Reviews (1-3 of 3)
March 22, 2017
Score 9 out of 10
We use the Juniper SRX for various purposes ranging from dedicated site-to-site VPN endpoints, to standard firewall, to all-in-one router/firewall/switching. We use the Juniper SRX for our own internal use, as well as for our clients.
- Ease and stability of configuration. Automatic rollback makes changes foolproof.
- Strong range of hardware options in all tiers.
- Common OS and configuration across all models and even other Juniper products.
- Some of the more complex setups (clustered HA, etc.) can be a little difficult to configure.
- The lowest-end model that supports true multi-site HA is relatively expensive. It would be nice to have that option in lower models.
- Some configuration options (particularly the way address book entries are done) can get tedious and make for very long configs.
Read Randy Carpenter's full review
- Well suited for any application where a firewall or routing is needed.
- Compared to other offerings, it is really the best.
- The only area where there may be a need for something different is for high-end DDoS protection.
July 15, 2016
Score 8 out of 10
We use the Juniper SRX series FWs as our edge firewalls, core FWs and VPN P2P peers. We use these in our dept, other dept and divisions make their own decisions on products and vendors to suit their specific needs. The SRX provides us the security we require at a price point much better than other options. Once the learning curve is leveled out, the easy of use for making changes or undoing changes is far greater than other manufactures methods. In a 24/7/365 environment, it's critical that changes be made in a timely manner with minimum errors, Junos provides a great way to validate the change and an automated rollback if any unintended outcomes occur.
- The Junos OS provides engineers the ability to review past changes and see who made the change which can be a huge advantage when troubleshooting issues that recently manifested themselves in a network. Not all issues pop up right away, so this is a great tool to see how the environment has changed in the recent past.
- Junos uses a 2 config process to make changes and put into operation, a operational config and a proposed config called a candidate config. This allows engineers making changes to see the entire proposed changes and confirm its accuracy prior to implementing.
- Configuration changes can be done in several different methods. Once you get comfortable with each, making quick changes can done easily and validated prior to committing to operation.
- There's not a lot about the SRX that I don't like but if I had to say, I'd say the remote access VPN and associated client app needs improvement and by using a 3rd party as the client app provider this made troubleshooting RA issues much more difficult. For this reason, we do not use the SRX for RA VPNs.
Read Robert Beck's full review
The Juniper SRX is a great product for almost any deployment, the form factor, the price point, the power and ease of use make it an all purpose FW for any situation.
July 12, 2016
Score 3 out of 10
We have multiple clients that are utilizing Juniper SRXs that we administer, some of which are used for specific depts/uses some of which are for an entire Branch. The business problems that this addresses is perimeter security, allowing you to block traffic based off IP and port.
- These will route your traffic well and support most all major routing protocols.
- VPN Termination is straightforward compared to some competitors.
- The commit feature on the SRX puts it way ahead in the ability to roll back changes in case of an error/unplanned consequence.
- This is personal preference, but I strongly dislike the XML format that is displayed if you do not use the display set option.
- Commands to do some simple operations are much longer/more cumbersome compared to some of its main counterparts.
- The lack of application detection is a big knock on these, we ended up replacing the one in my office with a next-gen firewall to give us greater control.
Read this authenticated review
I think if you're using it internally, maybe for segregation in the datacenter, this could excel if you're not worrying about application filtering. The firewalling policies are little more cumbersome to configure but are more robust than a basic ACL.
Juniper SRX Scorecard Summary
About Juniper SRX
Juniper SRX is a firewall and web security gateway. It can be deployed on-premises, as well as virtually for smaller use cases, and is optimized for enterprise-level use. Each of the SRX line are based on the Junos OS, which enables three-in-one routing, switching, and security. The features of a given product in the line are purpose-built to the scope of the business needs. These features start with base next-generation firewall (NGFW) and Unified Threat Management (UTM) capabilities. From there, the offerings scale up to include additional scalability and customizability, as well as Advanced Threat Protection and SSL inspection.
Juniper SRX Technical Details