Overview
What is Juniper SRX?
Juniper SRX is a firewall offering. It provides a variety of modular features, scaled for enterprise-level use, based on a 3-in-1 OS that enables routing, switching, and security in each product.
Juniper SRX stands tall for Service Provider Networks.
SRX: A very versitile Router/Firewall Box
Juniper SRX. A Swiss army knife for routing and security.
Juniper SRXs are the shizzle!!!
Juniper SRX: When you don't have time to play around!
Juniper SRX: The best choice for enterprise firewall.
New to Junos and loving it.
SRX Review
Popular Features
- High Availability (5)10.0100%
- Reporting and Logging (5)8.080%
- Firewall Management Console (5)7.070%
Reviewer Pros & Cons
Pricing
What is Juniper SRX?
Juniper SRX is a firewall offering. It provides a variety of modular features, scaled for enterprise-level use, based on a 3-in-1 OS that enables routing, switching, and security in each product.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
5 people also want pricing
Alternatives Pricing
What is Perimeter 81?
Perimeter 81 is a Zero Trust Network as a Service from the company of the same name in Tel Aviv, designed to simplify secure network, cloud and application access for the modern and distributed workforce.
What is Cisco Firepower 9300 Series?
The Cisco Firepower 9300 series is presented by the vendor as a carrier-grade next-generation firewall (NGFW) ideal for data centers and high-performance settings that require low latency and high throughput. With it, the vendor providdes, users can deliver scalable, consistent security to…
Product Demos
Juniper SRX Chassis Cluster
Juniper SRX Firewall Security Policy Rules
Juniper SRX Initial Configuration Get Started Video
Features
Firewall
A firewall is a filter that stands between a computer or computer network and the Internet. Each firewall can be programmed to keep specific traffic in or out
- 9Identification Technologies(3) Ratings
Policy-based visibility and control over applications, users and content
- 7Visualization Tools(3) Ratings
Visualization tools present administrators with data on applications traversing the network, who is using them, and the potential security impact.
- 8Content Inspection(4) Ratings
Inspecting permitted application traffic by means of threat prevention, URL filtering and data filtering
- 10Policy-based Controls(4) Ratings
Firewall policy controls enable administrators to create firewall policies controlling what data is allowed to traverse the firewall
- 8Active Directory and LDAP(3) Ratings
Integration with Active Directory and LDAP directories
- 7Firewall Management Console(5) Ratings
Either command-line or web-based interface for centralized control and management
- 8Reporting and Logging(5) Ratings
Custom and summary reports, and log files enabling analysis of security incidents, application usage and traffic patterns
- 10VPN(4) Ratings
VPN's implement encryption and anonymize IP addresses
- 10High Availability(5) Ratings
Built-in capacity to prevent exposure if primary firewall stops working
- 10Stateful Inspection(4) Ratings
Stateful inspection analyzes packet headers and contents of packets
- 9Proxy Server(3) Ratings
A proxy server changes your IP address and masks the origin of your network traffic
Product Details
- About
- Tech Details
- FAQs
What is Juniper SRX?
Juniper SRX Video
Juniper SRX Technical Details
Operating Systems | Unspecified |
---|---|
Mobile Application | No |
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(32)Community Insights
- Business Problems Solved
The Juniper SRX is a versatile appliance that satisfies various network needs. Users have found it to be an ideal solution for multiple use cases, such as site-to-site VPN endpoints, standard firewalls, and all-in-one router/firewall/switching. It seamlessly integrates into different designs, including Internet GW, DC firewall, DMZ Firewall, North-South Firewall & Router, and edge router/firewall setups.
One of the standout features of the Juniper SRX is its ability to handle advanced routing capabilities like VRFs, BGP, and GRE, while also providing robust security functionalities such as IPSEC, IPS, Security, and URL Filtering. This makes it suitable for edge devices in data centers or cloud environments where routing instances, support for multiple tunneling, and advanced BGP features are crucial. Furthermore, the Juniper SRX can be configured as physical or virtual boxes with active/standby configuration for enhanced high availability.
Users have come to rely on the Juniper SRX series firewalls for a range of applications including edge firewalls, core firewalls, and VPN point-to-point peers. Its cost-effective price point compared to other options makes it an attractive choice for businesses seeking required security measures without breaking the bank. The Junos platform's ease of use allows for smooth adjustments and reversions with change validation and automated rollback to mitigate unintended consequences. With a reputation for versatility and reliability in diverse scenarios such as basic edge routers or full stateful firewalls with BGP peering for high availability use cases, Juniper SRX devices consistently deliver top-notch performance. They pass audits without issues after firmware updates and are employed in applications like connecting buildings using metro ethernet for high reliability through link failover and automatic route injection on failover.
Users find that Juniper network equipment offers great value with its reliability and effectiveness compared to other networking equipment companies. When it comes to enterprise security requirements like securing workloads, limiting access to internal networks, and protecting against threats and malicious users, the Juniper SRX serves as a robust network firewall. Moreover, it facilitates traffic routing to the internet through Network Address Translation. Administrators rely on Juniper SRXs to handle perimeter security measures and enable blocking of traffic based on IP and port for multiple clients. Overall, the Juniper SRX provides an array of use cases with its versatile capabilities and cost-effective security features.
Attribute Ratings
Reviews
(1-5 of 5)Juniper SRX stands tall for Service Provider Networks.
- Network Address Translation.
- Securing the Enterprise Workload.
- Enterprise VPN Connectivity.
- Antivirus Features can be more advanced.
- Antispam Filtering features have room for improvement.
- Cloud Capabilities.
- IPSec VPN.
- Network Address Translation.
- Security Policies.
- Identification Technologies
- 90%9.0
- Visualization Tools
- 70%7.0
- Content Inspection
- 80%8.0
- Policy-based Controls
- 100%10.0
- Active Directory and LDAP
- 80%8.0
- Firewall Management Console
- 70%7.0
- Reporting and Logging
- 80%8.0
- VPN
- 100%10.0
- High Availability
- 100%10.0
- Stateful Inspection
- 100%10.0
- Proxy Server
- 90%9.0
- It really helped secure a big service provider environment.
- It handles the traffic pretty well.
- It helps in the seamless implementation of Firewall policies.
Networking team is the admin team who manages the firewall.
- Securing the applications.
- Establishing the connectivity with partner networks.
- On Prem to Cloud Connectivity.
- SRX is being used to handle of lot of NAT connections, instead of using the dedicated NATing devices.
- SRX is used as external point for any Internet traffic to hit the Internal network.
- Enabling the features such as making it as the proxy server.
- Utilizing the Decryption capabilities.
SRX: A very versitile Router/Firewall Box
- Edge Device (Tunneling & Routing)
- Routing Instances
- Zone Based Firewall
- L3 Gateway/Vlan termination
- DHCP Server & DHCP Relay
- Good support community & Good available documentation
- Good support by the Vendor
- The GUI is pretty basic and need some enhancements
- Edge Device/Tunnel Termination
- Routing (eBGP)
- Zone Based Firewall
- L3 Gateway
- DHCP Server/Relay
- Identification Technologies
- 60%6.0
- Visualization Tools
- 50%5.0
- Content Inspection
- 70%7.0
- Policy-based Controls
- 70%7.0
- Active Directory and LDAP
- 70%7.0
- Firewall Management Console
- 50%5.0
- Reporting and Logging
- 70%7.0
- VPN
- 90%9.0
- High Availability
- 90%9.0
- Stateful Inspection
- 90%9.0
- Proxy Server
- 70%7.0
- Solid Return of investment as an edge gateway appliance
- Very versatile appliance that supports multiple deployment scenarios and configuration. one ha/pair can serve multiple functions using Routing Instances.
- Great support by the vendor, community and online resources
- it is not hard to find people with Juniper experience and there is training courses and resources that can help anyone with networking experience pick it up and be able to administrate and configure the box.
- Palo Alto Networks Next-Generation Firewalls - PA Series, Fortinet FortiGate and Cisco Cloud Services Router 1000V Series (CSR 1000V)
Juniper SRXs are the shizzle!!!
- One JUNOS is the Juniper mantra, including for the SRXs. While not entirely true, it comes close enough that if you learn some SRX configuration tricks, they will likely work across all of your SRXs.
- Out of the box, with no additional license required, you have a NextGen firewall, by default. You can turn off the firewall and have just a plain ole router.
- Technical support is often lacking. By that, I mean that Tier 1 support frequently has to escalate to the next group. I find that most of my support calls don't get resolved until I hit about Tier 3. Plus it takes minimum of 3 days with medium priority issues.
- Automation is very flexible, but because there are so many options, it would great to have a road map to perform the most frequent automation tasks.
- Visualization Tools
- 80%8.0
- Content Inspection
- 100%10.0
- Policy-based Controls
- 100%10.0
- Active Directory and LDAP
- 100%10.0
- Firewall Management Console
- 100%10.0
- Reporting and Logging
- 100%10.0
- VPN
- 100%10.0
- High Availability
- 100%10.0
- Stateful Inspection
- 100%10.0
- Proxy Server
- 100%10.0
- Annual capital savings on infrastructure equipment about $500,000.
- Data Center switches function (and are managed) as a single virtual chassis, reducing maintenance and troubleshooting time.
Juniper SRX: When you don't have time to play around!
- The Juniper SRX platform is easy to set up (out of the box).
- The support team responds to tickets quickly and with good solutions.
- My only real criticism of the product is that it's hard to figure out how to upgrade the firmware from the CLI via TFTP via the docs, but it works great once you get it sorted.
- Identification Technologies
- N/AN/A
- Visualization Tools
- N/AN/A
- Content Inspection
- N/AN/A
- Policy-based Controls
- N/AN/A
- Active Directory and LDAP
- N/AN/A
- Firewall Management Console
- 80%8.0
- Reporting and Logging
- 80%8.0
- VPN
- N/AN/A
- High Availability
- 80%8.0
- Stateful Inspection
- N/AN/A
- Proxy Server
- N/AN/A
- A loss of a single metro ethernet carrier link between buildings is no longer a problem - a warehouse filled with idle pickers is expensive!
- Using single-purpose Juniper SRX devices on each end provides reliable connectivity independent of SDWAN or any other integrated devices, which helps avoid annoying finger-pointing
New to Junos and loving it.
- The Junos OS provides engineers the ability to review past changes and see who made the change which can be a huge advantage when troubleshooting issues that recently manifested themselves in a network. Not all issues pop up right away, so this is a great tool to see how the environment has changed in the recent past.
- Junos uses a 2 config process to make changes and put into operation, a operational config and a proposed config called a candidate config. This allows engineers making changes to see the entire proposed changes and confirm its accuracy prior to implementing.
- Configuration changes can be done in several different methods. Once you get comfortable with each, making quick changes can done easily and validated prior to committing to operation.
- There's not a lot about the SRX that I don't like but if I had to say, I'd say the remote access VPN and associated client app needs improvement and by using a 3rd party as the client app provider this made troubleshooting RA issues much more difficult. For this reason, we do not use the SRX for RA VPNs.
- Although I'm not a part of the budgeting process, I do know that by using Juniper SRXs, we were able to get the products we needed with much less issues and justifications as other product we've purchased in the past.