Guest

CiscoWorks VPN/Security Management Solution

CiscoWorks VPN/ Security Management Solution Q and A

  • Viewing Options

  • PDF (47.5 KB)
  • Feedback
Q&A

BACKGROUND

Q. What is CiscoWorks VPN/Security Management Solution (VMS)?
A. CiscoWorks VMS is an integral part of the SAFE Blueprint from Cisco ® and combines Web-based tools for configuring, monitoring, and troubleshooting:

• VPNs

• Firewalls

• Network Intrusion Detection Systems (IDSs)

• Host-based Intrusion Prevention Systems (IPSs)

• Router based IPS

CiscoWorks VMS is an integrated security management solution that addresses the needs of both small- and large-scale VPN and security deployments by helping to protect productivity gains and reduce operating costs. Unlike point security products from multiple vendors that can leave vulnerable gaps, CiscoWorks VMS provides a comprehensive solution that ties separate security and VPN technologies into a single secure network.
Q. What features are new in CiscoWorks VMS 2.3?
A. Each function of CiscoWorks VMS has been enhanced: firewall management, VPN management, IDS and IPS management, security monitoring, and performance management. Specific details are listed in datasheets for each function and can be viewed at: http://www.cisco.com/go/vms.
Other enhancements include a simplified installation.
Q. What are the component versions in the latest CiscoWorks VMS software?
A. The latest CiscoWorks VMS 2.3 software CD includes the component versions shown in Table 1.

Table 1. Component Versions

Component

Windows

Solaris

Common Services with Service Pack 3
2.2
2.2
CiscoWorks Management Center for Firewalls
1.3.3
1.3.3
Auto Update Server software
1.3
1.3
CiscoWorks Management Center for VPN Routers
1.3.1
1.3.1
CiscoWorks Management Center for IDS Sensors
2.0
2.0
CiscoWorks Monitoring Center for Security
2.0
2.0
CiscoWorks Monitoring Center for Performance
2.02
2.02
CiscoWorks Management Center for Cisco Security Agents
4.03 or later
-
CiscoWorks Resource Manager Essentials (RME)
3.5
3.5

Later versions of modules can be released on the Cisco web site before the CiscoWorks VMS media kit is updated. It is advisable for customers with a SAS or SASU service contract to check the website before starting installation from the media kit.
Q. How can I check for updates to CiscoWorks VMS?
A. Cisco periodically posts functional and maintenance updates to Cisco.com. Go to:
Q. What is the status of the CiscoWorks VPN Monitor tool?
A. Cisco announced that the CiscoWorks VPN Monitor, which had shipped with CiscoWorks VMS 2.2, was the final release of the tool. The new CiscoWorks Monitoring Center for Performance tool has enhanced functions for VPN monitoring and is the replacement tool in CiscoWorks VMS 2.3.

SUPPORT

Q. Which security devices does CiscoWorks VMS support?
A. CiscoWorks VMS supports configuration management for Cisco PIX ® firewalls, Cisco IOS ® routers, Cisco Catalyst 6500 series security modules, Cisco security agents, and Cisco IDS devices.
Q. Does CiscoWorks VMS support Solaris and Windows?
A. CiscoWorks VMS 2.3 supports Windows for all components. Solaris support is available on all components except the management console for Cisco Security Agent.
Q. Can CiscoWorks VMS 2.3 be installed on a Windows 2003?
A. It is not supported by Cisco with this release.

LICENSING

Q. What are the license requirements?
A. Registering CiscoWorks Common Services Software activates the management centers that use common services, including CiscoWorks Management Center for Firewalls, CiscoWorks Management Center for IDS Sensors, and CiscoWorks Management Center for VPN Routers. Without registering and installing a key, these applications expire in 90 days. The license key for Cisco Security Agent MC is included with the software but has to be installed. For further information, refer to Registration and Licensing Notes for CiscoWorks Common Services 2.3.

Note: CiscoWorks VMS 2.3 includes licenses for three Cisco Security Agent server agents. These agents are used to protect the CiscoWorks VMS 2.3 servers. Additional agent licenses are purchased separately from CiscoWorks VMS.

Q. Can I use an older CiscoWorks VMS 2.x license for VMS 2.3?
A. Yes. You can import the CiscoWorks VMS 2.x license into the new VMS 2.3 install.

ORDERING

Q. I have an earlier version of CiscoWorks VMS 2.x. Do I get a free VMS 2.3 upgrade?
A. If you purchased CiscoWorks VMS 2.x Software Application Support (SAS) or the SAS plus Upgrades (SASU) service, you can obtain CiscoWorks VMS 2.3 at no additional charge. Refer to your contract number when requesting minor updates at: http://www.cisco.com/upgrade.
Q. Where can I find the CiscoWorks VMS 2.3 Evaluation software?
A. Evaluation software is on the CiscoWorks VMS CiscoWorks VMS Software Center (registered customers only) download page. You can order a 90-day evaluation CD from your Cisco sales representative.
Q. Is the CiscoWorks VMS 2.3 Evaluation version on Cisco.com a full version of VMS 2.3?
A. No. It does not contain CiscoWorks RME.
Q. How can I order the complete version of CiscoWorks VMS 2.3?
A. Customers can purchase this new product through their regular sales channels. Customers with CiscoWorks VMS 2.x with current SAS or SASU contracts can request a CiscoWorks VMS 2.3 minor update kit with their contract number using the Product Upgrade Tool (registered customers only).
For more information about ordering part numbers, refer to the CiscoWorks VMS 2.3 product bulletin at: http://www.cisco.com/en/US/products/sw/cscowork/ps2330/prod_bulletins_list.html.
Q. Are there cross-bundle discounts if I have other CiscoWorks bundles?
A. No. There is minimal functional overlap between CiscoWorks VMS and the other CiscoWorks bundles.
Q. Where do I obtain part number and ordering information?
A. Ordering information is available in the CiscoWorks VMS product bulletin at: http://www.cisco.com/en/US/products/sw/cscowork/ps2330/prod_bulletins_list.html.

DEPLOYMENT

Q. Which management tools are recommended for small deployments?
A. The Cisco PIX Device Manager, IDS Device Manager, and Security Device Manager are embedded device managers that can configure on a single device basis. These device managers are intended for smaller environments. CiscoWorks VMS can be used for environments that require more scalability.
Q. What are the recommended deployment guidelines for CiscoWorks VMS?
A. Refer to the CiscoWorks VMS deployment guide at: http://www.cisco.com/en/US/products/sw/cscowork/ps2330/prod_white_papers_list.html.

FOR MORE INFORMATION

For more information about the CiscoWorks VMS, visit: http://www.cisco.com/go/vms, contact your local account representative, or send e-mail to: ciscoworks@cisco.com.
Text Box:  Corporate HeadquartersCisco Systems, Inc.170 West Tasman DriveSan Jose, CA 95134-1706USAwww.cisco.comTel:	408 526-4000	800 553-NETS (6387)Fax:	408 526-4100	European HeadquartersCisco Systems International BVHaarlerbergparkHaarlerbergweg 13-191101 CH AmsterdamThe Netherlandswww-europe.cisco.comTel:	31 0 20 357 1000Fax:	31 0 20 357 1100	Americas HeadquartersCisco Systems, Inc.170 West Tasman DriveSan Jose, CA 95134-1706USAwww.cisco.comTel:	408 526-7660Fax:	408 527-0883	Asia Pacific HeadquartersCisco Systems, Inc.168 Robinson Road#28-01 Capital TowerSingapore 068912www.cisco.comTel: +65 6317 7777Fax: +65 6317 7799Cisco Systems has more than 200 offices in the following countries and regions. Addresses, phone numbers, and fax numbers are listed onthe Cisco Web site at www.cisco.com/go/offices.Argentina · Australia · Austria · Belgium · Brazil · Bulgaria · Canada · Chile · China PRC · Colombia · Costa Rica · Croatia · Cyprus · Czech Republic · Denmark · Dubai, UAE · Finland · France · Germany · Greece · Hong Kong SAR · Hungary · India · Indonesia · Ireland · Israel · Italy · Japan · Korea · Luxembourg · Malaysia · Mexico · The Netherlands · New Zealand · Norway · Peru · Philippines · Poland · Portugal · Puerto Rico · Romania · Russia · Saudi Arabia · Scotland · Singapore · Slovakia · Slovenia · South Africa · Spain · Sweden · Switzerland · Taiwan · Thailand · Turkey · Ukraine · United Kingdom · United States · Venezuela · Vietnam · ZimbabweCopyright  2004 Cisco Systems, Inc. All rights reserved. CCIP, CCSP, the Cisco Powered Network mark, Cisco Unity, Follow Me Browsing, FormShare, and StackWise are trademarks of Cisco Systems, Inc.; Changing the Way We Work, Live, Play, and Learn, and iQuick Study are service marks of Cisco Systems, Inc.; and Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherSwitch, Fast Step, GigaStack, Internet Quotient, IOS, IP/TV, iQ Expertise, the iQ logo, iQ Net Readiness Scorecard, LightStream, Linksys, MGX, MICA, the Networkers logo, Networking Academy, Network Registrar, Packet, PIX, Post-Routing, Pre-Routing, RateMUX, Registrar, ScriptShare, SlideCast, SMARTnet, StrataView Plus, Stratm, SwitchProbe, TeleRouter, The Fastest Way to Increase Your Internet Quotient, TransPath, and VCO are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.All other trademarks mentioned in this document or Web site are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0402R)	204105.33_ETMG_LF_12.04Printed in the USA Text Box:  Corporate HeadquartersCisco Systems, Inc.170 West Tasman DriveSan Jose, CA 95134-1706USAwww.cisco.comTel:	408 526-4000	800 553-NETS (6387)Fax:	408 526-4100	European HeadquartersCisco Systems International BVHaarlerbergparkHaarlerbergweg 13-191101 CH AmsterdamThe Netherlandswww-europe.cisco.comTel:	31 0 20 357 1000Fax:	31 0 20 357 1100	Americas HeadquartersCisco Systems, Inc.170 West Tasman DriveSan Jose, CA 95134-1706USAwww.cisco.comTel:	408 526-7660Fax:	408 527-0883	Asia Pacific HeadquartersCisco Systems, Inc.168 Robinson Road#28-01 Capital TowerSingapore 068912www.cisco.comTel: +65 6317 7777Fax: +65 6317 7799Cisco Systems has more than 200 offices in the following countries and regions. Addresses, phone numbers, and fax numbers are listed onthe Cisco Web site at www.cisco.com/go/offices.Argentina · Australia · Austria · Belgium · Brazil · Bulgaria · Canada · Chile · China PRC · Colombia · Costa Rica · Croatia · Cyprus · Czech Republic · Denmark · Dubai, UAE · Finland · France · Germany · Greece · Hong Kong SAR · Hungary · India · Indonesia · Ireland · Israel · Italy · Japan · Korea · Luxembourg · Malaysia · Mexico · The Netherlands · New Zealand · Norway · Peru · Philippines · Poland · Portugal · Puerto Rico · Romania · Russia · Saudi Arabia · Scotland · Singapore · Slovakia · Slovenia · South Africa · Spain · Sweden · Switzerland · Taiwan · Thailand · Turkey · Ukraine · United Kingdom · United States · Venezuela · Vietnam · ZimbabweCopyright  2004 Cisco Systems, Inc. All rights reserved. CCIP, CCSP, the Cisco Powered Network mark, Cisco Unity, Follow Me Browsing, FormShare, and StackWise are trademarks of Cisco Systems, Inc.; Changing the Way We Work, Live, Play, and Learn, and iQuick Study are service marks of Cisco Systems, Inc.; and Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherSwitch, Fast Step, GigaStack, Internet Quotient, IOS, IP/TV, iQ Expertise, the iQ logo, iQ Net Readiness Scorecard, LightStream, Linksys, MGX, MICA, the Networkers logo, Networking Academy, Network Registrar, Packet, PIX, Post-Routing, Pre-Routing, RateMUX, Registrar, ScriptShare, SlideCast, SMARTnet, StrataView Plus, Stratm, SwitchProbe, TeleRouter, The Fastest Way to Increase Your Internet Quotient, TransPath, and VCO are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.All other trademarks mentioned in this document or Web site are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0402R)	204105.33_ETMG_LF_12.04Printed in the USA