TOTAL: £0.00





Embedded Services Router (ESR) with Cisco IOS® - XMC/PMC Module

The Extreme Engineering Solutions (X-ES) XPedite5205 PMC/XMC-based Embedded Services Router (ESR) router runs Cisco™ IOS® Software with Cisco Mobile Ready Net capabilities, providing highly secure data, voice, and video communications to stationary and mobile network nodes across wired and wireless links.

The router offers four high performance Gigabit Ethernet interfaces, an extensive Cisco IOS® Software feature set and supports the same Cisco IOS® that users in the military, energy, public safety, and other industries are already familiar with. This speeds up implementation in the field, allowing companies to get started quickly without the need for additional, expensive training.

XPedite5205 ESR provides onboard hardware encryption to off-load encryption processing, radio aware routing (RAR) with support for the latest Dynamic Link Exchange Protocol (DLEP), support for IPv6, integrated threat control with integrated Cisco IOS® firewalls and Intrusion Prevention System (IPS), and Quality of Service (QoS).


  • Runs Cisco IOS® software
  • NIST FIPS 140-2 Overall Level 1 validated on certificate #2242
  • NIAP Common Criteria Certified
  • Four integrated 10/100/1000 Ethernet ports
  • Cisco Unified Communications Manager Express (CME) support
  • Cisco Mobile Ready Net, which allows for mobile ad hoc networking and radio aware routing
  • Onboard hardware acceleration
  • Integrated threat control using Cisco IOS® Firewall, Cisco IOS® Zone-based Firewall, Cisco IOS® Intrusion Prevention System (IPS), and Cisco IOS® Content Filtering
  • Identity management using authentication, authorization, and accounting (AAA) and public key infrastructure
  • XMC/PMC form factor
  • Conduction- or air-cooled



- 1 GB DDR2-533 SDRAM
- Up to 256 MB NOR flash
- 128 kB SEEPROM

Certifications & Validations

- NIST FIPS 140-2 Overall Level 1 validated on certificate #2242. Additionally, validated to Roles, Services, and Authentication Level 2, and Design Assurance Level 3.
- Satisfies the Assurance Activities criteria as defined within the NIAP Common Criteria (CC) Protection Profile for Network Devices, Version 1.1 and Protection Profile for Network Devices VPN Gateway Extended Package, Version 1.1

I/O Interfaces

- Four 10/100/1000 Mbps Gigabit Ethernet ports supporting auto-negotiation
- One console port supporting RS-232/422 signaling
- One auxiliary port supporting RS-232/422 signaling with handshaking

Hardware Encryption Support

- Onboard hardware encryption processor supporting IP Security (IPsec)
- Secure Sockets Layer with transparent LAN services (SSL/TLS)
- Secure Real-Time Transport Protocol (SRTP)
- Triple Digital Encryption Standard (3DES)
- Advanced Encryption Standard (AES)
- Internet Key Exchange (IKE)

Routing Protocols

- Routing Information Protocol (RIP)
- RIPv2
- Open Shortest Path First (OSPF)
- Enhanced Interior Gateway Routing Protocol (EIGRP)
- Border Gateway Protocol (BGP)
- Cisco Discovery Protocol
- IP Policy Routing
- IP Multicast Protocol Independent Multicast (PIM) Versions 1 and 2
- Internet Group Management Protocol (IGMP) Versions 1 and 2
- IP Multicast Load Splitting
- Four, 10/100/1000 Mbps, IEEE 802.3-compliant, Ethernet controllers
- Cisco Group Management Protocol (GMP)


- Up to 32 VLANs supported per router

IPv4 and IPv6

- IPv6 routing and Cisco Express Forwarding switching
- IPv6 QoS
- IPv6 tunneling support
- Zone-based Firewall for IPv6 traffic


- Point-to-Point Protocol (PPP)
- PPP over Ethernet (PPPoE) client and server for Fast Ethernet
- 802.1q VLAN trunking support
- Generic Routing Encapsulation (GRE)
- Additional protocol support


- Asynchronous tunneling
- Storage Allocation and Coding (STAC) compression
- Real-time Transport Protocol (RTP) header compression

Radio Aware Routing

- Optimizes IP routing over fixed or temporary radio networks
- Factors radio link metrics into route calculations
- Immediately recognizes and adapts to changes in network neighbor status
- Dynamic Link Exchange Protocol (DLEP)
- Router Radio Control Protocol (R2CP)
- RFC 5578 (authored by Cisco®)

Mobile Ad Hoc Networks

- OSPFv3 enhancements for mobile ad hoc networks

Mobile IP

- Home agent and mobile router redundancy
- Mobile router preferred interfaces
- Mobile router reverse tunneling
- Mobile router asymmetric links
- Mobile router static and dynamic networks
- Static co-located care-of address
- Authentication, authorization, and accounting (AAA) server
- Cisco Mobile Networks Network Address Translation (NAT) Traversal over Mobile IP
- Support for Mobile IP tunnel templates, allowing configuration of IP Multicast and IPsec on Mobile IP tunnels
- Mobile IP foreign agent local routing optimization

Suite-B Support

- Suite-B support in IOS® SW crypto including Suite-B-GCM-128, Suite-B-GCM-256, Suite-B-GMAC-128, Suite-B-GMAC-256 as described in RFC-4869


- Route and router authentication
- Password Authentication Protocol (PAP)
- Challenge Handshake Authentication Protocol (CHAP)
- Microsoft CHAP (MS-CHAP) local password
- IP basic and extended access lists
- Time-based access control lists (ACLs)

Secure Connectivity

- Secure collaborative communications with Group Encrypted Transport VPN, Dynamic Multipoint VPN (DMVPN), or Enhanced Easy VPN

Integrated Threat Control

- Responding to sophisticated network attacks and threats using Cisco IOS® Firewall, Cisco IOS® Zone-based Firewall, Cisco IOS® IPS, Cisco IOS® Content Filtering, and Flexible Packet Matching (FPM)

Identity Management

- Intelligently protecting endpoints using technologies such as authentication, authorization, and accounting (AAA) and public key infrastructure (PKI)

Security Protocols

- IP Security (IPsec)
- Secure Sockets Layer with transparent LAN services (SSL/TLS)
- Secure Real-time Transport Protocol (SRTP)
- Triple Digital Encryption Standard (3DES)
- Advanced Encryption Standard (AES)
- Internet Key Exchange (IKE)

Traffic Management

- QoS
- Generic traffic shaping
- Class-based Ethernet matching and mobile access routing (802.1p Class of Service [CoS])
- Committed access rate
- Flow-based Weighted Random Early Detection (WRED)
- Class-based Weighted Fair Queuing (WFQ)
- Low Latency Queuing (LLQ)
- Priority Queuing
- Weighted Fair Queuing (WFQ)
- Link Fragmentation and Interleaving (LFI)
- Traffic Policing Resource Reservation Protocol (RSVP)

Unified Communications

- Cisco Unified Communications Manager Express with support for up to 48 phones

Management Services

- Simple Network Management Protocol (SNMP) Versions 2 and 3
- Telnet
- Console port
- Cisco Service Assurance Agent
- Syslog
- Response Time Reporter
- Network Time Protocol (NTP) Client
- Trivial File Transfer Protocol (TFTP) Client and Server
- Dynamic Host Configuration Protocol (DHCP) Client and Server
- DHCP Relay
- Hot Standby Router Protocol (HSRP)

Tool Command Language (Tcl) Scripts

- Tcl script support

Address Conservation

- NAT Many-to-One (Port Address Translation [PAT])
- NAT Many-to-Many (Multi-NAT)
- DHCP Client Address Negotiation
- Easy IP Phase I

Physical Characteristics

- XMX/PMC conduction-cooled form factor
- Dimensions: 149 mm x 74 mm, 10 mm stacking height

Technical documents

Ordering information

There are a number of configurations available. Please contact Sarsen Technology to discuss your application.