web Proxy,
~ IOS doesn't do that.

Check out "ip auth-proxy". You do need a RADIUS server for this.

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_configuration_example09186a00800942fd.shtml

Ruairi Carroll

unread,
Jun 30, 2009, 3:53:40 PM6/30/09
to


Hi Tom,

You could always use WCCP to redirect your web traffic to the proxy
(config guide : http://www.cisco.com/en/US/docs/ios/ipapp/configuration/guide/ipapp_wccp.html
), so all you'll be left with on that list is "VoIP Media Gateway
(Similar to Audiocodes MP-112)", which I'm pretty sure you should be
able to get something similar on a 3800 series (multi services
gateway).

Feel free to give me a shout if you're stuck configuring WCCP -- it
can be awkward.

/Ruairi

Thrill5

unread,
Jul 1, 2009, 6:09:39 PM7/1/09
to
An auth-proxy and web proxy are two very different things. The auth-proxy
feature is used to block http traffic until they have been authenticated, it
does nothing more. A web proxy is a device that can require authorization
(like auth-proxy does) and filter on URL, content, scan for viruses, and
some even can cache content.

"Aaron Leonard" <Aa...@Cisco.COM> wrote in message
news:4uhk455hb2ibgsg16...@4ax.com...

Tom

unread,
Jul 6, 2009, 3:34:46 PM7/6/09
to
> >http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_config...

Basically requires a web proxy...so need to block specific sites/
traffic and have a way to prevent video/audio streaming.

Thanks for the comments!

0 new messages