Giới thiệu
Bộ định tuyến Cisco C8200L-1N-4T được thiết kế nhằm tăng hiệu suất sử dụng đồng thời hỗ trợ các dịch vụ đám mây SD-WAN, phù hợp với các công ty, doanh nghiệp vừa và nhỏ. C8200L-1N-4T sử dụng phần mềm Cisco IOS XE SD-WAN giúp nâng cao hiệu suất, đồng thời cùng giải pháp cloud-scale SD-WAN mang đến sự linh hoạt và tính bảo mật cao.
Bộ định tuyến Cisco C8200L-1N-4T hỗ trợ nhiều tuỳ chọn giao diện để lựa chọn, với khả năng tương thích ngược với các module WAN, LAN và Thoại hiện có. Hơn nữa, với Cisco IOS XE, C8200L-1N-4T hỗ trợ tự động hóa trên quy mô lớn để đạt được khả năng CNTT không chạm trong khi di chuyển khối lượng công việc lên cloud.
Router Cisco C8200L-1N-4T có sẵn 4 cổng Ethernet Gigabit và 1 khe Card NIM tương thích với các module LAN, WAN giúp thiết bị có nhiều tùy chọn giao diện linh hoạt.
Thông số kỹ thuật
| Cổng kết nối | |
| WAN interfaces | 4 x 1 Gigabit Ethernet |
| NIM Slot |
1 x NIM ,1 PIM |
| Thông số kỹ thuật | |
| Multicore processors | - Intel x86 CPU with 4 GB DRAM memory default - High-performance multicore processors support high-speed WAN connections - Dynamic core allocation architecture will repurpose unused cores into forwarding entities as per the user’s configuration |
| Embedded IPsec VPN hardware acceleration | - C8200L-1N-4T enables up to 500 Mbps IPsec traffic - Increases scalability for IPsec throughput requirements - SSL and crypto hardware acceleration |
| M.2 Storage | The C8200L-1N-4T does not ship with a default M.2 storage but can be upgraded to 16G, 32G USB and 600G M.2 Non-Volatile Memory Express (NVMe) Storage |
| Cisco controller mode (SD-WAN) performance | |
| SD-WAN IPsec throughput (1400 bytes) | Up to 500 Mbps |
| SD-WAN IPsec throughput (IMIX*) | 400 Mbps |
| SD-WAN overlay tunnels scale | 1500 |
| Cisco autonomous mode (non SD-WAN) performance | |
| IPv4 forwarding throughput (1400 bytes) | Up to 3.8 Gbps |
| IPsec throughput (1400 bytes) | Up to 500 Mbps |
| Number of IPsec Static Virtual Tunnel Interface (SVTI) tunnels | 1500 |
| Cisco autonomous mode (non SD-WAN) system scalability | |
| Number of Access Control Lists (ACLs) per system | 4000 |
| Number of IPv4 Access Control Entries (ACEs) per system |
72,000 |
| Number of IPv4 routes | 800,000 with default 4 GB, up to 4M with 32 GB |
| Number of IPv6 routes | 800,000 with default 4 GB, up to 4M with 32 GB |
| Number of Network Address Translation (NAT) sessions |
1.2M with default 8 GB, up to 2M with 32 GB |
| Number of firewall sessions | 512,000 |
| Number of Virtual Route Forwarding (VRF) instances | 2000 |
| ThousandEyes requirements | |
| Cisco Thousand Eyes | ThousandEyes is supported with a minimum 8 GB DRAM and 8 GB bootflash/storage. Additional memory and storage will be necessary for concurrently running the ThousandEyes agent with containerized SD-WAN security services. |
| Software features and protocols for autonomous mode | |
| Protocols | IPv4, IPv6, static routes, Routing Information Protocol Versions 1 and 2 (RIP and RIPv2), Open Shortest Path First (OSPF), Enhanced Interior Gateway Routing Protocol (EIGRP), Border Gateway Protocol (BGP), BGP Route Reflector, Intermediate System-to-Intermediate System (IS-IS), Multicast Internet Group Management Protocol Version 3 (IGMPv3), Protocol Independent Multicast Sparse Mode (PIM SM), PIM Source-Specific Multicast (SSM), Resource Reservation Protocol (RSVP), Cisco Discovery Protocol, Encapsulated Remote Switched Port Analyzer (ERSPAN), Cisco IOS IP Service-Level Agreements (IPSLA), Call Home, Cisco IOS Embedded Event Manager (EEM), Internet Key Exchange (IKE), ACLs, Ethernet Virtual Connections (EVC), Dynamic Host Configuration Protocol (DHCP), Frame Relay, DNS, Locator ID Separation Protocol (LISP), Hot Standby Router Protocol (HSRP), RADIUS, Authentication, Authorization, and Accounting (AAA), Application Visibility and Control (AVC), Distance Vector Multicast Routing Protocol (DVMRP), IPv4-to-IPv6 Multicast, Multiprotocol Label Switching (MPLS), Layer 2 and Layer 3 VPN, IPsec, Layer 2 Tunneling Protocol Version 3 (L2TPv3), Bidirectional Forwarding Detection (BFD), IEEE 802.1ag, and IEEE 802.3ah |
| Encapsulations | Generic Routing Encapsulation (GRE), Ethernet, 802.1q VLAN, Point-to-Point Protocol (PPP), Multilink Point-to-Point Protocol (MLPPP), Frame Relay, Multilink Frame Relay (MLFR) (FR.15 and FR.16), High-Level Data Link Control (HDLC), serial (RS-232, RS-449, X.21, V.35, and EIA-530), and PPP over Ethernet (PPPoE) |
| Cryptographic algorithms | Encryption: Data Encryption Standard (DES), 3DES, Advanced Encryption Standard (AES)-128 or AES-256 (in Cipher Block Chaining [CBC] and Galois/Counter Mode [GCM]) Authentication: RSA (748/1024/2048 bit), ECDSA (256/384 bit) Integrity: MD5, SHA, SHA-256, SHA-384, SHA-512 |
| Tính năng và giao thức hỗ trợ | |
| Core features | IPv4, IPv6, static routes, OSPF, EIGRP, BGP, Overlay Management Protocol (OMP), Application Aware Routing (AAR), Traffic Engineering, service insertion, zero trust, whitelisting, tamper-proof module, DTLS/TLS, IPsec, classification, prioritization, low latency queuing, remarking, shaping, scheduling, policing, mirroring, Multicast IPv4 support, service advertisement and insertion policy, Simple Network Management Protocol (SNMP), Network Time Protocol (NTP), DNS client, DHCP, DHCP client, DHCP server, DHCP relay archival, syslog, Secure Shell (SSH), Secure Copy (SCP), Cflowd v10 IPFIX export, IPv6 for transport side, Virtual Router Redundancy Protocol (VRRP), MPLS, NAT (DIA, service-side, overload/PAT, NAT64, etc.), NAT pools, split DNS, ACLs, BFD, NETCONF over SSH, CLI, NTP server support, BFD with service-side BGP, BGP community propagation to OMP, 6 SLA for AAR, Cisco TrustSec®/SD-Access (inline scalable group tag [SGT] propagation), custom app with Software-Defined AVC (SD-AVC), multicast AAR, dynamic on-demand tunnels, OSM, OSPFv3, route policies, multi-VRF support |
| Encapsulations | Generic Routing Encapsulation (GRE), Ethernet, 802.1q VLAN |
| Application experience | QoS, FEC, Class of Service (CoS) marking, Weighted Random Early Detection (WRED), Hierarchical QoS, PBR, NBAR, SD-AVC, per-tunnel QoS, Cloud OnRamp for SaaS, Enhanced Office 365 traffic steering, direct access, FNF |
| Cryptographic algorithms |
Encryption: AES-256 (in CBC and GCM modes), Internet Key Exchange (IKE), Cisco Public Key Infrastructure (PKI) Authentication: AAA, RSA (2048 bit), ESP-256-CBC, HMAC-SHA1, ECDSA (256/384 bit) Integrity: SHA-1, SHA-2 |
| Security: C8200-1N-4T |
Built-in end-to-end segmentation (VPNs), zone-based firewall (ZBFW), PKI, Cisco DNA Layer Security, Snort® IPS/IDS, URL filtering, Secure Malware Defense, Secure Malware Analytics, Application-Level Gateway (ALG) for ZBFW, Secure Internet Gateway (SIG) |
| Nguồn điện | |
| Power maximum rating | Default : 100W PWR-CC1-150WAC optional external PSU for PoE : - 150W - For PoE only - PoE budget: 150W |
| Input-voltage range and frequency | Default : 90 to 264 VAC 47 to 63 Hz PWR-CC1-150WAC optional external PSU for PoE : 90 to 264 VAC 47 to 63 Hz |
| Điều kiện môi trường | |
| Nhiệt độ hoạt động | 32° đến 104°F (0° đến 40°C) |
| Độ ẩm | 5% đến 85% relative humidity (Không ngưng tụ) |