CiscoWorks VPN/Security Management Solution (VMS)

The CiscoWorks VPN/Security Management Solution (VMS) is a suite of applications used to configure, monitor, and troubleshoot Cisco virtual private networks (VPNs), firewalls, and intrusion detection systems (IDS). This suite is considered to be a key component of Cisco’s SAFE architectural blueprint for network security. Beyond the applications listed below, this suite also includes CiscoWorks Resource Manager Essentials, which was outlined in the CiscoWorks LAN Management Solution section.

  • CiscoWorks VPN Monitor. This application is used to gather, store, and view data about remote access and site-to-site VPN connections to and between Cisco devices. VPN Monitor is capable of working with Cisco 3000 VPN concentrators as well as routers in the 1700, 2600, 3600, and 7200 families.
  • CiscoWorks IDS Host Sensor. This application is used to identify and protect servers from potential threats by analyzing connection attempts. For example, this tool could be used to prevent connections from an incoming host that appears to be attempting a denial-of-service attack.
  • CiscoWorks Auto Update Server Software. This application is used to remotely manage the configuration and updating of Cisco software using a pull model. For example, this software could be used to handle the configuration and management of Cisco PIX firewalls in place at remote locations.
  • CiscoWorks Management Center for IDS Sensors. This application is used to simplify and centralize the management of network and switch IDS sensors.
  • CiscoWorks Management Center for PIX Firewalls. This application provides a management facility for up to 1000 PIX firewalls, including the centralized configuration of access rules, network address translation (NAT) settings, and so forth.
  • CiscoWorks Management Center for VPN Routers. This application provides a centralized management facility for the configuration and deployment of VPN settings on different Cisco equipment.
  • CiscoWorks Monitoring Center for Security. This application is effectively a reporting tool that brings together information from IDS, PIX, and IOS devices for the purpose of viewing and analyzing security-related events.

Author: Dan DiNicolo

Dan DiNicolo is a freelance author, consultant, trainer, and the managing editor of He is the author of the CCNA Study Guide found on this site, as well as many books including the PC Magazine titles Windows XP Security Solutions and Windows Vista Security Solutions. Click here to contact Dan.