Vanguard Networks' 3410 ASG Overview- Small footprint, modular Access Services Gateway (ASG) with a single daughter card slot supporting a variety of TDM, IP, and Serial Interfaces
- Modular and flexible architecture allowing customers to run existing applications on today’s networks while, enabling seamless migration to IP carrier services without “ripping and replacing” non-IP applications or peripheral devices
- High performance, cost- effective enterprise CPE solution for leased line, broadband, IP VPN, MPLS, Serial, or Frame Relay transport networks
- Extensive support of transactional applications using protocols like BISYNC and SNA for various serial transaction devices (ATMs, bank controllers, POS devices, etc.)
- Integrated Firewall and SSH support for network security standards compliance
- Robust QoS and bandwidth management capabilities enable traffic prioritization for critical applications
Features and Benefits
Advanced modular architecture delivers enhanced, integrated data and security access services |
The 3410 platform with its modular, flexible chassis supports a full portfolio of WAN and data daughter cards thus enhancing investment protection and provides maximum configuration flexibility for future growth. |
Robust Routing Capabilities |
BGP4 and Multicast capabilities, along with multiple managed, routable Ethernet ports for WAN access. Remote management capabilities allow deployment of simplified managed services for remote branch locations. |
Virtual Private Networks (VPNs) |
Supports advanced IP and MPLS VPNs, BGP, IPSec, and hardware-based encryption, for reliable and secure connectivity between larger office sites, intra-company remote branch sites, and business partners, thus enabling a true e-business environment. |
Two 10/100 BaseT Routable Ethernet Ports |
Enables migration to high-speed LANs and new broadband services such as DSL or cable. |
VLAN Configuration |
Reduce management complexity of enterprise LAN networks while enabling differentiated IP services. The Vanguard routers will prioritize LAN traffic flows and direct them between appropriately, thus ensuring data integrity and satisfactory throughput. |
Advanced, embedded security functions |
Stateful packet inspection firewall and multiple encryption options ensure the highest levels of security without sacrificing throughput performance. |
Firewall |
Protects sensitive internal data while allowing bi-directional access to trusted sources |
Hardware-based Encryption |
Ideal for highly secure applications requiring excellent real-time performance |
Network Authentication |
Allows greater use of secure extranets for business-to-business enterprise network transactions |
User Authentication |
End user access authentication acts as gatekeeper to keep out unauthorized users |
Application Protocol Conversion |
Enables support of existing serial transactional applications in an IP network protecting existing investment in serial applications and devices |
Standards-based design for security and packet transport |
Ensures interoperability in multi-vendor environments. With Vanguard Networks, customers can choose best-of-breed devices offering numerous benefits over monolithic, proprietary solutions provided by a single vendor. |
Advanced Quality of Service/Traffic Management |
Granular class definition and multiple enforcement mechanisms provide efficient bandwidth utilization and low latency for high priority traffic. |
Multi-link capability |
Allows for dynamic load balancing across multiple WAN connections |
Multiple Configuration Management and Monitoring Features |
Enables easy and quick configuration along with custom image build, and software image load, all contributing to reduced deployment time and costs Management via SNMP for standard-based management access. Alternate access via Telnet and Console Port for added visibility into configuration, monitoring, and diagnostics information. |
SpecificationsSoftware Specifications || Hardware Specifications
Software Features
IPv4, RIP1/RIP2, OSPF, BGP4, DVMRP, PIM-SM (IP Multicast) |
BGP Communities (RFC 1997 & 1998) |
Policy Based Routing |
BGP Multi-path |
Classless Inter-Domain Routing (CIDR) |
Network Address Translation (NAT) |
Port Address Translation (PAT) |
Real-Time Transport Protocol (RTP) |
Header Compression (RFC 2508) |
Multiple IP Addresses per Physical Interface |
DHCP Client, DHCP Server |
IPX/Novell IPX WAN, AppleTalk |
Transparent Bridging (Spanning Tree IEEE 802.1d), SLIP, SoTCP |
VLAN 802.1Q & 802.1P |
Inter-VLAN routing (802.1Q) |
Virtual Router Redundancy Protocol (VRRP) |
OnNet Proxy (Router Standby Protocol) |
ICMP Router Discovery (RFC 1256) |
Multi-Link PPP (MLPPP) |
PPPoE (RFC 2516) |
PPPoA (RFC 1483) |
IP Type of Service (IP TOS) |
Differentiated Services (DiffServ) |
Bandwidth on Demand (BOD) |
Dial on Demand (DOD) |
Link Backup (V.25bis and ISDN) |
Priority Queuing, Class Based Queuing (CBQ), Weighted Fair Queuing (WFQ), Weighted Random Early Discard (WRED) |
Packet Classification |
Policy Based Routing |
Generic Traffic Shaping (GTS) |
Frame Relay Traffic Shaping (FRTS) |
MLPP Link Fragmentation and inter-leaving Segmentation (RFC 1990 & 2686), FRF.12 |
SPI Firewall |
User Authentication: RADIUS, PAP/CHAP |
VPNs: IPSec (IP trafic), GRE (non-IP trafic) |
IPSec Authentication Header (AH) and IPSec Encapsulating Security Payload (ESP) |
IPSec Encryption: IPSec DES (56 bit), 3DES (128 bit) and 3DES (168 bit) |
Advanced Encryption Standard (AES): 128, 192, and 256 bit key length |
Device Authentication and Key Management: Public Key Infrastructure (PKI) and X.509v3 Digital Certificates |
Dead Peer Detection |
Message Authentication through Complex Hashing Algorithms (MD5/SHA-1) |
Dynamic IP Address (Dynamic VPN Tunnels) |
Transparent COP (TCOP) |
Transparent BOP (TBOP) |
ATPAD (Port 3 and 4 only), SLIP |
X.42 Lottery Protocol |
Transparent Polled Async (TPA) |
SNA/SDLC for Serial Connections |
BSC 2780, 3780, 3270 (HPAD, TPAD) |
QLLC X.25 (IBM NPSI) |
AS/400 5494 Communication Server |
TN 3270 Remote Server |
Conversion SDLC to RFC 1490 Frame Relay |
Conversion of BSC 3270/3780 to SNA |
Conversion of BSC 3270 to TCP/IP Client or Server |
SNMP v1, v3 |
Telnet |
TFTP |
CLI |
Embedded Web HTTPD |
SSH2 Server |
OS Image Management |
Configuration Management | Hardware Features
Space saving desktop base unit with one expansion slot for a daughter card and 2 internal option slots |
1 CTP Management Port (up to 115.2 kbps) |
1 RS-232 High Speed Serial Port |
2 Auto-sensing 10/100BaseT Ethernet Ports |
MPC8270 PowerPC Processor |
64 MB SDRAM |
16MB of non-volatile lash |
High MTBF universal external power supply |
No cooling fan or other moving parts |
56K DSU WAN Daughter Card Module |
Fractional T1/E1 and T1/E1 WAN Daughter Card Module |
3DES/AES Encryption card |
Height: 2.6 in (6.6 cm) |
Width: 8.4 in. (21.3 cm) |
Depth: 12.3 in (31.2 cm) |
Weight: 7.4 lb (3.36kg) unloaded, 8 lb (3.63kg) fully loaded |
100-240V AC, 60/50 Hz, 1.1-0.6 Amps, 30 watts external |
Operating Temperature: 32 ° to 104°F (0° to 40 °C) |
Storage Temperature: -40 to 158 °F (-40 °to 70 °C) |
Relative Humidity: 5% to 90%, non-condensing |
Safety Certifications: UL1950 3rd Edition, CUL/CSA No.950-95 3rd Edition, IEC 950 2nd Edition Amendment 1, 2, 3, & 4 (CB Scheme), EN60950 Amendment 1, 2 & 3 |
EMC Certifications: FCC Part 15 Class A, Canadian IC Class A, CISPR 22 Class |
A, EN55022: 1997 Class A, EN50082-1 (EN55024) |
Telecom Certifications: FCC Part 68, Industry Canada CS-03, CTR-2, CTR-4, CTR-12, CTR-13, Country Specific (contact your local sales representative) |
|
Modules
1600-00001
|
T1, Channelized T1/FT1 WAN Data Daughter Card |
X |
|
|
|
1600-00120
|
E1, Channelized E1/FE1 WAN 120 Ohm Data Daughter Card |
X |
|
|
|
1600-00075
|
E1, Channelized E1/FE1 WAN 75 Ohm Data Daughter Card |
X |
|
|
|
68472 |
56K DSU WAN Daughter Card. |
X |
|
|
|
1500-10003 |
Encryption Acceleration Card |
|
|
|
X |
|