Overview of the Hardware and Software

The Cisco 3900 series, Cisco 2900 series, and Cisco 1900 series integrated services routers (ISRs) offer secure, wire-speed delivery of concurrent data, voice, and video services. The modular design of these routers provides maximum flexibility, allowing you to configure your router to meet evolving needs.

The routers offer features such as hardware-based virtual private network (VPN) encryption acceleration, intrusion-protection and firewall functions, and optional integrated call processing and voice mail. A wide variety of legacy network modules and interfaces, service modules (SMs), internal services modules (ISMs), next-generation packet voice/data modules (PVDM3), Services Performance Engines (SPEs), high-density interfaces for a wide range of connectivity requirements, and sufficient performance and slot density for future network expansion requirements and advanced applications are available.

Power-saving hardware and software features are incorporated throughout the series. These routers provide access to the multi-gigabit fabric, which provides a connection between switch ports without using up external ports. The logical Gigabit Ethernet (GE) interface on the router connects external and internal modules through the backplane for LAN and WAN switching. Software feature upgrades are provided through software licensing.

The following sections describe the Cisco 3900 series, 2900 series, and 1900 series ISRs:

Feature Information

 

Table 1 Feature Information

Feature
Description

Services Performance Engine

SPEs1 are modular motherboards on Cisco 3900 series ISRs. The SPE houses PVDM3 slots, system memory slots, and the ISM slot. The SPE provides a modular approach to system upgrades. You simply slide out the SPE from the router to replace internal modules, or upgrade the SPE to improve router performance. See Cisco 2900 series and 3900 series Integrated Services Routers Hardware Installation Guide for instructions.

Cryptographic Engine Accelerator

Cisco 3900 series routers with either Services Performance Engine 200 or Services Performance Engine 250 have an onboard cryptographic accelerator that is shared between SSLVPN and IPSec. By default, acceleration of SSL is disabled so IPSec performance is maximized.

See the “Configuring Security Features” section in this guide for information about enabling the SSLVPN feature.

USB Console

Cisco 3900 series, 2900 series, and 1900 series ISRs provide an additional mechanism for configuring the system through a USB2 serial console port. The traditional RJ-45 serial console port is also available.

Power Management

Some modules and interface cards that are inserted in new slots provide hardware and software power management features described below:

  • High efficiency AC power supplies
  • Electrical components with built-in power saving features, such as RAM select and clock gating
  • Ability to disable unused clocks to modules and peripherals
  • Ability to power down unused modules and put peripherals into a reset state, put front panel ports and unused internal components in a shutdown or reset state

Advanced Capability CompactFlash

Cisco 3900 series, 2900 series, and 1900 series ISRs use Advanced Capability CF3 memory to store the system image, configuration files, and some software data files.

SFP/Gigabit Ethernet Port

Cisco 2921, Cisco 2951 and Cisco 3900 Series routers have an SFP/Gigabit Ethernet port that supports copper and fiber concurrent connections. Media can be configured for failover redundancy when the network goes down. For more information, see the “Configuring Backup Data Lines and Remote Management” section.

New Modules and Interface Cards

Cisco 3900 series, 2900 series, and 1900 series ISRs introduce the following new modules and interface cards, which are inserted in the following new router slots:

  • EHWIC
  • PVDM3
  • ISM
  • SM

Note See the router’s product page at Cisco.com for a complete list of supported modules and interfaces.

Multi-Gigabit Fabric Communication

Cisco 3900 series, Cisco 2900 series, and Cisco 1900 series ISRs use a MGF“Configuring Multi-Gigabit Fabric Communication” section.

Integrated Application Services Features

Cisco 3900 series, 2900 series, and 1900 series ISRs offer integrated security features and voice features.

1.SPE = Services Performance Engine

2.USB = universal serial bus

3.CF = CompactFlash

New Features by Platform

Table 2 shows new feature support by platform.

 

Table 2 New Features in this Release by Platform

Features
1941
1941W
2901
2911
2921
2951
3925
3925E
3945
3945E

Services Performance Engine

N

N

N

N

N

N

Y

Y

Y

Y

Cryptographic Engine Acceleration

N

N

N

N

N

N

Y6

Y

Y7

Y

USB Serial Console

Y

Y

Y

Y

Y

Y

Y

Y

Y

Y

Power Management

Y

Y

Y

Y

Y

Y

Y

Y

Y

Y

New Module and Interface Card Features

Y

Y

Y

Y

Y

Y

Y

Y

Y

Y

Advanced Capability CompactFlash

Y

Y

Y

Y

Y

Y

Y

Y

Y

Y

SFP/Gigabit Ethernet Port

N

N

N

N

Y

Y

Y

Y

Y

Y

Multi-Gigabit Fabric Communication

Y

Y

Y

Y

Y

Y

Y

Y

Y

Y

Integrated Application Services

Y8

Y9

Y

Y

Y

Y

Y

Y

Y

Y

6.Must have Services Performance Engine 200 installed in the router.

7.Must have Services Performance Engine 250 installed in the router.

8.Does not support Voice application services.

9.Does not support Voice application services. Includes embedded wireless access point that supports Cisco Unified Wireless Architecture.

New Slots

Cisco 3900 series, 2900 series, and 1900 series ISRs have introduced new slots on the chassis. The first column in Table 3 lists the new slot names. The second column lists the corresponding old slot names. Modules previously inserted in the old slots now insert in the new slots with the help of an adapter card.

For instance, network modules (NMs), enhanced network modules (NMEs), and extension voice modules (EVMs) use an adapter, or carrier card, to insert into the SM slot. See your router’s hardware installation guide for adapter information.

 

Table 3 New Slot Names and Old Slot Names

New Slot Names
Old Slot Names

EHWIC

HWIC,HWIC-DW, WIC, VWIC, VIC

ISM

AIM10

PVDM3

PVDM

SM

NM, NME, EVM

SPE11

10.AIM is not supported in this release. See your hardware installation guide for more information.

11.The SPE is available only on the Cisco 3900 series ISRs.

New Slots and Ports by Platform

This section provides the type and number of the slots and ports available in the Cisco 3900 series, 2900 series, and 1900 series ISRs.

Cisco 3900 Series ISRs

Table 4 lists the slots and ports available on Cisco 3900 series routers.

To view the installation guide, see the following URL
http://www.cisco.com/en/US/docs/routers/access/2900/hardware/installation/guide/Hardware_Installation_Guide.html

 

Table 4 Cisco 3900 Series Routers
Router
EHWIC
SM
Dbl-Wide SM
ISM
PVDM3
CF
GE (RJ-45)/ SFP ports
SPE

Cisco 3945

4

4

1

1

4

2

312

1

Cisco 3945E

3

4

1

0

3

2

413

1

Cisco 3925

4

2

1

1

4

2

314

1

Cisco 3925E

3

2

1

0

3

2

415

1

12.One RJ-45 GE + two combo GE/SFPs.

13.Four RJ-45 GE, or three RJ-45 GE + one combo GE/SFP, or two RJ-45 GE + two combo GE/SFP.

14.One RJ-45 GE + two combo GE/SFPs, or three RJ-45 GEs.

15.Four RJ-45 GE, or three RJ-45 GE + one combo GE/SFP, or two RJ-45 GE + two combo GE/SFP.

Cisco 2900 Series ISRs

Table 5 lists the slots and ports available on Cisco 2900 series routers.

To view the installation guide, see the following URL
http://www.cisco.com/en/US/docs/routers/access/2900/hardware/installation/guide/Hardware_Installation_Guide.html

 

Table 5 Cisco 2900 Series Routers

Router
EHWIC
SM
Dbl-Wide SM
ISM
PVDM3
CF
GE (RJ-45) ports
GE (RJ-45)/ SFP ports

Cisco 2951

4

2

2

1

3

2

2

1

Cisco 2921

4

1

1

1

3

2

2

1

Cisco 2911

4

1

1

1

2

2

3

0

Cisco 2901

4

0

0

1

2

2

3

0

Cisco 1900 Series ISRs

Table 6 lists the slots and ports available on Cisco 1900 series routers.

To view the installation guide, see the following URL
http://www.cisco.com/en/US/docs/routers/access/1900/hardware/installation/guide/1900_HIG.html

 

Table 6 Cisco 1900 Series ISR Routers
Router
EHWIC 16
Dbl-Wide EHWIC
SM
Dbl-Wide SM
ISM
PVDM3
WLAN
CF
GE (RJ-45) ports

Cisco 1941

2

1

0

0

1

0

0

2

2

Cisco 1941W

2

1

0

0

0

0

1

2

2

16.One of the two EWHIC slots is adouble-wide EWHIC slot,giving the appearance of three EWHIC slots.

Common Ports

The following ports are common among Cisco 3900 series, Cisco 2900 series, and Cisco 1900 series routers:

  • Gigabit Ethernet RJ45—Ports available through an RJ45 connector.
  • Gigabit Ethernet RJ45/SFP—Ports available through RJ45- SFP connectors. Connection supports fail-over if the secondary connection goes down.
  • RS232 Aux—Supports modem control lines and remote administration for box-to-box redundancy applications.
  • RS232 Serial Console—Supports modem control lines and remote administration of the router with the proprietary cable shipped in the box.
  • Type A USB 2.0—Supports USB-based flash memory sticks, security tokens, and USB-compliant devices.
  • Type B mini-port USB Serial Console—Supports modem control lines and remote administration of the router using a type B USB-compliant cable.

Licensing

Cisco 3900 series, Cisco 2900 series, and Cisco 1900 series ISRs support Cisco IOS software entitlement. Your router is shipped with the software image and the corresponding permanent licenses for the technology packages and features that you specified preinstalled. You do not need to activate or register the software prior to use. If you need to upgrade or install a new technology package or feature see Software Activation on Integrated Services Router,

http://www.cisco.com/en/US/docs/routers/access/sw_activation/SA_on_ISR.html.

Getting Started

See the router-specific hardware installation guide to install the router in an appropriate location. Connect the router with the appropriate cables. Supply power to the router and perform the initial software configuration using Cisco Configuration Professional Express. After the initial configuration is completed, perform the following steps:

Step 1 Follow instructions in the “Basic Router Configuration” section to perform additional router configurations.

Step 2 (Optional) If you are setting up the Cisco 1941W ISR, follow instructions in the “Configuring the Wireless Device” section to configure the embedded wireless device on the router.

Step 3 Follow instructions in the “Configuring Security Features” section to configure security features on the router.

Step 4 Follow instructions in the “Unified Communications on Cisco Integrated Services Routers” section to configure Voice features on the router.

 

IOS Commands

Table 7 lists the Cisco IOS commands and features that can trigger an erase, write, or erase and write operation on a device's boot flash. The erase or write of an attribute on the boot flash can hold the CPU for a few milliseconds to complete the operation. The CPU hold can result in a functional impact on protocols or applications that are extremely time sensitive, for instance, Bidirectional Forwarding Detection (BFD) or routing protocols which use finely tuned short timers. For example, OSPF with fast hellos and short dead timers.

Table 7 Cisco IOS Commands

Functionality
Command Name
Description
Configuration Example
Impact

Write to NV memory.

write memory

This command writes the device's configuration in to the Non-Volatile RAM (NVRAM) on the boot flash. Use this command in privileged EXEC mode.

Router# write memory

A BFD flap is triggered when one of the following configuration elements are activated or deactivated and configuration is saved to memory:

(config)#warm-reboot
(config)#boot config
(config)#boot system

Changing the configuration register value.

config-register value

The router has a 16-bit configuration register in NVRAM. Each bit has value 1 (on or set) or value 0 (off or clear), and each bit setting affects the router behavior upon the next reload power cycle. Use this command in Global configuration mode.

Router(config)# config-register 0xvalue

Potential enough to flap bfd.

Copy running configuration to startup configuration.

copy running-config startup-config

This command copies running configuration to startup configuration.

Router# copy running-config startup-config

A BFD flap is not triggered for all 'write mem' commands. For instance, when the configuration attributes changes without either a write or an erase+write on the NVRAM, the BFD is not triggered.

In the following example, when one of the configuration elements are activated/deactivated and the configuration is saved using the 'write mem' command, the flap is triggered:

(config)#warm-reboot
(config)#boot config
(config)#boot system

Changing boot variables.

boot { bootstrap | config | host | netowrk | system }

This command configures bootstrap image file, configuration file, router specific config file, Networkwide config file or system image file.

Router(config)# boot bootstrap

Potential enough to flap bfd.

Setting the system software clock manually.

clock set hh:mm:ss day month year

To manually set the system software clock, use one of the formats of the clock set command in privileged EXEC mode.

clock set hh:mm:ss day month year

clock set hh:mm:ss month day year

Router# clock set 13:32:00 23 July 1997

Potential enough to flap bfd.

Note Every time the command is issued.

Random Entropy

No special Command exists for this.

After the system boot up, entropy is collected by accessing the security chip. This is potential enough to flap the BFD session immediately after the router boots up.

No command

Potential enough to flap bfd.

Crashing the router on user’s wish.

test crash

This is a hidden Cisco IOS command to crash the Cisco router on a user’s wish.

Router# test crash

Potential enough to flap bfd.

License EULA

license accept end user agreement

To accept the End-user License Agreement (EULA) for all Cisco IOS software packages and features at one time.

Router(config)#l icense accept end user agreement

Potential enough to flap bfd.

RTC Battery Failure

No CLI

Write the event of losing battery for Real Time Clock.

No CLI

Potential enough to flap bfd.

Erasing NV memory.

erase nvram

This command erases the nvram: file system.

Router# erase nvram:

Potential enough to flap bfd.

Erasing startup-config

erase startup-config

This command erases startup configurations.

Router# erase startup-config

Potential enough to flap bfd.

Erasing NV memory.

write erase

This command erases the NV memory.

Router# write erase

Potential enough to flap bfd.

Writing configuration to memory.

write

This command quickly saves config to memory.

Router# write

Potential enough to flap bfd.

Reloading the router.

reload

This command reloads the router. The reload time is written to NV memory.

Router# reload

Potential enough to flap bfd.

Enabling warm rebooting.

warm-reboot count value uptime value

Enables a router to warm-reboot.

Router(config)# warm-reboot count 10 uptime 10

Potential enough to flap bfd.

New software license boot.

license boot module module-name level license-level

To boot a new software license on routing platforms, use the license boot module command in global configuration mode.

Router(config)# license boot module c2900 technology-package datak9

Potential enough to flap bfd.

Enabling or disabling USB ports.

config mode : hw-module usb

Enable or disable USB ports from IOS config mode.

Router(config)# hw-module usb disable

Router(config)# no hw-module usb disable

Will trigger a BFD flap.

Disabling access to ROMMON.

[no] service password-recovery

This command disables all access to ROMMON.

Router# no service password-recovery

Potential enough to flap bfd.