Overview
What is Juniper SRX?
Juniper SRX is a firewall offering. It provides a variety of modular features, scaled for enterprise-level use, based on a 3-in-1 OS that enables routing, switching, and security in each product.
Juniper SRX stands tall for Service Provider Networks.
SRX: A very versitile Router/Firewall Box
Juniper SRX. A Swiss army knife for routing and security.
Juniper SRXs are the shizzle!!!
Juniper SRX: When you don't have time to play around!
Juniper SRX: The best choice for enterprise firewall.
New to Junos and loving it.
SRX Review
Popular Features
- High Availability (5)10.0100%
- Reporting and Logging (5)8.080%
- Firewall Management Console (5)7.070%
Reviewer Pros & Cons
Pricing
What is Juniper SRX?
Juniper SRX is a firewall offering. It provides a variety of modular features, scaled for enterprise-level use, based on a 3-in-1 OS that enables routing, switching, and security in each product.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
5 people also want pricing
Alternatives Pricing
What is pfSense?
pfSense is a firewall and load management product available through the open source pfSense Community Edition, as well as a the licensed edition, pfSense Plus (formerly known as pfSense Enterprise). The solution provides combined firewall, VPN, and router functionality, and can be deployed through…
What is Untangle NG Firewall?
Untangle NG Firewall is an open-source firewall and gateway security platform. It offers a free core firewall platform with paid add-ons, and a cloud-based management platform with a variety of deployment options for smaller teams.
Product Demos
Juniper SRX Chassis Cluster
Juniper SRX Firewall Security Policy Rules
Juniper SRX Initial Configuration Get Started Video
Features
Firewall
A firewall is a filter that stands between a computer or computer network and the Internet. Each firewall can be programmed to keep specific traffic in or out
- 9Identification Technologies(3) Ratings
Policy-based visibility and control over applications, users and content
- 7Visualization Tools(3) Ratings
Visualization tools present administrators with data on applications traversing the network, who is using them, and the potential security impact.
- 8Content Inspection(4) Ratings
Inspecting permitted application traffic by means of threat prevention, URL filtering and data filtering
- 10Policy-based Controls(4) Ratings
Firewall policy controls enable administrators to create firewall policies controlling what data is allowed to traverse the firewall
- 8Active Directory and LDAP(3) Ratings
Integration with Active Directory and LDAP directories
- 7Firewall Management Console(5) Ratings
Either command-line or web-based interface for centralized control and management
- 8Reporting and Logging(5) Ratings
Custom and summary reports, and log files enabling analysis of security incidents, application usage and traffic patterns
- 10VPN(4) Ratings
VPN's implement encryption and anonymize IP addresses
- 10High Availability(5) Ratings
Built-in capacity to prevent exposure if primary firewall stops working
- 10Stateful Inspection(4) Ratings
Stateful inspection analyzes packet headers and contents of packets
- 9Proxy Server(3) Ratings
A proxy server changes your IP address and masks the origin of your network traffic
Product Details
- About
- Tech Details
- FAQs
What is Juniper SRX?
Juniper SRX Video
Juniper SRX Technical Details
Operating Systems | Unspecified |
---|---|
Mobile Application | No |
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(34)Community Insights
- Business Problems Solved
The Juniper SRX is a versatile appliance that satisfies various network needs. Users have found it to be an ideal solution for multiple use cases, such as site-to-site VPN endpoints, standard firewalls, and all-in-one router/firewall/switching. It seamlessly integrates into different designs, including Internet GW, DC firewall, DMZ Firewall, North-South Firewall & Router, and edge router/firewall setups.
One of the standout features of the Juniper SRX is its ability to handle advanced routing capabilities like VRFs, BGP, and GRE, while also providing robust security functionalities such as IPSEC, IPS, Security, and URL Filtering. This makes it suitable for edge devices in data centers or cloud environments where routing instances, support for multiple tunneling, and advanced BGP features are crucial. Furthermore, the Juniper SRX can be configured as physical or virtual boxes with active/standby configuration for enhanced high availability.
Users have come to rely on the Juniper SRX series firewalls for a range of applications including edge firewalls, core firewalls, and VPN point-to-point peers. Its cost-effective price point compared to other options makes it an attractive choice for businesses seeking required security measures without breaking the bank. The Junos platform's ease of use allows for smooth adjustments and reversions with change validation and automated rollback to mitigate unintended consequences. With a reputation for versatility and reliability in diverse scenarios such as basic edge routers or full stateful firewalls with BGP peering for high availability use cases, Juniper SRX devices consistently deliver top-notch performance. They pass audits without issues after firmware updates and are employed in applications like connecting buildings using metro ethernet for high reliability through link failover and automatic route injection on failover.
Users find that Juniper network equipment offers great value with its reliability and effectiveness compared to other networking equipment companies. When it comes to enterprise security requirements like securing workloads, limiting access to internal networks, and protecting against threats and malicious users, the Juniper SRX serves as a robust network firewall. Moreover, it facilitates traffic routing to the internet through Network Address Translation. Administrators rely on Juniper SRXs to handle perimeter security measures and enable blocking of traffic based on IP and port for multiple clients. Overall, the Juniper SRX provides an array of use cases with its versatile capabilities and cost-effective security features.
Attribute Ratings
Reviews
(1-8 of 8)Juniper SRX stands tall for Service Provider Networks.
- Network Address Translation.
- Securing the Enterprise Workload.
- Enterprise VPN Connectivity.
- Antivirus Features can be more advanced.
- Antispam Filtering features have room for improvement.
- Cloud Capabilities.
SRX: A very versitile Router/Firewall Box
- Edge Device (Tunneling & Routing)
- Routing Instances
- Zone Based Firewall
- L3 Gateway/Vlan termination
- DHCP Server & DHCP Relay
- Good support community & Good available documentation
- Good support by the Vendor
- The GUI is pretty basic and need some enhancements
Juniper SRX. A Swiss army knife for routing and security.
- The ease of use for the CLI is a huge benefit. Unlike the Cisco platform, all changes are implemented in a commit statement vs. live on the box.
- The devices hit a price point that is very competitive.
- Dynamic routing support is a huge win.
- The areas that can improve are met by higher-level platforms within the Juniper portfolio.
Juniper SRXs are the shizzle!!!
- One JUNOS is the Juniper mantra, including for the SRXs. While not entirely true, it comes close enough that if you learn some SRX configuration tricks, they will likely work across all of your SRXs.
- Out of the box, with no additional license required, you have a NextGen firewall, by default. You can turn off the firewall and have just a plain ole router.
- Technical support is often lacking. By that, I mean that Tier 1 support frequently has to escalate to the next group. I find that most of my support calls don't get resolved until I hit about Tier 3. Plus it takes minimum of 3 days with medium priority issues.
- Automation is very flexible, but because there are so many options, it would great to have a road map to perform the most frequent automation tasks.
Juniper SRX: When you don't have time to play around!
- The Juniper SRX platform is easy to set up (out of the box).
- The support team responds to tickets quickly and with good solutions.
- My only real criticism of the product is that it's hard to figure out how to upgrade the firmware from the CLI via TFTP via the docs, but it works great once you get it sorted.
Juniper SRX: The best choice for enterprise firewall.
- Ease and stability of configuration. Automatic rollback makes changes foolproof.
- Strong range of hardware options in all tiers.
- Common OS and configuration across all models and even other Juniper products.
- Some of the more complex setups (clustered HA, etc.) can be a little difficult to configure.
- The lowest-end model that supports true multi-site HA is relatively expensive. It would be nice to have that option in lower models.
- Some configuration options (particularly the way address book entries are done) can get tedious and make for very long configs.
- Well suited for any application where a firewall or routing is needed.
- Compared to other offerings, it is really the best.
- The only area where there may be a need for something different is for high-end DDoS protection.
New to Junos and loving it.
- The Junos OS provides engineers the ability to review past changes and see who made the change which can be a huge advantage when troubleshooting issues that recently manifested themselves in a network. Not all issues pop up right away, so this is a great tool to see how the environment has changed in the recent past.
- Junos uses a 2 config process to make changes and put into operation, a operational config and a proposed config called a candidate config. This allows engineers making changes to see the entire proposed changes and confirm its accuracy prior to implementing.
- Configuration changes can be done in several different methods. Once you get comfortable with each, making quick changes can done easily and validated prior to committing to operation.
- There's not a lot about the SRX that I don't like but if I had to say, I'd say the remote access VPN and associated client app needs improvement and by using a 3rd party as the client app provider this made troubleshooting RA issues much more difficult. For this reason, we do not use the SRX for RA VPNs.
SRX Review
- These will route your traffic well and support most all major routing protocols.
- VPN Termination is straightforward compared to some competitors.
- The commit feature on the SRX puts it way ahead in the ability to roll back changes in case of an error/unplanned consequence.
- This is personal preference, but I strongly dislike the XML format that is displayed if you do not use the display set option.
- Commands to do some simple operations are much longer/more cumbersome compared to some of its main counterparts.
- The lack of application detection is a big knock on these, we ended up replacing the one in my office with a next-gen firewall to give us greater control.