Integrated Services Routers
Value Added Services for Enterprises
Daniel Peña
Channels Systems Engineer
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Agenda
Introduction: Integrated Branch
Integrated Services Routers Portfolio
Value Added Services
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
2
Introduction:
Integrated Branch
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
3
Moving to an Integrated Branch
Today’s Branch—WAN
ISR G2 TDM
Empowered Branch—WAN
Aging, Disparate Data/
Voice Networks
Unified Voice/Data/Video
Network Platform
Saturated WAN,
Poor Response Time
Optimized WAN,
Accelerated Applications
Blended Security
Threats, Compliance
Self Defending Networks
Limited Mobility, Limited
Disaster Recovery
High Availability, Unified
Wireless—Wireline Business
Inconsistent Branches
and Branch-HQ solutions
Consistent Branches
and Branch-HQ Services
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
4
Service Model
Overlay vs Integrated
Integrated Services Router
Overlay Appliances
Router
Switch
Wireless LAN
WAN/App Optimization
vs.
Security Appliance
Voice Appliance
Cisco ISR provides integrated
Voice, Wireless, Video, WAN
Optimization and Switch
Service
Interoperability
System
Support
Operational
Efficiency
Investment
Protection
 Consistency
 Tested
Interoperability
 High Availability
 Vendor
accountability:
network partner
 Fewer
maintenance
contracts
 Fewer devices,
management
systems, user
interfaces
 Simplified
troubleshooting
 Flexibility to
evolve through
system
modularity
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
5
Key Takeaways
 Cisco ISRs are not just routers – IOS can
do a lot more than just routing.
 Cisco ISR can support almost any type of
physical interface, suitable for every kind of
deployment scenario.
 Cisco ISRs provide customers with
unparalel flexibility, allowing them to deploy
multiple services in a single device and
reduce overall costs.
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
6
Integrated Services Routers
Portfolio
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
7
Cisco Integrated Services Routers G1/G2
3925E*, 3945E*
2901, 2911,
2921, 2951
1905*, 1921*
887*, 887V*,
888E*
3925, 3945
1941, 1941W
860, 880, 890
180x, 181x,
1841, 1861
2801, 2811,
2821, 2851
850, 870
Virtual
Office
3825, 3845
Secure
Mobility
Customizable
Applications
Secure
Collaboration
Scalable RichMedia Services
Enhancing the Customer Experience
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
8
ISR G2 Performance Positioning
WAN Access Speeds with Services
3945E
WAN Access Speed With Services
Line Rate N x FE
Fractional GE
3925E
3945
Line Rate
FE +
3925
2951
VDSL2+/Subrate FE
2921
2911
T1/E1
EFM
1941/2901
25 Mb
ISR G2 TDM
35 Mb
© 2009 Cisco Systems, Inc. All rights reserved.
50 Mb
Cisco Confidential
75 Mb
100 Mb
150 Mb
250 Mb
350 Mb
9
ISR Performance Positioning
WAN Access Speeds with Services
3845
WAN Access Speed With Services
1 T3/E3
350-500 kpps
14 E1/T1
3825
6 E1/T1
2851
4 T1/E1
90-220 kpps
2821
2 T1/E1
2811
1 T1/E1
1 T1/E1
2801
70 kpps
1841
4 Mb
2 Mb
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
8 Mb
12 Mb
22 Mb
45 Mb
10
Cisco 800 Series
Integrated Services Routers
890
880G
880
860
ADSL2/2+ WAN




VDSL WAN

G.SHDSL WAN





4x
10/100
4x
10/100
4x
10/100


*

10/100/1000 WAN
10/100 WAN
LAN Interfaces
802.11n (a/b/g/n)


8x
10/100
SRST (4 users)
Backup
V.92
modem or
ISDN BRI
3G
or ext.
modem
Virtual Office (teleworkers)
with Security

3G Wireless
o Very small offices, Cisco
o Up to 15 Mbps WAN Access

802.11n (b/g/n)
Secure Mobility
Platform
ISDN BRI
ext.
or ext.
modem
modem
o Integrated 3G + xDSL on 880
platforms
o Fixed configurations:
Pick your:
1.
2.
3.
4.
WAN interface(s)
802.11 Wireless (Y/N)
SRST* (Y/N)
Backup Interface
* SRST available with 10/100 or G.SHDSL WAN
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
11
Cisco 1900 Series
Integrated Services Routers
1941W
1941
1921
1905
SM Slots
0
0
0
0
ISM Slots
Fixed
802.11n
Radio
1
0
0
EHWIC Slots
2
2
2
1
Fixed Serial
WAN Port
-
-
-
1
Onboard
WAN Ports
2 GE
2 GE
2 GE
2 GE
Onboard DSP
Slots
0
0
0
0
Default Flash
256 MB
256 MB
256MB
256MB
Default DRAM
512 MB
512 MB
512 MB
fixed
256M/
512M
2RU
2RU
1 RU
1 RU
Internal
Internal
External
External
Form Factor
PoE
ISR G2 TDM
Secure Mobility Platform
o 25 Mbps WAN Access with Services
o Factory selectable Integrated
wireless 802.11n option
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
o Desktop form factor with Double
Wide HWIC Support
o Cisco 1905 – Entry level serial router
with a choice of 4 port LAN switch,
3G or ISDN modules
Cisco 1905/1921 Availability: May CY 2010
12
Cisco 2900 Series
Integrated Services Routers
2951
2921
2911
2901
SM Slots
2
1
1
0
ISM Slots
1
1
1
1
EHWIC Slots
4
4
4
4
Onboard DSP Slots
3
3
2
2
Onboard WAN Ports
3 GE
(1 SFP)
3 GE
(1 SFP)
3 GE
2 GE
Default Flash
256 MB
256 MB
256 MB
256 MB
Default DRAM
512 MB
512 MB
512 MB
512 MB
2RU
2RU
2RU
1RU
Form Factor
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Secure
Collaboration Platform
o Up to 75 Mbps WAN Access
with Services
o Video-ready DSP support
o Increased service density with
Second Services module Slot
o E-PoE Support, up to 36 ports
o 12 Inch Depth on 2911
13
Cisco 3900 Series
Integrated Services Routers
3945E
3925E
3945
3925
Field
Upgradeable
Motherboards
SPE-250
SPE-200
SPE-150
SPE-100
Onboard WAN
4GE
(2 SFP)
4GE
(2 SFP)
3GE
(2 SFP)
3GE
(2 SFP)
Perf w/ Services
350 Mbps 250 Mbps 150 Mbps 100 Mbps
SM Slots
4
2
4
2
ISM Slots
0
0
1
1
EHWIC Slots
3
3
4
4
Onboard DSP
Slots
3
3
4
4
Opt Dual PS
Yes
Yes
Yes
Yes
Default Flash
256MB
256MB
256MB
256MB
Default DRAM
1 GB
1 GB
1 GB
1 GB
Form Factor
3RU
3RU
3RU
3RU
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Scalable Rich-media
Services Platform
New Services Performance Engine 200s:
o Up To 350Mbps WAN Access With
Services
o 4 GE ports onboard
All 3900 Series:
o Up to 1040 watts with PoE Boost
o Configurable dual Integrated
Redundant Power supplies
o Hot swappable fans and power supply
14
Integrated Value Added
Services
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
15
Routing &
Switching
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
16
Reference
WAN Module Support
Broadband Modules
ISDN BRI Modules
HWIC-CABLE-D-2
HWIC-CABLE-E/J-2
VIC2-2BRI-NT/TE
HWIC-4B-S/T
HWIC-4SHDSL
HWIC-2SHDSL
HWIC-1B-U
WIC-1B-S/T-V3
HWIC-ADSL-B/ST
HWIC-ADSLI-B/ST
ATM Modules
HWIC-1ADSL
HWIC-1ADSLI
NM-1A-OC3-POM
HWIC-1ADSL-M
HWIC-1VDSL
Sync / Async Modules
Serial WAN Modules
NM-1A-T3/E3
HWIC-16A
HWIC-8A
NM-1T3/E3
HWIC-4T1/E1
HWIC-8A/S-232
HWIC-4A/S
HWIC-4T
HWIC-1DSU-T1
HWIC-2A/S
NM-32A*
HWIC-1T
HWIC-2T
Wireless Modules
NM-4T*
HWIC-3G-GSM
HWIC-3G-HSPA
Channelized Modules
HWIC-3G-CDMA-V
HWIC-3G-CDMA-S
NM-8CE1T1-PRI
HWIC-2CE1T1-PRI
HWIC-1CE1T1-PRI
*ISR-G1 only
*ISR-G1 only
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
NM-1VSAT-GILAT*
Cisco Confidential
Reference
Ethernet Module Support
Ethernet Switch Modules
Ethernet Routed Ports
Service Modules (ISR-G2 only)
Network Modules
SM-D-ES3G-48-P
SM-ES3-16-P
NM-1GE*
NM-2FE2W-V2*
SM-D-ES3-48-P
SM-D-ES2-48
NM-1FE2W-V2*
NM-1FE1R2W*
SM-ES3G-24-P
SM-ES2-24-P
NM-2W*
SM-ES3-24-P
SM-ES2-24
HWIC
SM-ES3G-16-P
SM-ES2-16-P
HWIC-1GE-SFP
Network Modules
HWIC-1FE
NME-16ES-1G-P
NM-16ESW-1GIG
NM to SM Adapter
NME-16ES-1G
NM-16ESW
SM-NM-ADPTR
NME-XD-48ES-2S-P*
NME-XD-24ES-1S-P*
NME-X-23ES-1G-P*
NME-X-23ES-1G*
HWIC
HWIC-D-9ESW-POE
HWIC-4ESW-POE
HWIC-D-9ESW
HWIC-4ESW
*ISR-G1 only
ISR G2 TDM
HWIC-2FE
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
*ISR-G1 only
(ISR G2 only)
Unified
Communications
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
19
IP Communications for the
Enterprise Branch Office
Head
Quarters
CCM
Affordable and robust IP Communications for
enterprise branches and small to medium
sized businesses
IP WAN
Solution: Cisco Comm. Manager Express (CCME) with
Cisco Unity Express (CUE) or SRST with Comm.
Manager
Branch
ISR
CCME/SRST
and CUE
 Localized call processing with Cisco Comm. Manager
Express, CCME, for up to 450 phones!
 ―Failover‖ localized call processing with Cisco Survivable
Remote Site Telephony, SRST, for up to 1500 phones!
 Distributed Voicemail via Cisco Unity Express
(NM-CUE or AIM-CUE)
 Etherswitch® Module for Line Powering IP Phones
 Centralized DSP resources for voice connectivity
 Higher digital and analog voice densities
Remote
Users
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
20
Cisco Integrated Services Router
Portfolio for Unified Communications
With the Services Module and Integrated Services
Module – SRE for Unity Express (32 ports) and AXP
3845
Multiple Services
Concurrent Services and Performance
3825
2851
2821
2811
2801
1861
15
15
24*
4*
35
35
110
70
25
25
55
32
50
50
200
112
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.




*CUBE Light (SIP-SIP)
*8 FXS / 4 FXO ports
Small Office
100
100
225
170
Small Branch
Cisco Confidential
175
350
400
340
250
730
500
450
Cisco Unified Communications Manager
Express
Cisco Unified Survivable Remote Site
Telephony
Cisco Unified Border Element
Voice Gateway
Enterprise Branch Office
21
Cisco Next Generation Integrated Services Router
Portfolio for Unified Communications
3945E
Multiple Services
With the Services Module and Integrated Services
Module – SRE for Unity Express (32 ports) and AXP
3925E
Concurrent Services and Performance
3945
3925
2951
2921
2911
2901
880
SRST
0
4
12*
1*
35
35
100
50
50
50
200
100
100
100
400
170
150
150
600
250




*CUBE Light (SIP-SIP)
*4 FXS / 1 FXO ports
Small Office
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
250
730
800
480
Small Branch
Cisco Confidential
350
1200
1000
720
400
1350
2000
420*
450
1500
2500
660*
* Gateway – lower due to
fewer HWIC slots on
3945E & 3925E
Cisco Unified Communications Manager
Express
Cisco Unified Survivable Remote Site
Telephony
Cisco Unified Border Element
Voice Gateway
Enterprise Branch Office
22
Cisco Unity Express
Local Auto Attendant and Voice Mail System
Incorporates
Admission
with up to 500
Mailboxes,Network
32 Sessions
and
Control
(NAC) appliance server
600 Hours of
Storage
NME-CUE
AIM2-CUE
SM-SRE
ISM-SRE
Enforces
security policies,
 Supports CUCM
or CUCME
deployment
Scans for latest anti-virus software
scenarios
Prevents
unauthorized
access and
 Choice of Network
Module,
Advanced
spread of viruses on the network
Integration Module, Service Module or Internal
Supports
wireless
and guest NAC
Service module
forwired,
complete
flexibility
Integrated
into Cisco
ISRs
 Supported
on broad range
of Cisco
routers:
 Provides
scale
ideal for
industry leading
ISRsize
G1 and
(2800
/ 3800)
and ISR
remoteand
offices
(<100deployed
users)
G2 (2900 / 3900)
widely
with NAC appliances at
2600XM and Works
3700 series
headquarters in a network system
 International language support
 Benefits of router integration
 SNMP agent for remote monitoring, data
Systems Integration
collection and trap management
Lower Operating Costs
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
23
CUE Hardware, AA, Mailbox and IVR Support
CUE 7.1 Hardware Support
CUE 8.0 Hardware Support
 2800/3800
 Target FCS March ’10
– AIM-CUE, AIM2-CUE
 2800/3800
– NME-CUE
– AIM2-CUE, NME-CUE
 2900/3900
 2900/3900:
– ISM-SRE-300-K9
– ISM-SRE-300-K9
– NME-CUE (SM-NM-ADPTR adapter)
– NME-CUE (SM-NM-ADPTR adapter)
– SM-SRE-700-K9
ISM-SRE-300-K9: 512MB DRAM, 4GB flash
SM-SRE-700-K9: 2GB DRAM, 500GB HDD
Platform
2800/3800
2900/3900
ISR G2 TDM
Hardware
Bundled
Ports
AIM2-CUE
6
6
6
65
14
NME-CUE
8
24
24
275
300
ISM-SRE-300-K9
6
10
10
100
60
NME-CUE
8
24
24
275
300
SM-SRE-700-K9
4
32
32
500
600
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Max
Max IVR
Ports Sessions
Max
Mailboxes
Storage
(hours)
High Density Analog Gateway
Extended Voice Module (EVM-HD)
 The EVM card (with voice/fax expansion
Incorporates Network Admission
modules) supports high-density FXS,
Control and
(NAC)
server
FXO, Analog-DID
BRIappliance
ports
POTS/ISDN
PSTN
 Enforces security policies,
V
 Baseboard: EVM-HD-8FXS/DID
IP WAN
Access
Gateway
Scans for latest anti-virus software
 Expansion Modules:
Prevents unauthorized access and
spread of viruses on the network
 EM-HDA-8FXS
Supports wired, wireless and guest NAC
 EM-HDA-3FXS/4FXO
Integrated into Cisco ISRs
VIC3-4FXS/DID
16
VIC3-4FXS/DID
remote offices (<100 users)
 EM-HDA-6FXO
VIC3-4FXS/DID
Works with NAC appliances at
 ISR G2 can headquarters
be fully populated
with
EVM
in a network
system
VIC3-4FXS/DID
3945
112 Total FXS Ports
ISR G2 TDM
EVM-8FXS/DID with
2xEM3-HDA-8FXS/DID
24
EVM-8FXS/DID with
2xEM3-HDA-8FXS/DID
24
EVM-8FXS/DID with
2xEM3-HDA-8FXS/DID
24
EVM-8FXS/DID with
2xEM3-HDA-8FXS/DID
24
© 2009 Cisco Systems, Inc. All rights reserved.
 EM-4BRI-NT/TE
 Provides size and scale ideal for
Cisco Confidential
cards, supporting
to integration
112 FXS ports
 Benefits ofup
router
on 3945
Systems Integration
Lower Operating Costs
25
Cisco Unified Border Element (CUBE)
IOS Integrated Session Border Controller
1 SP SIP Trunk Interconnect
H.323/SIP
SIP
CUBE
2
SIP SP
Enterprise Interconnect
H.323
SIP
CUBE
Incorporates Network Admission
1) SIP Trunk interconnection
Control (NAC) appliance server
2) Application interworking with CUCM
 Enforces
and IP security
PBXs policies,
for latest
anti-virus
software
3) Scans
Telepresence
business
interconnect
unauthorized
access and
4) Prevents
Video Business
interconnect
spread of viruses on the network
 Enterprise
SBCwireless
functions
Supports wired,
and guest NAC
–Session Management
Integrated
into Cisco ISRs
3 Telepresence Interconnect
CUBE
 CUBE enables
CUBE
–Protocol Interworking
 Provides size and scale ideal for
–Demarcation
remote offices (<100 users)
–Security
Works with NAC appliances at
headquarters in a network system
 Capacity
4 H.323 Video Interconnect
CUBE
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
 Benefits of router integration
–Up to 2500 VAD-off sessions
Systems Integration
–Up to 3100 VAD-on sessions
Lower Operating Costs
CUBE
Cisco Confidential
26
Cisco Unified SIP Proxy (CUSP)
CM/CME SIP Aggregation & Load Balancing
CUCME / CUCM SIP Aggregation
ISRISR
 Simplifies management of large SIP
Incorporates
networks
– no Network
need for Admission
full mesh
Control
(NAC) appliance server
network
configuration
 Enforces
policies,
Dial plansecurity
provisioning,
DNS, TLS
Scans
for latest
anti-virus software
 SIP
trunk
aggregation
(CUCM,
CUCME,
trunks)
PreventsSP
unauthorized
access and
spread of
virusesand
on the
network
 Flexible
routing
normalization
Supports
wired, wireless and guest NAC
policies
Scalability & Load Balancing
Service
Provider 1
Cisco Unified
SIP Proxy
Enterprise
Service
Provider 2
Integrated
into
Cisco
ISRs CME’s
 Load
balancing,
such
as CUBE’s,
 Provides size and scale ideal for
 Highremote
availability
offices (<100 users)
Workssolution
with NAC
appliances at
 Integrated
in ISR
headquarters in a network system
 Single box
 Benefits of router integration
 Eliminates need for separate standSystems
Integration
alone
proxy
server
Lower Operating Costs
 Simplifies management
Cisco Unified
Border Element
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
27
Reference
UC Module Support (1 of 2)
ISR G1/G2
ISR G1 Only
ISR G1/G2
ISR G1 Only
Analog and BRI Cards (VIC)
Digital T1/E1 Cards (VWIC)
VIC2-2FXO
VIC-2FXS
VWIC2-1MFT-T1/E1
VWIC-1MFT-T1
VIC2-4FXO
VIC-2FXO
VWIC2-2MFT-T1/E1
VWIC-1MFT-E1
VIC2-2BRI-NT/TE
VIC-2FXO-EU
VWIC2-1MFT-G703
VWIC-2MFT-T1
VIC3-2E/M
VIC-2FXO-M1/M2/M3
VWIC2-2MFT-G703
VWIC-2MFT-E1
VIC3-2FXS/DID
VIC-2E/M
VWIC-2MFT-T1-DI
VIC3-2FXS-E/DID
VIC-2DID
VWIC-2MFT-E1-DI
VIC3-4FXS/DID
VIC-2BRI-S/T-TE
VWIC-1MFT-G703
VIC-2BRI-NT/TE
VWIC-2MFT-G703
VIC-2CAMA
EVM and EM Cards
VIC-1J1
EVM-HD-8FXS/DID*
NM-HDA
VIC-4FXO-M1
EM-4BRI-NT/TE
EM-HDA-8FXS
VIC-4FXS/DID
EM-HDA-3FXS/4FXO
EM-HDA-4FXO
VIC2-2FXS
EM-HDA-6FXO
EM2-HDA-4FXO
VIC2-2E/M
EM3-HDA-8FXS/DID
*Requires SM-NM-ADPTR card
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Reference
UC Module Support (2 of 2)
ISR G1/G2
ISR G1 Only
ISR G1/G2
ISR G1 Only
DSP Cards (DSP, PVDM, EC)
Network Modules (NM)
NM-HD-1V
NM-1V/2V
PVDM2-8
PVDM-12
NM-HD-2V
NM-HDA
PVDM2-16
DSP-HDA-16
NM-HD-2VE
NM-HDV
PVDM2-32
PVDM-4
NM-HDV2
NM-HDV-FARM-C36
PVDM2-48
PVDM-8
NM-HDV2-1T1/E1
NM-HDV-FARM-C54
PVDM2-64
PVDM-256K-4
NM-HDV2-2T1/E1
NM-HDV-FARM-C90
EC-MFT-32
PVDM-256K-8
EC-MFT-64
PVDM-256K-12
Application Modules
NME-CUE
AIM-CUE
PVDM3-16*
PVDM-256K-16
NME-UMG
AIM2-CUE
PVDM3-32*
PVDM-256K-20
NME-UMG-EC
NM-CUE
PVDM3-64*
PVDM-256K-16HD
NM-CUSP-522
NM-CUE-EC
PVDM3-128*
PVDM-256K-20HD
NME-APPRE
PVDM3-192*
ISM-SRE-300-K9 (CUE)*
PVDM3-256*
SM-SRE-700-K9 (CUE)*
Adapter Cards
PVDM2-ADPTR*
*ISR G2 Only
SM-NM-ADPTR*
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
CEoIP Network Modules HW
Circuit Emulation over IP (CEoIP)
Incorporates Network Admission
Ideal for
TDM or
Leased
Line
Control
(NAC)
appliance
server
replacement
and security
legacypolicies,
network
 Enforces
consolidation
Scans for latest anti-virus software
Two versions available:
Prevents unauthorized access and
spread of viruses on the network
NM-CEM-4TE1
Supports wired, wireless and guest NAC
4 T1/E1 ports
Integrated into Cisco ISRs
NM-CEM-4SER
 Provides size and scale ideal for
Circuit Emulation
remote
offices (<100 users)
4 serial
ports
Works with NAC appliances at
Supports X.21,headquarters
V.35, RS232,
RS449,
in a
networkRS530,
system
IP Network
V
V
TDM CPE
ISR G2 TDM
TDM Virtual
Connection
© 2009 Cisco Systems, Inc. All rights reserved.
TDM CPE
Cisco Confidential
and RS530A
 Benefits of router integration
Systems
CEoIP is supported
onIntegration
all ISR’s from 2811
and up.
Lower Operating Costs
30
Virtualization
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
31
ISR-G2: Service Virtualization
Cisco Services Ready Engine
Virtualized
Services
o Service modules with integrated compute & storage in
o
Integrated
Compute and
Storage
Centralized
Management
o
small, router integrated footprint
Range of virtualized services and applications to meet
branch needs
Centralized deployment and management of services
with flexibility to change without truck rolls
Any Service, Any Branch, Any Where
Network and
Collaboration
Services
Optimized Branch
Experience
ISR G2 TDM
Custom
Applications for
any Deployment
Network-aware Lean
Applications
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Industry Standard
Server
Virtualization
Server Consolidation
Cloud / Data
Center
Survivability
Business Continuity
32
Virtualized Services Framework
Virtualized Services
Software can be deployed and managed remotely without truck-rolls
Compute Services &
Third Party Applications
Cisco Network &
Collaboration Services
Management
Central management
for remote
provisioning
Cisco and
3rd Party
Management
Tools
Integrated Compute and Storage Hardware
Hardware can be deployed with the router
Services Ready Engine – SM or ISM
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
33
Services Ready Engines (SRE)
Technical Comparison
SRE 300 ISM
SRE 700 SM
SRE 900 SM
Processor
Genuine Intel
Processor 1.066 GHz
(Single Core)
1.86 GHz Intel Core 2
Duo
(Single Core)
1.86 GHz Intel Core 2
Duo
(Dual Core)
Maximum
Memory
512 MB
4 GB
4 GB
Maximum
Storage
4 GB Compact Flash
500 GB SATA HDD
2 x 500 GB SATA HDDs
w/ RAID 0/1
Ports
 2 Internal GE ports
Security
ISR G2 TDM
 2 Internal GE ports
 1 External GE port
 1 External USB port
 2 Internal GE ports
 1 External GE port
 1 External USB port
Security Co-processor
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
34
Mobility
Applications
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
35
Mobility: Wireless LANs
Companies need enable mobile access to
critical applications and data throughout
the site, while maintaining security.
Cisco ISR
 Wireless
 Security
 IP Telephony
IP Video
Surveillance
Solution: Integrated Wireless Access Points and
Structured Wireless Aware Networks
• Convenient, easy to deploy integrated access points
• Local LEAP authentication, can take over
authentication if RADIUS server is down
• Rogue access point detection to protect against
unauthorized access
Wired
Users
IP Phone
• Wireless LAN controller can be integrated into ISR to
ease management of wireless LAN deployment
Wireless
Users
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Kiosks
36
Cisco Unified Wireless LAN
Extending Cisco Wireless Router Solution
WCS
802.11n
Broadband Access
Cisco ISR
CAPWAP /LWAPP
Tunnel
Internet
AAA
AP
Controller
 2.4 GHz 802.11n support
 Extended range and higher
throughput
 Hands-free wireless
provisioning with controller
 Dynamic RF management
with WCS
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
 Mix and match embedded AP
with external APs with consistent
feature and management
capabilities
 HREAP option providing local
traffic switching support for branch
office and teleworkers
37
3G Wireless WAN Applications
 WAN backup for Branch Offices,
Retail Stores, Warehouses, Banks,
Mall Outlets, etc.
 Primary connectivity for Remote
locations like Gas Stations,
Convenience Stores, Lottery
Kiosks, etc.
EVDO RevA  EVDO Rev0  1XRTT
HSPA  UMTS  EDGE  GPRS
 Telemetry applications for gathering
data from remote sensors
3G WWAN
as Backup
 Remote Banking and ATM machines
 Mobile Applications, Portable
Communications Kit for Disaster
Recovery and Temporary Sites
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Branch Office
X
Primary
WAN Failure
38
Applications powered by 3G
 Reliable, resilient WAN backup for
–Network outages
–Disaster recovery
 Rapid deployment
–Instant branch connectivity for temporary
or new sites
–Temporary connectivity for nomadic sites
 Portable deployments
–Kiosks, construction trailers, and mobile
banks
 ―Primary data‖ connection
–Store-in-store, smaller retail stores, ATM
connectivity, gas stations, and Telemetry
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
39
Satellite Communications
NM-1VSAT-GILAT Network Module
 VSAT indoor unit (IDU) integrated on
a Network Module
 Connects to outdoor unit (ODU) using
coaxial cable
Outbound
DVB-S
Inbound
FTDMA
 Works in a star topology
 Ku and Extended Ku, C & Extended
C band
 Works with GILAT-SkyEdge
compatible hub
 Supports up to 10 Mbps of data in
outbound direction (Hub to VSAT)
Outdoor Unit
(ODU)
Rx
Tx
 Up to 2 Mbps of data in inbound
direction (VSAT to Hub)
Single Slot NM Form Factor
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
40
Reference
Mobility Module Support
Wireless LAN Controllers
NME-AIR-WLC25-K9
NME-AIR-WLC12-K9
NME-AIR-WLC6-K9
NME-AIR-WLC8-K9*
Access Points Modules
HWIC-AP-AG-B*
HWIC-AP-AG-E*
HWIC-AP-AG-P*
HWIC-AP-AG-N*
HWIC-AP-G-A*
HWIC-AP-G-E*
HWIC-AP-G-J*
Satellite Modules
NM-1VSAT-GILAT
3G Modules
HWIC-3G-GSM
HWIC-3G-CDMA
HWIC-3G-CDMA-V
HWIC-3G-CDMA-S
HWIC-3G-HSPA
*ISR G1 Only
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
41
Operational
Excellence
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
42
Operational Excellence
Operational Efficiency through Innovation
o
o
o
o
o
o
Remote deployment, management and monitoring
Gibabit Ethernet Switching Modules with Enhanced POE
EnergyWise Support with configurable slot controls
Field upgradeable motherboard for performance growth
Increased redundancy across portfolio
Single Universal IOS Image with Cisco IOS 15.0(1)M
New Business Innovations Drive Lowest TCO
Operational
Simplicity–No
Truck Rolls!
ISR G2 TDM
Energy Efficiency
and Savings
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Hardware Re-usability
with Investment
Protection
Business
Uptime
43
Energy Efficiency and Green
Hardware Re-usability
Cisco EnergyWise
o 90% of service modules and
o EnergyWise support
WAN interface cards supported.
o Investment protection
parity with Catalyst Fixed
switching family
Integrated Switching
o Up to 48 ports of FE/GE
switching
o No additional power
supply required
o Industry leading ePoE
Green Engineering
o Configurable slot-based controls
o Power Boost mode on 3900 series
o High-efficiency power supplies (85%)
Environmentally Friendly
o RoHS compliant
motherboards – no lead!
o Recyclable packaging
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
44
Energy Efficiency = Real Results
5 Year Results
PM
AM
Total
Devices
kWh
Saved
$$
Saved
1—Cisco 3945
50
0%
0%
4 —Wireless AP
200
66%
66%
20 —IP Phones
1000
66%
66%
Per Site/Year - 50 Sites
1 —SRE
300
66%
66%
83 Cars Removed
1—PVDM3
Total
ISR G2 TDM
54% Savings in Energy
451 Tons of CO2
1—EtherSwitch
3 —SRE
$ 87 K in Savings
© 2009 Cisco Systems, Inc. All rights reserved.
54%
Cisco Confidential
54%
45
Security
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
46
Only Cisco Router Security Delivers All This
ISR
Secure Network Solutions
Business
Continuity
Secure
Voice
Secure
Mobility
Compliance
Integrated Threat Management
011111101010101
Advanced
Firewall
Content
Filtering
Intrusion
Prevention
Secure Connectivity
GET VPN
ISR G2 TDM
DMVPN
Easy VPN SSL VPN
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
Flexible
Network
Packet
Admission 802.1x
Matching Control
Network
Foundation
Protection
Management and Instrumentation
CCP
Role-Based
Access
NetFlow
IP SLA
47
Network Admission Control (NAC)
Companies need to minimize downtime due to viruses
and worms, protect network availability and integrity,
manage network access, and enforce security policy
Solution: Cisco Network Admission Control (NAC)
 Reduces IT costs by preventing external and internal threats
 Prevents ―contagious‖ endpoints from infecting network; reduces downtime
 Day-zero protection, increases network availability, resilience, and productivity
 Leverages existing Cisco, antivirus, and endpoint investments
 Integrated Services Router is one of first network devices to enable NAC
Policy Server
(AAA)
Cisco Integrated
Services Router
Credentials
Credentials
Credentials
EAP/UDP,
RADIUS
HTTPS
EAP/802.1x
Notification
Access
Rights
Comply?
Enforcement
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
48
Intrusion Prevention Systems
Threat Defense: prevent and respond to
network attacks such as worms and virus
Hacker
Data Center
Solution: Intrusion Prevention System (IPS)
 IPS in hardware with NME-IPS, or software with Cisco
IOS IPS
 Cisco IOS IPS: Inline Intrusion Prevention—send
alarm, drop packet, reset connection
 Dynamically load customizable signatures
 IPS Network Module stores signature data base
locally and captures/logs all events
Internet
Monitoring
Cisco ISR with
IOS IPS option
IDS DB
NME-IPS
 External NM FE allows for complete IDS segmented
Net/Op and Sec/Op management
AIM-IPS-K9
NME-IPS
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
 Dedicated CPU
 Monitors, and
Report alarms
 Built in GU for
Graphical reports
Cisco Confidential
Remote
Users
49
Intrusion Prevention System (IPS)
Advanced Integration and Network Modules
AIM-IPS-K9
Integrated Threat Control for Cisco ISR
 Enables Inline Intrusion Prevention (IPS)
 Runs same software (CIPS 6.2) and enables
same features as Cisco IPS 4200
NME-IPS-K9
Performance Improvement by Hardware Acceleration.
 Dedicated CPU and DRAM to offload host CPU
 AIM – Up to 45 Mbps
 NME – Up to 75 Mbps
Cisco IOS Advanced Security & above
AIM – Cisco 1841, 2800, 3800
NME –Cisco 2800/3800/2900/3900
Management by both Routing and IPS software
 Cisco Configuration Professional (CCP) (Device)
 Cisco IPS Device Manager (IDM)
 IPS Manager Express (IME)
 Cisco Security Manager (CSM) (Network wide)
 CS-MARS (event monitoring and correlation)
AIM-IPS
NME-IPS
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
50
Traffic Monitoring
Network Analysis Module (NM-NAM, NAM Application Software 4.1)
NM-NAM Network Module for Integrated
Services Routers
 All-inclusive solution that combines
performance monitoring, traffic
analysis, and advanced
troubleshooting
NM-NAM
80 or 120 GB Sata disk
 Quick to deploy and easy to use with
embedded web based traffic
analyzer GUI
 Collects NetFlow Data Export to
provide broad application-level
visibility
 Tracks response times using the
ART MIB to isolate application
performance problems related to the
network or to the server
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
51
Video
Surveillance
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
52
Cisco Integrated Video Surveillance
The Cisco Integrated Video Surveillance Solution
provides a cost effective way to deploy globally
accessible surveillance to your remote sites
Analog Video Gateway offers analog video interface
for IP Video Surveillance Solutions
 16 Analog Video Ports: MJPEG, MPEG-4, H.264
Integrated Analog Video Gateway
EVM-IPVS-16A
 8 Contact Closure Ports (4 input only, 4 input/output)
 2 RS-485 ports for device Pan/Tilt/Zoom control
 Analytics: Motion Detection Algorithms
Integrated Network Video Recorder
Video Management and
Storage System
NME-VMSS2-HP32
 Broadware Technologies Integration
 Unified interface into IP Cameras and Analog
devices (AVG)
 Manage, view and archive surveillance data for up to
32 devices simultaneously from anywhere in
network
 Expand the surveillance system flexibility with
Unified Communications
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
53
―Router-Integrated‖ Video Surveillance
IP Video
Surveillance
Unified
Communications
Cisco ISR
The network is the platform that
reinvents safety and security
 Easier to deploy new and
extend existing sites
 Greater monitoring flexibility,
anywhere anytime
Best in Class Network
Security
Operational Efficiency





ISR G2 TDM
Fewer devices at the branch
Converged UC-VS platform
One management system
Simplified troubleshooting
Lower TCO
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
 Tighter linkage between video
surveillance and other branch
applications
Investment Protection
 Leverages existing IP network
 Smooth analog to IP transition
 Leverages installed base of ISRs
54
Application
Acceleration
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
55
Application Acceleration
Data Center
Web applications, intranet portals, and business
video consume expensive WAN bandwidth
WAE
Internet
Solution: Cisco WAAS
 WAAS instantly delivers 2x-100x WAN application
performance improvement
– Optimizes performance by eliminating redundant data
transfers
NME-WAE
Cisco Integrated
Services Router
– Improves end-user experience by reducing latency
 WAAS delivers more bandwidth from existing WAN links
– Existing applications run faster and consume less bandwidth
– Additional bandwidth can be used to deploy new applications
– Remote resources can be centralized to meet regulatory
guidelines
 File Server & Server Consolidation:
– Consolidate file & print servers to reduce costs and increase
security
Branch Users
– Provide fast access to centralized file servers over WAN
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
56
WAAS Network Module
Data Redundancy Elimination (DRE)
Incorporates Network Admission
 Application-agnostic
compression
Control (NAC) appliance
server
Enforces
security policies,
 Up to 100:1
compression
Scans for latest anti-virus software
Persistent LZ Compression
NME-WAE-522, 502, 302
Cisco 2800/3800 & 2900/3900
Integrated Services Routers
Prevents unauthorized access and
spread ofcompression
viruses on the network
 Session-based
Supports wired, wireless and guest NAC
 Up to an additional 10:1
Integrated
intoafter
Cisco
ISRs
compression
even
DRE
 Provides size
and scale ideal for
TCP Flow Optimization
(TFO)
remote offices (<100 users)
Application-Specific
WorksAcceleration
with NAC appliances at
headquarters in a network system
 Application and Protocol Awareness
 Benefits of router integration
 2x-100x performance
improvements
 Encrypted hard drives
 Transparent in-band
deployment or off-path
interception
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
 Intelligent
ServerIntegration
Offload
Systems
Lower Operating
Costs
 WAAS Application
Accelerators
 Licensed developed and validated
with application vendors
Cisco Confidential
57
Application Performance Improvements
Category
File Sharing
Applications
CIFS
NFS
Microsoft Exchange
Lotus Notes
Internet Mail
Web and
Collaboration
HTTP
WebDAV
FTP
Microsoft Sharepoint
Software
Distribution
Microsoft SMS
Altiris
HP Radia
Microsoft SQL
Oracle, SAP
Lotus Notes
Backup
Applications
Microsoft NTBackup
Legato Networker
Veritas Netbackup
CommVault Galaxy
2-5X Avg
25X
2-5X Avg
Cisco Confidential
50X
100X+
>100X Peak
20X Peak
2-10X Avg
EMC SRDF/A
EMC IP Replicator
NetApp SnapMirror
Data Domain
Double-Take
Veritas Vol Replicator
© 2009 Cisco Systems, Inc. All rights reserved.
10X
100X Peak
2-20X Avg
Enterprise
Applications
ISR G2 TDM
5X
2-20X Avg
Email
Data Replication
2X
>100X Peak
20X Peak
2-10X Avg
50X Peak
2-10X Avg
50X Peak
58
Application
Extension Platform
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
59
Application eXtension Platform
Secure Network Integrated Infrastructure to Host Branch Applications
SDK and
Development
Portal
AXP
Partner
Program
NME-APPRE-302/502/522
AIM-APPRE-104
512MB, 2GB, Intel Tolapai
Complete
Ecosystem
ISM-SRE-300
512MB, 4GB, Intel 1,6GHz
Embedded Light-Weight Apps
•
•
•
•
ISR G2 TDM
AXP
Development
Services
AXP
Advanced
Services
512MB-2GB, 80/160GB,
Intel Celeron / Pentium M
SM-SRE-700/900
4GB, 500/1000GB, Intel Core Duo
General-Purpose and Packet
Services. Advanced Services
Linux-based integration environment with downloadable SDK
Multi-app support: segment and guarantee CPU, memory, disk
Extensible Cisco CLI with Cisco IOS APIs
Cisco ISR 1841, 2800, 3800, 2900, 3900 series support
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
60
Cisco AXP— Solution Partners
Vertical Solutions
Secure Healthcare
Connector
Healthcare
Financial
Services
VoIP
Recording
Secure Payment
Processing
Retail
Real-Time Information
Management
Energy
Horizontal Solutions
Workforce
Management
Fax-Over-IP
Remote Device
Management
Remote Device
Management
OSGI Framework
Channel Partners
and Reseller
―Build-your-own‖ or ―Pre-Packaged‖ Applications
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
61
Key Takeaways
 Cisco ISRs are not just routers – IOS can
do a lot more than just routing.
 Cisco ISR can support almost any type of
physical interface, suitable for every kind of
deployment scenario.
 Cisco ISRs provide customers with
unparalel flexibility, allowing them to deploy
multiple services in a single device and
reduce overall costs.
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
62
ISR G2 TDM
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
63