Skip to content

Products & Services

Firewall / IPSec VPN

Juniper Networks NetScreen-204/NetScreen-208

image of Juniper NetScreen-204 Netscreen-208 Enterprise Intrusion Prevention appliances


    • Integrated security solutions designed for medium to large enterprise networks, offices, e-business sites, data centers, and carrier infrastructures
    • High-performance platform with excellent price/performance and superior features
    • Firewall attack protection on every interface, for secure internal and external networks
 

Overview

The Juniper Networks NetScreen-200 series includes two enterprise network products: the NetScreen-204 appliance with four 10/100 interfaces, and the NetScreen-208 appliance with eight 10/100 interfaces. Together, they are among the most versatile security appliances available today, easily integrating into many different environments, including medium to large enterprise networks, offices, e-business sites, data centers, and carrier infrastructures. Complete with either four or eight auto-sensing 10/100 Base-T Ethernet ports, the NetScreen-200 series performs firewall functions at wire speed (375 Mbps). Even the most computationally intense applications, such as 3DES and AES encryption, are performed at speeds up to 175 Mbps. In addition to physical interface density, the NetScreen-200 series optionally supports virtualization, including VLAN support and additional custom security zones and virtual routers.


 

Features and Benefits

Key features and benefits of the NetScreen-204 and NetScreen-208 appliances include the following:

  • Integrated solution with security-optimized hardware, operating system, and applications
  • High-performance platform with excellent price/performance and superior features
  • Comprehensive high-availability solution for sub-second failover between interfaces or devices
  • Customizable security zones to increase interface density without additional hardware expenditures
  • Integrated Deep Inspection firewall for application-level attack protection for Internet-facing protocols, applied on a per-policy basis
  • Redundant VPN gateways for an additional level of redundancy in a VPN network, by allowing backup tunnel definitions in the event of a lost VPN connection
  • Firewall attack protection on every interface, for a secure internal as well as external network
  • Transparent mode to allow the device to function as a Layer 2 IP security bridge, but with minimal change to the existing network
  • Management through graphical Web UI, CLI, or the NetScreen-Security Manager central management system
  • Policy-based management for centralized, end-to-end life-cycle management

 

Specifications

Advanced Feature/Capacity NetScreen-204 Advanced NetScreen-208 Advanced
Number of Interfaces 4 10/100 8 10/100
Maximum Number of IP Addresses in Trusted Interfaces Unrestricted Unrestricted
Maximum Throughput 375M FW
175M 3DES VPN		 375M FW
175M 3DES VPN
Maximum Number of Sessions 128,000 128,000
Maximum Number of VPN Tunnels 1000 1000
Maximum Number of Policies 4000 4000
Maximum Number of Virtual LANs 32 default, up to 96 additional 32 default, up to 96 additional
Maximum Number of Security Zones 4 default, up to 10 additional 8 default, up to 10 additional
Maximum Number of Virtual Routers 3 default, up to 5 additional 3 default, up to 5 additional
Routing Protocols Supported OSPF, BGP, RIPv1/v2 OSPF, BGP, RIPv1/v2
High-Availability Modes Supported Active/Passive
Active/Active		 Active/Passive
Active/Active
Active/Active Full Mesh
Routing Protocols Supported OSPF, BGP, RIPv1/v2 OSPF, BGP, RIPv1/v2
IPS (Deep Inspection FW) Yes Yes
Integrated / Redirect Web Filtering No / Yes No / Yes

The features and capacities described in the table above represent the Advanced licensing option for the NetScreen-204 and the NetScreen-208.

A Baseline software license is also available as an entry-level solution for customer environments where features such as Deep Inspection, OSPF and BGP dynamic routing, advanced High Availability, and full capacity are not critical requirements. The following table shows the Baseline features and capacities that are different from the Advanced models.

Baseline Feature/Capacity NetScreen-204 Baseline NetScreen-208 Baseline
Maximum Number of Sessions 64,000 64,000
Maximum Number of VPN Tunnels 500 500
Virtual LANs* Not Available Not Available
Routing Protocols Supported RIPv1/v2 Only RIPv1/v2 Only
High Availability (HA) Active/Passive Active/Passive
IPS (Deep Inspection FW) Not Available Not Available
Integrated / Redirect Web Filtering No / Yes No / Yes
NetScreen-Security Manager Supported Supported

* NetScreen-204/208 Baseline can be upgraded to support 96 VLANs, 5 additional virtual routers, and 10 additional security zones with purchase of a Virtualization Key.

All product specifications can be found in the datasheet: Juniper Networks NetScreen-204/NetScreen-20880 KB


 

Demos

Managing Your Network Security

Take a tour of the NetScreen-Security Manager system to see how to manage Juniper Networks integrated FW/VPN devices. This demo shows how to use this centralized, rule-based management platform to manage every aspect of the device life cycle, including all device, network, and security functionality, through a single, user-friendly interface. This demo will also show how to accomplish some key activities, such as how to set up a device, create a security policy, configure a VPN, investigate security incidents, and pull reports. See how easy it is to manage network security with the NetScreen-Security Manager system efficiently completing security tasks. See the demo