Likelihood to Recommend SRXs seem to be well suited at the enterprise level for plain routers, firewalls, and IDP/IDS. They work well on MPLS and Ethernet, including Internet. I have 3 SRXs also performing edge duty, with 2 in a high availability (HA) cluster. The Juniper line of SRXs provides a good range of scaling from small business to extremely large enterprise. Wire speed is a common comparison factor and Juniper shines in that area.
Read full review Untangle is very strong in the "traditional" sense of security. That means an edge appliance that either works with an existing router or is the router itself (recommended). This approach has also been adapted well to cloud environments in order to protect virtual servers and VDI workstations. As mentioned earlier, many schools are using cloud-based filtering for their 1:1 solutions for their students. This is an area where Untangle is unable to serve. Some have used an instance of Untangle in the cloud with VPN to serve their remote needs, but it is not the same as solutions that are designed for cloud-based filtering of devices without VPN.
Read full review Pros Edge Device (Tunneling & Routing) Routing Instances Zone Based Firewall L3 Gateway/Vlan termination DHCP Server & DHCP Relay Good support community & Good available documentation Good support by the Vendor Read full review Web Filtering is strong, and can also do application fingerprinting to allow Facebook, but not Facebook games. Secondly, a separate partition called a "rack" can be set up to give one subnet or group of users different web filtering policies than another. For example, teachers would get more freedom to browse the web than students at a school. Built-in SD-WAN connectivity as part of your license. IPSEC tunnel creation is also amazingly easy. Will install on any x86 hardware created in the last 5-10 years. Ram and processor requirements per user are very low. Reporting is phenomenal, however you can get death by details very easily. Read full review Cons My only real criticism of the product is that it's hard to figure out how to upgrade the firmware from the CLI via TFTP via the docs, but it works great once you get it sorted. Read full review The full suite can be expensive for business but will be powerful enough. The full suite for home or small office isn't that bad of a price but may be out of reach for most home users but remember the basics are FREE so anyone can get started with it. I would like to see it promoted for mid to large businesses as I think it can handle it. Read full review Likelihood to Renew Service renewal is in Feb 2021. We will be renewing!
Read full review Support Rating This is the one area where I have a beef with Juniper. When I called into Cisco TAC, 90% of the time, the first person I spoke with was able to resolve my issue. With Juniper TAC, 90% of the time, the first person I speak with is not able to resolve my issue, seems to almost be reading from a script, and must escalate my ticket. All of which takes time.
Read full review I haven't used them much, but they did answer my question quickly.
Read full review Alternatives Considered Juniper SRX stands tall compared to all these products for Large Service Provider Networks, where traffic volume is larger. Also, cost comparison with SRX's few other products can also be another contributing factor while selecting this. As well as Juniper Routers, Switches, and multiple products from the same vendor to maintain one single vendor environment. As well as Juniper Support is also really good.
Read full review NG Firewall was much more friendly in terms of layout and ease of use, the apps section is familiar to anyone and the config while in a sort of odd order is very clearly laid out. I also appreciate Untangle's endless educational videos and the support can't be beat. Overall it was more of a complete package
Read full review Return on Investment It is a workhorse for our field operations. It provides the last touch for an ISP to the customer. The customer has no view of the device, but with the repeatability of the device, they do not need to. The ability to roll out a dynamic routing protocol attached to a security zone allows elasticity to the environment that supports growth. VLAN support on the inside interfaces allow this to be the only device in some smaller deployments we install these in. Read full review The positive is the savings in time the IT department has recouped by not having to continuously clean and maintain end point computers. Not to mention helping end user use their time more wisely by not wasting time on non-work related web activities. The only negative is complaints from end users about the restrictions. Read full review ScreenShots