Datasheet
Page 1
Juniper Networks NetScreen-Hardware Security Client
The Juniper Networks NetScreen-Hardware Security Client, combined with NetScreen-Security
Manager, is Juniper’s most cost effective security solution for the xed telecommuter and small
remote ofce. It can easily be deployed and managed in large deployments with Juniper Network’s
Rapid Deployment capabilities, eliminating expensive staging steps. Using the same operating
system as all NetScreen rewall and VPN solutions, the NetScreen-Hardware Security Client is able
to provide the same level of protection as is found at the central sites.
Juniper Networks
NetScreen-Hardware Security Client
5 User or Plus
Maximum Performance and Capacity
(1)
ScreenOS version support ScreenOS 5.3
Firewall performance 50 Mbps
3DES performance 10 Mbps
Deep Inspection (DI) performance 50 Mbps
Concurrent sessions 1,000
New sessions/second 1,000
Policies 50
Interfaces 5 10/100 Base-T
Number of supported users 5 or unrestricted
Mode of Operation
Layer 2 mode (transparent mode)
(2)
No
Layer 3 mode (route and/or NAT mode) Yes
NAT (Network Address Translation) Yes
PAT (Port Address Translation) Yes
MIP/VIP Grouping Yes
Home/work zones Yes
Policy-based NAT Yes
Users supported 5 or unrestricted
IPSec pass thru in NAT mode 5 or unrestricted
Firewall
Number of network attacks detected 31
Network attack detection Yes
DoS and DDoS protections Yes
TCP reassembly for fragmented packet protection Yes
Malformed packet protections Yes
Deep Inspection (DI) firewall Yes
Protocol anomaly Yes
Stateful protocol signatures Yes
Deep Inspection (DI) signature packs (See table on page 2) Yes
Content Inspection Yes
Embedded antivirus Yes
Embedded Anti-Spam Yes
Malicious Web filtering Up to 48 URLs
External Web filtering (Websense or SurfControl) Yes
Integrated Web filtering Yes
Brute force attack mitigation Yes
Deep Inspection (DI) attack pattern obfuscation Yes
SYN cookie Yes
Zone-based IP spoofing Yes
Anti phishing
(3)
Yes
Spyware / Adware / Keylogger Protection
(4)
Yes
PKI Support
PKI certificate requests (PKCS 7 and PKCS 10) Yes
Automated certificate enrollment (SCEP) Yes
Online Certificate Status Protocol (OCSP) Yes
Self Signed Certificates Yes
Juniper Networks
NetScreen-Hardware Security Client
5 User or Plus
PKI Support
Certificate Authorities Supported
Verisign Yes
Entrust Yes
Microsoft Yes
RSA Keon Yes
iPlanet (Netscape) Yes
Baltimore Yes
DOD PKI Yes
VPN
Concurrent VPN tunnels 2
Tunnel interfaces 3
DES (56-bit), 3DES (168-bit) and AES encryption Yes
MD-5 and SHA-1 authentication Yes
Manual Key, IKE, PKI (X.509) Yes
Perfect forward secrecy (DH Groups) 1,2,5
Prevent replay attack Yes
Remote access VPN Yes
L2TP within IPSec Yes
Dead Peer Detection Yes
IPSec NAT traversal Yes
Redundant VPN gateways Yes
VPN tunnel monitor Yes
Antivirus/Anti-Spam
Embedded Scan Engine Yes
Embedded Anti-Spam Yes
Antivirus signatures >80,000
Protocols POP3, SMTP, HTTP, IMAP, FTP
HTTP Webmail only Yes
Maximum AV Users 5 or 25
Automated Pattern file updates Yes
Firewall and VPN User Authentication
Built-in (internal) database - user limit up to 100
3rd Party user authentication RADIUS, RSA
SecurID, and LDAP
XAUTH VPN authentication Yes
Web-based authentication Yes
Logging/Monitoring
Syslog (multiple servers) External, up to 4 servers
E-mail (2 addresses) Yes
NetIQ WebTrends External
SNMP (v1, v2) Yes
Standard and custom MIB Yes
Traceroute Yes
At session start and end Yes
Virtualization
Virtual Routers (VRs) 2
802.1Q VLan Tagging No
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals