Juniper Networks Firewalls
Home — PartnersJuniper Networks — Juniper Networks Firewalls

Juniper Networks firewalls feature high performance network security with advanced integrated threat intelligence, delivered on the industry’s most scalable and resilient platform. SRX Series gateways set new benchmarks with 100GbE interfaces and feature Express Path technology, which enables up to 2 Tbps performance for the data center. SRX offers a broad range of options — from all in one, integrated physical and virtual security networking devices to highly scalable, chassis based data center solutions — that can defend enterprise data centers and service providers of any size. CSRX firewall  uses less memory, and its spinup time measures in sub seconds — all leading to higher density at a lower cost. Junos Space Security Director improves policy configuration, management, and visibility for both physical and virtual assets through a common, centralized platform. Security Director provides a single pane of glass for managing firewall policies consistently across Juniper Networks Firewalls vSRX, cSRX, and SRX Series platforms.

High performance network security in a virtual form factor for rapid deployment and scale-out environments. The Juniper Networks Firewalls vSRX offers the same features that are available in Juniper’s physical Juniper Networks Firewalls SRX Series devices, delivering a complete and integrated virtual security solution that includes core firewall, robust networking, advanced security services at Layer-4 through Layer-7, and automated life cycle management capabilities. Sky Advanced Threat Prevention helps your team quickly manage all phases of the security policy life cycle for stateful firewall, security intelligence, Unified Threat Management (UTM), Intrusion Prevention System (IPS), AppFW, VPN, and Network Address Translation (NAT). Spotlight Secure threat intelligence platform addresses these challenges and constraints by aggregating threat feeds from multiple sources to deliver open, consolidated, actionable intelligence to SRX series firewalls across the organization.

Juniper Networks Sky Advanced Threat Prevention

Sky Advanced Threat Prevention is a cloud based service that provides advanced malware protection. A cloud based service that’s integrated with SRX Series firewalls, Sky Advanced Threat Prevention delivers a dynamic anti malware solution that adapts to an ever-changing threat landscape. As malware attacks evolve and grow more insidious, conventional anti-malware products have difficulty defending against them. Sky Advanced Threat Prevention keeps the network free of sophisticated malware and cyber attacks with superior cloud based protection that includes monitoring ingress and egress traffic for malware and indicators of compromise. Sky Advanced Threat Prevention employs a pipeline of technologies in the cloud to identify varying levels of risks, providing a higher degree of accuracy in threat prevention. It integrates with SRX Series firewalls to deliver deep inspection, inline blocking, and actionable alerts.

Juniper Networks Junos Space Security Director

Security management for centralized policy control across physical and virtual SRX Series firewall services. Junos Space Security Director is a comprehensive network security management solution that combines intuitive and advanced security visibility with automated policy management. In today’s complex and constantly changing environment, network administrators need a high level of visibility into network behavior to maintain a robust security posture. The ability to quickly understand threats and their corresponding remediation options allows security teams to keep their organizations safe. Junos Space Security Director provides security policy management through an intuitive, centralized interface that offers enforcement across emerging and traditional risk vectors. Using intuitive dashboards and reporting features, administrators gain insight into threats, compromised devices, risky applications, and more.

Juniper Networks Firewalls — cSRX Container Firewall

Advanced security services, including content security, Juniper Networks AppSecure, and UTM, for containerized and virtual machine environments. Juniper Networks Firewalls cSRX provides advanced security services, including content security, AppSecure, and unified threat management in a container form factor. With its small footprint and Docker as a container management system, Juniper Networks Firewalls cSRX enables agile, high-density security service deployment. Businesses increasingly rely on container technology for developing applications. Using Docker containers substantially reduces overhead, because each container shares the host’s OS. Regardless of how many containers a server hosts, only one OS instance is in use. And because of containers’ lightweight quality, a server can host many more container instances than virtual machines (VMs) can, yielding tremendous improvements in utilization. The cSRX container firewall, like other containers, differs from VMs in several important ways.

Juniper Networks Firewalls — VSRX Virtual Firewall

The Juniper Networks Firewalls vSRX Series delivers core firewall, networking, advanced security, and automated life cycle management for enterprises and service providers. The industry’s fastest virtual security platform, Juniper Networks Firewalls vSRX Series offers firewall speeds up to 17 Gbps using only 2 vCPUs, scaling to 100 Gbps with 12 vCPUs to provide scalable, secure protection across private, public, and hybrid clouds. Data centers increasingly rely on server virtualization to deliver services faster and more efficiently than ever before. But with virtualization comes a new set of security risks. Businesses need a firewall that can keep pace with evolving threats while providing the agility, elasticity, and cost savings that virtualized and cloud environments demand — without sacrificing reliability, visibility, or control. The vSRX offers the same features that are available in our physical Juniper Networks Firewalls SRX Series devices, delivering a complete and integrated virtual security solution that includes core firewall, robust networking, advanced security services at Layer-4 through Layer-7, and automated life cycle management capabilities.

Juniper Networks Spotlight Secure

Integrated real-time threat intelligence to detect and block advanced threats at the firewall. Spotlight Secure is a threat intelligence platform that aggregates threat feeds from multiple sources to deliver open, consolidated, actionable intelligence to SRX series services gateways (firewalls) across the organization. These sources include Juniper threat feeds, third-party threat feeds, and threat detection technologies that the customer can deploy. As the threat landscape continues to accelerate and evolve, the security industry continues to respond with a variety of disparate new detection technologies. Unfortunately, this approach results in customers struggling to manage a patchwork of uncoordinated security tools, leaving a gap between detection and enforcement at the firewall. Many next generation firewalls include integrated capabilities, such as intrusion prevention system, antivirus signatures, and proprietary reputation feeds, but they are closed systems that are not capable of taking full advantage of the highly diverse third-party and custom feeds utilized by customers, specific to their industry.

Juniper Networks AppSecure

AppSecure is a next generation application security suite for the SRX Series that delivers threat visibility, protection, enforcement, and control. AppSecure is a next generation application security suite for SRX Series Services Gateways that delivers security threat visibility, enforcement, control, and protection over the network. AppSecure is a suite of application security capabilities for SRX Series Services Gateways that identifies applications for greater visibility, enforcement, control, and protection of the network. AppSecure understands application behaviors and weaknesses, and it can prevent application borne security threats that are difficult to detect and stop. AppTrack analyzes application data and classifies it based on risk level, user ID, zones, source, and destination addresses. It then uses it to assess adherence to application usage policies, address bandwidth management, or report on the most active users and applications.
Juniper Networks Firewalls

Data correlation — the Cloud Analytics Engine gathers and correlates data gathered from multiple sources, including physical and virtual end points, providing visibility for troubleshooting, application deployment and capacity planning. End to end aggregated view — providing end to end visibility into both the network and applications, the Cloud Analytics Engine aggregates views to help IT staff quickly identify the root cause of problems. Flexible and open — the Juniper Networks Cloud Analytics Engine partner ecosystem is continuously evolving, providing support for third-party tools and other devices through plug-ins and APIs.

Application perspective — by offering visibility into how the network is performing from an application perspective, the Cloud Analytics Engine makes it easier to triage performance problems and determine whether they originated in the network or an application. Reduced costs — by helping detect, identify and isolate network faults, the Juniper Networks Cloud Analytics Engine reduces the amount of time and money spent troubleshooting and fixing network or application problems.

Future-proof for the cloud era with an open SDN solution that provides high performance, elasticity, and security. From network virtualization and automation to turnkey integrated cloud management platform, Juniper Networks Contrail delivers freedom of choice, intelligent automation and always-on reliability for cloud and NFV. Juniper Networks NorthStar Controller is a powerful and flexible traffic engineering solution that enables granular visibility and control of IP/MPLS flows in carrier networks.

Juniper Networks WANDL IP/MPLSView is a multivendor, multiprotocol, and multilayer Operations Support Systems (OSS) traffic management and engineering solution for IP and/or MPLS networks. Juniper Networks NFX250 Network Services Platform is a secure and automated software-driven CPE device provides custom service delivery on-premises and service chain multiple virtualized network functions.

Automated resource provisioning, configuration, and operation of compute, storage, and networking resources. Minimizes manual intervention while improving operational efficiency and reducing operational cost. Dynamic service chaining creates policy-driven, software-controlled, on-demand service chain customization based on customers’ business policies. Scale-out software architecture can expand elastically and handle failures gracefully.

Juniper Networks Contrail Provides anytime availability of the cloud for operation, activation, and management of application workloads. Rich and prescriptive analytics powered by a high-speed data collection engine. Juniper Networks Contrail Provides granular infrastructure telemetry information through very large-scale ingestion and querying of structured and unstructured data. Also provides real-time and historical data availability via simple REST APIs.

Easy operations — automated resource provisioning, configuration, and operation of compute, storage, and networking resources. Minimizes manual intervention while improving operational efficiency and reducing operational cost. Also provides real-time and historical data availability via simple REST APIs. Speeds time to market for new services by automating the creation of virtual networks that interconnect private, hybrid, and public clouds. Avoids expensive vendor lock with an open architecture that interoperates with a wide range hypervisors, orchestration systems, and physical networks. Creates virtual networks that integrate seamlessly with existing physical networks, and that are easy to manage and orchestrate.

Juniper Networks Contrail — from network virtualization and automation to turnkey integrated cloud management, Juniper Networks Contrail delivers freedom of choice, intelligent automation and always-on reliability for cloud and NFV. From network virtualization to integrated cloud management, Contrail delivers freedom of choice, intelligent automation, and always on reliability for cloud, software defined WAN, and NFV environments.

Multilayer SDN control puts an end to overprovisioning. A powerful and flexible Juniper Networks NorthStar Controller provides granular visibility into, and control over, IP/MPLS flows in large service provider and enterprise networks. Using Juniper Networks NorthStar Controller, operators can optimize their network infrastructure through proactive monitoring and planning, and dynamically create explicit routing paths using a global view that's based on user-defined constraints.

This industry-first traffic optimization WAN SDN controller automates the creation of traffic engineering paths across the network, increasing network utilization and enabling a customized programmable networking experience. With the power of Junos OS, WANDL optimization algorithms, and transport abstraction, Juniper Networks NorthStar Controller enables efficient design, bringing new levels of control and visibility that help you avoid costly overprovisioning.

Juniper Networks WANDL IP/MPLSView is a multivendor, multiprotocol, and multilayer Operations Support Systems (OSS) traffic management and traffic engineering solution for IP and/or MPLS networks. Juniper Networks IP/MPLSView is distinguished by its attention to detailed routing protocol behavior, an extensive multivendor library, and scalability and performance for networks up to thousands of routers. The integrated software suite has traffic engineering models for exhaustive single and concurrent device failures, traffic matrix estimation, MPLS diverse path design, fast reroute design, network optimization, and more.

Additionally, Juniper Networks IP/MPLSView is distinguished by the integrated network management module, which provides for a comprehensive Fault, Configuration, Accounting, Performance, and Security (FCAPS) solution offering automated network discovery, traffic monitoring, hardware inventory, fault management, and more. Unprecedented scalability to handle regional, national, and intercontinental network topologies. Powerful fault management tools to quickly detect and diagnose issues in the network. Performance management to tune the network for increased efficiency, trending analysis, and problem prevention.