Juniper SRX5800BASE-AC

Juniper's award-winning SRX5800BASE-AC gateway is a superior next-generation security platform that supports up to 120Gbps firewalls, 30Gbps IPS, 350,000 new connections per second, and a record 10 million concurrent user sessions.

The SRX Series gateways are high-performance, network security solutions for enterprises and service providers. Their easy-to-manage platforms feature high port density, advanced security features, and flexible connectivity. The Juniper SRX5800BASE-AC Services Gateway, the market leader in security solutions, is a superior next-generation security platform based on a revolutionary architecture that delivers superior performance, scalability, and service integration. The award-winning Juniper SRX5800BASE-AC gateway supports up to 120 Gbps firewall throughput, 30 Gbps IPS, 350,000 new connections per second, and a record 10 million concurrent user sessions. The Juniper SRX5800BASE-AC gateway is ideal for protecting enterprise data centers, on-premises and leased data centers, and service provider network infrastructures. With service integration, flexible service processing, and I/O scalability, the Juniper SRX5800BASE-AC gateways ensure network security for large-scale data center consolidation, accelerated managed service deployment, and security aggregation. SRX branch gateways feature high-performance Content Security Acceleration hardware processing, support for Power over Ethernet (PoE) and Voice over IP (SIP) technology.

SRX5800BASE-AC Features:

Tested JUNOS version: Junos 10.2 Firewall Performance (Maximum): 120 Gbps IPS Performance (NSS 4.2.1) 30 Gbps AES256+SHA-1 / 3DES+SHA-1 VPN Performance 30 Gbps Maximum number of sessions 10 million Session creation speed (persistent, TCP, 3-way), per second 350,000 Maximum number of security policies 80,000 Maximum number of supported users Unlimited Maximum number of IOC card slots 11 Fixed I/O ports Not applicable Support CX111 3G Bridge Not applicable Internal connector for 3G Express card Not applicable LAN interfaces 40 x 1 Gigabit Ethernet SFP 4 x 10 Gigabit Ethernet (short range (SR) or long range (LR)) 16 x 10/100/1000 Ethernet FlexIOC 4 x 10 Gigabit Ethernet (SR or LR) FlexIOC Support for accessibility features Active/passive, active/active Chassis cluster maintenance with minimal service level degradation Interface aggregation groups in a chassis cluster AppSecure Services Application identification: yes Application protection against denial of service (AppDoS) attacks: yes AppTrack: yes Firewall Network-level attack detection: Yes DoS and DDoS protection: Yes TCP reassembly to protect fragmented packets: Yes Brute Force Attack Resistance: Yes SYN Cookie Protection: Yes IP address substitution in zones: Yes Malformed Packet Protection: Yes GPRS inspection with connection status monitoring: Yes

Intrusion protection system Stateful Protocol Signatures: Yes Attack Detection Mechanisms: Stateful Signatures, Protocol Abnormality Detection (mitigating attacks that exploit application vulnerabilities), Application Identification Attack response mechanisms: Connection reset, connection stop, session packet log, session summary report, email message, session setupAttack notification mechanisms: Structured system log Worm protection: Yes Inspection of SSL encrypted traffic: Yes Simplified installation using recommended policies: Yes Trojan protection: Yes Protection from spyware/adware and keyloggers: YesProtection from other malware: Yes Protection against continuous attacks from infected systems: Yes Probing protection: Yes Cross-Site Request Forgery Protection: Yes Distributed attacks - combination of signatures with connection monitoring and protocol anomaly detection: Yes Create your own attack signatures: Yes Access contexts for configuration: 500+ Changes to attack descriptions (port range, etc.): Yes Stream Signatures: Yes Protocol boundaries: Yes Stateful Protocol Signatures: Yes Approximate number of attacks reflected: 6,000+ Detailed description of threats and information about threat elimination/patches: Yes Create and enforce appropriate application usage policies: Yes Create reports and audit trails about attackers and attack targets: Yes Deployment modes: Embedded or TAP Dimensions and power supply Dimensions (L x W x H): 44.5 x 59.7 x 70.5 cm (17.5 x 23.5 x 27.8 in) Weight: Chassis: Full configuration: 151.6 kg Power module (AC): 200-240VAC Power module (DC): -40 – -60 VDC Maximum power consumption: 5100 W