Cisco Cisco Catalyst 6000 Multilayer Switch Feature Card MSFC2 Bulletins

Important notices, privacy statements, and trademarks of Cisco Systems, Inc. can be found on cisco.com.

Page 13 of 16

Management Interfaces Supported: command line interface

VPN Termination Module for the 4400 Series Wireless LAN Controller

A VPN termination hardware module (AIR-VPN-4400-K9=) is being released for the 4400 Series wireless LAN controllers. As with the VPN

termination module available today for the 4100 Series wireless LAN controllers, this module enables the 4400 Series wireless LAN controller to

terminate VPN client sessions directly on the controller. The module features the following capabilities:

•

Support for one VPN termination module on the 4402, and support for one or two VPN termination modules on the 4404

–

If two modules are installed, clients are automatically load balanced across the two modules (applicable to the 4404 only).

•

Support for up to 1000 client VPN sessions per module (maximum of 2000 client VPN sessions for a 4404 with two modules)

•

Up to 1 Gbps of encryption / decryption per module (maximum of 2 Gbps for a 4404 with two modules)

•

Support for the following IPsec clients: Cisco VPN Client, NetScreen Remote, SSH Sentinel, Movian, and Openswan

Notes

•

The 4400 VPN termination module (AS-VPN-4400-K9=) is a different physical form factor than the 4400 VPN termination module

(AS-VPN-4100-K9=) – the two modules are not interchangeable.

•

L2TP is not supported on the 4400 VPN termination module. L2TP is supported on the 4100 VPN termination module

Benefits of VPN Termination Module for the 4400 Series wireless LAN controller:

•

Termination of VPN sessions directly on the controller enables client traffic to enter the corporate network as close the edge as possible

•

Support for a second VPN termination module on the 4404 enables scaling of VPN termination traffic

•

Support for a variety of IPsec clients provides flexible deployment options

Wireless LAN Controllers Supported: Cisco 4400 Series wireless LAN controllers

Access Points Supported: Not applicable

Management Interfaces Supported: Cisco WCS, controller web user interface, command line interface

Regulatory Domain Updates

International regulatory requirements are constantly changing. To stay up-to-date on these changes, the following regulatory domain updates are

included in Cisco Unified Wireless Network Software Release 3.2:

•

Addition of the –P regulatory domain to support the new 802.11a channel and power settings for Japan. The following combinations of access

points are permitted:

–

All new –P access points; country code JP2—The system will fully support both the UNII 1 and the UNII 2 changes in the new frequency
plan, as well as the normal 2.4-GHz channels.

–

Mix of older “blank” and –J access points; country code JP—All access points work using the legacy frequency plan for 5 GHz, as well as
the normal 2.4-GHz channels.

–

Mix of older “blank”, –J, and –P access points; country code JP—All access points to be operational for 2.4-GHz channels, but only the
“blank” and –J access points are operational for 5 GHz providing, support for the unshifted UNII 1 channels only. The –P access points will
not be operational in the 5-GHz band in this operating mode.

–

Mix of older “blank”, –J, and –P access points; country code JP2—All access points to be operational for 2.4-GHz channels, but only the –
P access points operational for 5 GHz, providing support for the shifted UNII 1 channels as well as the new UNII 2 channels.

•

Addition of the –K regulatory domain, which adds support for 802.11a in Korea

•

Modification of the –I regulatory domain to add support for 802.11a

•

Modification of the country Malaysia to permit 802.11a