Skip to content

Products & Services

Firewall / IPSec VPN

Juniper Networks NetScreen-5200/NetScreen-5400

Firewall VPN Security with Netscreen-5000 series from Juniper Networks


    • Line of purpose-built, high-performance firewall/VPN security systems designed for large enterprise, carrier, and data center networks
    • Switch fabric for data exchange and separate multibus channel for control information
    • Virtualization capabilities to allow multiple customers or enterprise departments to be secured by a single security system
 

Overview

The Juniper Networks NetScreen-5000 series is a line of purpose-built, high-performance firewall/VPN security systems designed to deliver a new level of high-performance capabilities for large enterprise, carrier, and data center networks. The NetScreen-5000 series consists of two products: the 2-slot NetScreen-5200 system and the 4-slot NetScreen-5400 system. NetScreen-5000 security systems integrate firewall, VPN, DoS and DDoS protection, and traffic-management functionality, in a low-profile modular chassis. Built around Juniper's third-generation security ASIC and distributed system architecture, the NetScreen-5000 series offers excellent scalability and flexibility, while providing a higher level security system through Juniper Networks NetScreen ScreenOS custom operating system. Both products employ a switch fabric for data exchange and separate multibus channel for control information, delivering scalable performance for the most demanding environments.


 

Features and Benefits

Key features and benefits of the NetScreen-5000 security systems include the following:

  • Modular, chassis-based security systems that offer flexible and scalable solutions for large enterprises and carriers
  • Comprehensive high-availability solution for sub-second failover between interfaces or devices
  • Full mesh configurations to allow for redundant physical paths in the network, thereby providing maximum resiliency and uptime
  • Virtual System support to allow partitioning into multiple security domains, each with a unique set of administrators, policies, VPNs, and address books
  • Interface flexibility for varying network-connectivity requirements and future growth requirements
  • Virtual Router support to map internal, private, or overlapped IP addresses to a new IP address, providing an alternate route to the final destination and concealing it from public view
  • Customizable security zones to increase interface density without additional hardware expenditures, lower policy-creation costs, contain unauthorized users and attacks, and simplify management of firewall/VPNs
  • Transparent mode to allow the device to function as a Layer 2 IP security bridge, providing firewall, VPN, and DoS protections, with minimal change to the existing network
  • Management through graphical Web UI, CLI, or Juniper Networks NetScreen-Security Manager™ central management system
  • Policy-based management to allow centralized, end-to-end life-cycle management

 

Specifications

Features/Functionality NetScreen-5200 NetScreen-5400
Number of Interfaces 8 mini-GBIC (SX, LX or TX), or 2 XFP 10 Gig (SR or LR) 8 mini-GBIC (SX, LX or TX), or 2 XFP 10 Gig (SR or LR)
Maximum Number of IP Addresses in Trusted Interfaces Unrestricted Unrestricted
Maximum Throughput 10 Gbps FW
6 Gbps 3DES VPN		 30 Gbps FW
15 Gbps 3DES VPN
Maximum Number of Sessions 1,000,000 2,000,000*
Maximum Number of VPN Tunnels 25,000 25,000
Maximum Number of Policies 40,000 40,000
Maximum Number of Virtual Systems 0 default, upgradeable to 500 0 default, upgradeable to 500
Maximum Number of Virtual LANs 4094 4094
Maximum Number of Security Zones 16 default, upgradeable to 1,016 16 default, upgradeable to 1,016
Maximum Number of Virtual Routers 3 default, upgradeable to 503 3 default, upgradeable to 503
Routing Protocols Supported OSPF, BGP, RIPv1/v2 OSPF, BGP, RIPv1/v2
High-Availability Modes Supported Active/Passive
Active/Active
Active/Active Full Mesh		 Active/Passive
Active/Active
Active/Active Full Mesh
IPS (Deep Inspection FW) Yes Yes
Integrated / Redirect Web Filtering Yes Yes
* Requires minimally 2 Secure Port Modules (8G2-G4 or 2XGE-G4)

All product specifications can be found in the datasheet: Juniper Networks NetScreen 5000 Series682 KB


 

Demos

Managing Your Network Security

Take a tour of the NetScreen-Security Manager system to see how to manage Juniper Networks integrated FW/VPN devices. This demo shows how to use this centralized, rule-based management platform to manage every aspect of the device life cycle, including all device, network, and security functionality, through a single, user-friendly interface. This demo will also show how to accomplish some key activities, such as how to set up a device, create a security policy, configure a VPN, investigate security incidents, and pull reports. See how easy it is to manage network security with the NetScreen-Security Manager system efficiently completing security tasks. See the demo

High-end Firewall Selection Guide
Just answer these eight easy questions and we'll service up the high end firewall solution that is right for you. Provide us with your unique requirements and this selection guide will determine which of the four Juniper Networks high end firewalls, including the NS-5000 and ISG families, best fits your needs. You will also have an opportunity to refine your selection and review key product features.