Information Technology Reference
In-Depth Information
environments now combine many of these service modules together to form what is now
referred to as services switches.
Catalyst 6500 security-related service modules include the following:
Firewall Ser vices Module (FWSM)
is a high-speed firewall module for use in the
Cisco Catalyst 6500 and Cisco 7600 series routing platforms. Up to four FWSMs can
be installed in a single chassis, providing 5 Gbps of throughput performance per
module. For service provider and large enterprise environments, the FWSM supports
advanced features such as multiple security contexts for both routed and bridged
firewall modes. Running multiple contexts on the same firewall hardware is a tech-
nique used to virtualize the FW into multiple firewalls, each with its own configura-
tion and firewall policy.
■
Intrusion Detection Service Module 2 (IDSM2)
is an IDS module that is part of the
Cisco IPS family that supports both inline (IPS) and passive (IDS) operation. IDSM2
provides up to 500 Mbps of packet inspection capabilities to efficiently monitor and
protect your infrastructure.
■
SSL Service Module
is an integrated service module for terminating SSL sessions on
Cisco Catalyst 6500 series switch or Cisco 7600 series routing platforms. By offload-
ing the SSL terminations with the SSL module, the web server's CPU is reduced, and
they can support more connections, thereby increasing operational efficiency. Up to
four S SL module s c an be u s ed in a s ingle chas s is.
■
IPsec VPN SPA
enables cost-effective and scalable VPN services using the Cisco
Catalyst 6500 series switches and Cisco 7600 series routing platforms. The module
does not have any interfaces, but instead uses the other LAN and WAN interfaces
that are available on the chassis. Using the SPA Carrier-400, each slot of the Cisco
Catalyst 6500 or Cisco 7600 router can support up to two Cisco IPsec VPN SPAs.
■
Web V P N S e r v ic e s Mo d u le
is a high-speed integrated SSL VPN Services Module for
support of large-scale remote-access VPN deployments. The WebVPN Services
Module support up to 32,000 SSL VPN users, and up to 4 modules can be used in a
single chassis.
■
Network Analysis Module
provides packet-capture capabilities and visibility into all
the layers of the network data flows. You can analyze application traffic between
hosts, networks, and servers. The NAMs support Remote Network Monitoring 2
(RMON2) and mini-RMON features to provide port-level Layer 2 traffic statistics.
■
Tr affic A nomaly Detec tor Module
uses behavioral analysis and attack recognition
technology to identify attack patterns. It monitors traffic destined for application
servers and builds detailed profiles based on the normal operating conditions. If the
module detects any abnormal behavior in the per-flow data conversations, it consid-
ers this behavior a potential attack and responds based on the configured preference.
Yo u c a n h a v e t h e m o d u l e s e n d a n o p e r a t o r a n a l e r t o r l a u n c h t h e C i s c o A n o m a l y
Guard Module to begin mitigation services.
■
