Snort vs Juniper SRX

Likelihood to Recommend

If a colleague was looking to tighten down their network I can easily recommend Snort to them. It gives you some more peace of mind knowing that its always scanning traffic for malicious looking code. Even things your major firewalls and security hardware might miss, Snort has picked up. Its an easy recommendation for me.

Read full review

Verified User

Consultant in Marketing

Government Administration Company, 501-1000 employees

View all 4 answers on this topic

Juniper SRX is well suitable for large-scale organizations and also large service providers who use Advanced security and routing features and provide service to clients. juniper is very expensive and difficult to configure.

Read full review

Vipin Sharma

Network security engineer

MultiTech ServersInformation Technology & Services, 1-10 employees

View all 8 answers on this topic

Feature Rating Comparison

Snort

Juniper SRX

Identification Technologies

Visualization Tools

Content Inspection

Policy-based Controls

Active Directory and LDAP

Firewall Management Console

Reporting and Logging

VPN

High Availability

Stateful Inspection

Proxy Server

Pros

Real Time updates for security signatures via Talos
Great signature blocking
Excellent reporting via syslog to our Security Analytics collectors.

Read full review

Alan Matson, CCNA:S, MCP

Senior Network Security Engineer

InsightInformation Technology and Services, 5001-10,000 employees

View all 4 answers on this topic

One JUNOS is the Juniper mantra, including for the SRXs. While not entirely true, it comes close enough that if you learn some SRX configuration tricks, they will likely work across all of your SRXs.
Out of the box, with no additional license required, you have a NextGen firewall, by default. You can turn off the firewall and have just a plain ole router.

Read full review

Verified User

Engineer in Information Technology

Financial Services Company, 201-500 employees

View all 8 answers on this topic

Cons

Due to the extensive interface, it can be quite overwhelming to try and manage the product. There are many different places to go to set up individual items. It would be nice to simplify the interface down a bit
Upgrades can be somewhat hazardous. I think they are working to get the upgrade process streamlined, but currently moving major version (5.x to 6.x) there was a lot of additional work outside of the UI that if not done correctly can tank the system, requiring a fresh load or restore from backup

Read full review

David Myers

Network Administrator

West Wichita Family Physicians, P.A.Hospital & Health Care, 201-500 employees

View all 4 answers on this topic

My only real criticism of the product is that it's hard to figure out how to upgrade the firmware from the CLI via TFTP via the docs, but it works great once you get it sorted.

Read full review

Bear Golightly

IT Operations Manager / IT Service Manager

Nashville WrapsWholesale, 51-200 employees

View all 8 answers on this topic

Support Rating

No score

No answers yet

No answers on this topic

Juniper SRX 6.0

Based on 4 answers

This is the one area where I have a beef with Juniper. When I called into Cisco TAC, 90% of the time, the first person I spoke with was able to resolve my issue. With Juniper TAC, 90% of the time, the first person I speak with is not able to resolve my issue, seems to almost be reading from a script, and must escalate my ticket. All of which takes time.

Read full review

Verified User

Engineer in Information Technology

Financial Services Company, 201-500 employees

View all 4 answers on this topic

Alternatives Considered

Sourcefire vs. TippingPoint was a no-brainer for us at the time of deployment. Sourcefire has a more well-defined API using REST that can be leveraged for automating tasks. TippingPoint was just releasing an API that was limited. Also at the time, TippingPoint could not meet our 10Gbps network requirements as Sourcefire could with their 8350 appliances.

Read full review

Alan Matson, CCNA:S, MCP

Senior Network Security Engineer

InsightInformation Technology and Services, 5001-10,000 employees

View all 4 answers on this topic

The juniper is very versatile router/firewall box. it is an excellent router/edge device with zone based firewall.

The PaloAlto and the Fortinet have better GUIs and similar firewall featureset but they are not as flexible routers.

The Cisco CSR1kv is the only box that I would rank similar or higher to the Juniper SRX as it is as versatile as a router and supports the same security feature-set as the Juniper but it has better support and Cisco IOS is more widely adopted by the industry.

Read full review

Amr Momtaz

Cloud Migration Architect

IBMComputer & Network Security, 10,001+ employees

View all 8 answers on this topic

Return on Investment

Being open source, ROI on free is hard to beat for something that works.
I believe it greatly enhances the security of my network.

Read full review

Curt Dickman

Owner

Grandpa's GarageAutomotive, 1-10 employees

View all 4 answers on this topic

It is a workhorse for our field operations. It provides the last touch for an ISP to the customer. The customer has no view of the device, but with the repeatability of the device, they do not need to.
The ability to roll out a dynamic routing protocol attached to a security zone allows elasticity to the environment that supports growth.
VLAN support on the inside interfaces allow this to be the only device in some smaller deployments we install these in.

Read full review

Eric Stephenson

Staff System Engineer

CommScopeTelecommunications, 10,001+ employees

View all 8 answers on this topic

Pricing Details

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

Rating Summary

Snort

Juniper SRX

Snort

Juniper SRX

Snort

Juniper SRX

Snort

Juniper SRX

Feature Rating Comparison

Firewall

Identification Technologies

Visualization Tools

Content Inspection

Policy-based Controls

Active Directory and LDAP

Firewall Management Console

Reporting and Logging

VPN

High Availability

Stateful Inspection

Proxy Server

Pros

Cons

Support Rating

Alternatives Considered

Return on Investment

Pricing Details

General

Free Trial

Free/Freemium Version

Premium Consulting/Integration Services

Entry-level set up fee?

General

Free Trial

Free/Freemium Version

Premium Consulting/Integration Services

Entry-level set up fee?

Rating Summary

Likelihood to Recommend

Likelihood to Renew

Support Rating

Add comparison