IDP75 Intrusion Detection and Prevention Blanca para las empresas pequeñas y medianas y oficinas remotas proporcionan un método rentable de garantizar la disponibilidad de la red.
Detection Mechanisms 8 including Stateful Signatures and backdoor detection
Signature Updates Daily and emergency
Number of Traffic Interfaces Two RJ-45 Ethernet 10/100/1000 with bypass
High-Availability Support N/A
Juniper Networks IDP800 Intrusion Detection and Prevention ofrecen aparatos de detección de la cobertura continua de intrusiones de seguridad a las redes de tamaño medio y grandes empresas y proveedores de servicios.
Detection Mechanisms 8 including Stateful Signatures and backdoor detection
Signature Updates Daily and emergency
Number of Traffic Interfaces 2 RJ-45 Ethernet 10/100/1000 with bypass
High-Availability Support Optional Bypass
SRX100 es un router seguro que admite hasta 650 Mbps de firewall y 65 Mbps IPsec VPN. Características de seguridad adicionales incluyen la gestión unificada de amenazas (UTM), que consta de: IPS, antispam, antivirus y filtrado Web. El Portal de Servicios SRX100 es ideal para obtener pequeñas localidades de la empresa distribuida.
JUNOS Software version tested JUNOS 10.0
Firewall performance (max) 650 Mbps
IPS performance (NSS 4.2.1) 60 Mbps
AES256+SHA-1 / 3DES+SHA-1 VPN performance 65 Mbps
Maximum concurrent sessions 16 K (512 MB DRAM) / 32 K (1 GB DRAM)
New sessions/second (sustained, TCP, 3-way) 2,000
Maximum security policies 384
Maximum users supported Unrestricted
Maximum available slots for IOCs N/A
Fixed I/O ports 8 x 10/100CX111 3G Bridge support Yes
Internal 3G Express Card Slot support N/A
WAN / LAN interface options N/A
High-availability support Yes
Firewall Network attack detection: YesDoS and DDoS protection: Yes
TCP reassembly for fragmented packet protection: Yes
Brute force attack mitigation: Yes
SYN cookie protection: Yes
Zone-based IP spoofing: Yes
Malformed packet protection: Yes
PLANET SG-1000 VPN Security Gateway 1W 2L
‧VPN Connectivity The VPN security gateway supports SSL VPN, IPSec VPN, and PPTP server/client. The SSL VPN function supports up to 50 SSL VPN connection tunnels. The IPSec VPN has DES, 3DES, and AES encryption and SHA-1 / MD5 authentication. The network traffic over public Internet is secured ‧VPN Trunk VPN trunk function provides VPN load balance and VPN fail-over feature to keep the VPN connection more reliable ‧Content Filtering The security gateway can block network connection based on URL, Script (The Pop-up, Java Applet, cookies and Active X), P2P (eDonkey, Bit Torrent and WinMX), Instant Messaging (MSN, Yahoo Messenger, ICQ, QQ and Skype) and Download. If there are new updated version of P2P or IM software in client side, SG-1000 will detect the difference and update the Content Filtering pattern to renew the filtering mechanism ‧Policy-based Firewall The built-in policy-based firewall prevents many known hacker attack including SYN attack, ICMP flood, UDP flood, Ping of Death, etc. The access control function allowed only specified WAN or LAN users to use only allowed network services on specified time ‧QoS Network packets can be classified based on IP address, IP subnet and TCP/UDP port number and give guarantee and maximum bandwidth with three levels of priority ‧Authentication Web-based authentication allows users to be authenticated by web browser. User database can be configured on the devices or through external RADIUS server ‧WAN Backup The SG-1000 can monitor each WAN link status and automatically activate backup links when a failure is detected. The detection is based on the configurable target Internet addresses ‧Outbound Load Balancing The network sessions are assigned based on the user configurable load balancing mode, including “Auto”, “Round-Robin”, “By Traffic”, “By Session” and “By Packet”. User can also configure which IP or TCP/UDP type of traffic use which WAN port to connect ‧Multiple NAT Multiple NAT allows local port to set multiple subnet works and connect to the Internet through different WAN IP addresses
Ethernet: LAN: 1 x 10/100 Base-TX RJ-45, WAN: 2 x 10/100 Base-TX RJ-45 , DMZ: 1 x 10/100 Base-TX RJ-45 Management: Web Network Connection: Transparent, NAT, Multi-NAT Routing Mode: Static Route, RIPv2 Concurrent Sessions: 110,000 New session / second: 10,000 Email Capacity per Day: 120,000 Firewall Throughput: 100Mbps 3DES Throughput: 17Mbps Firewall: Policy-based Firewall rule with schedule, NAT/ NAPT, SPI Firewall VPN Function: PPTP server and client, IPSec, DES, 3DES and AES encrypting, SHA-1 / MD5 authentication algorithm, Remote access VPN (Client-to-Site) and Site to Site VPN, VPN trunk Content Filtering: URL Blocking, Blocks Popup, Java Applet, cookies and Active X, P2P Application Blocking, Instant Message Blocking, Download Blocking IDP: Anti-Virus for HTTP, FTP, P2P, IM, NetBIOS, Automatic or manual update virus and signature database, Anomaly: Syn Flood, UDP Flood, ICMP Flood and more, Pre-defined: Backdoor, DDoS, DoS, Exploit, NetBIOS and Spyware
Hlavní rysy: - Anti-Spam Filtering: Multiple defense layers: Multiple defense layers and Heuristics Analysis to block over 95% spam mail - Anti-Virus Protection: Built-in Clam virus scan engine can detect viruses, worms, and other threats from email transfer. - VPN Connectivity: The security gateway support PPTP server/client and IPSec VPN. With DES, 3DES and AES encryption and SHA-1 / MD5 authentication - VPN Trunk: VPN trunk function provides VPN load balance and VPN fail-over feature to keep the VPN connection more reliable - Content Filtering: The security gateway can block network connection based on URLs, Scripts (The Pop-up, Java Applet, cookies and Active X), P2P (eDonkey, Bit Torrent and WinMX), Instant Messaging (MSN, Yahoo Messenger, ICQ, QQ and Skype) and Download. If there are new updated version of P2P or IM software in client side, CS-1000 will detect the difference and update the Content Filtering pattern to renew the filtering mechanism - IDP: CS-1000 provides three kinds of the Signature to complete the intrusion detection system, user can select to configure Anomaly, Pre-defined and Custom - Anti-Virus for HTTP, FTP, P2P, IM, NetBIOS: The CS-1000 not only can provide Anti-virus feature for mail, it also can filter the virus from varied protocol. The virus pattern can be updated automatically or manually
Maximum Throughput 
Maximum Throughput 
JUNOS Software version tested 
