Security; Initial Router Configuration; Management Interfaces - Cisco ASR 9000 Getting Started Manual

Cisco systems router getting started guide

Hide thumbs Also See for ASR 9000:

Command reference manual (1138 pages)

Routing configuration manual (702 pages)

Reference manual (696 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

Table of Contents

Chapter 1

Introducing to the Cisco ASR 9000 Series Aggregation Services Router

Security

•

Initial Router Configuration

The initial configuration of the Cisco ASR 9000 Series Aggregation Services Router is determined

automatically by the software when you boot the router; you need not set up any general configuration

information. Also there is no explicit configuration needed to make a particular RSP active. It becomes

the active RSP when chosen automatically by the software upon boot.

Since there are not multiple RSP pairs in this router, the only RSP choices are RSP0 and RSP1. Typically,

the lower numbered slot is the chosen RSP. If that RSP is not available the software chooses the RSP in

the other slot as the route process controller, making it the primary RSP. During fail over or switch over,

the active role migrates to the standby RSP.

Management Interfaces

Although there is no need to set up general router configuration information, you do need to configure

management interfaces manually. Configure management ports on RSP0, RSP1, or both at the same

time:

•

The router provides different router management interfaces, described in the following sections:

OL-17502-01

F I N A L D R A F T — C i s c o C o n f i d e n t i a l

Cisco IOS XR Software: This software provides comprehensive network security features, including

ACLs; control-plane protection; routing authentications; authentication, authorization, and

accounting (AAA); TACACS+; IP Security (IPSec); Secure Shell (SSH) Protocol; SNMPv3; and

leading Routing Policy Language (RPL) support.

Layer 2 ACLs: You can use this security feature to filter packets under an EVC based on MAC

addresses.

Layer 3 ACLs: This feature matches ACLs by IPv4 protocol packet attributes.

Security: Many critical security features are supported:

Standard IEEE 802.1ad Layer 2 Control Protocol (L2CP) and bridge-protocol-data-unit

–

(BPDU) filtering

–

MAC limiting per EFP or bridge domain

–

Unicast, multicast, and broadcast storm control blocking on any interface or port

Unknown Unicast Flood Blocking (UUFB)

–

Dynamic Host Configuration Protocol (DHCP) Snooping

–

Unicast Reverse Path Forwarding (URPF)

–

Control-plane security

–

Secure Shell (SSH)

Authorization, Admission, Accounting (AAA)

Control Plane Policing (CoPP)

Telnet

Secure Shell (SSH)

Console Server

Cisco ASR 9000 Series Aggregation Services Router Getting Started Guide

Initial Router Configuration

1-9

Table of Contents

Security; Initial Router Configuration; Management Interfaces - Cisco ASR 9000 Getting Started Manual

Security

Initial Router Configuration

Management Interfaces

Related Manuals for Cisco ASR 9000

Related Content for Cisco ASR 9000

Table of Contents