Juniper HSC Plus Unrestricted User w/US Power Supply NS-HSC-101 Fiche De Données
Codes de produits
NS-HSC-101
Datasheet
Page
Juniper Networks NetScreen-Hardware Security Client
The Juniper Networks NetScreen-Hardware Security Client, combined with NetScreen-Security
Manager, is Juniper’s most cost effective security solution for the fixed telecommuter and small
remote office. It can easily be deployed and managed in large deployments with Juniper Network’s
Rapid Deployment capabilities, eliminating expensive staging steps. Using the same operating
system as all NetScreen firewall and VPN solutions, the NetScreen-Hardware Security Client is able
to provide the same level of protection as is found at the central sites.
Manager, is Juniper’s most cost effective security solution for the fixed telecommuter and small
remote office. It can easily be deployed and managed in large deployments with Juniper Network’s
Rapid Deployment capabilities, eliminating expensive staging steps. Using the same operating
system as all NetScreen firewall and VPN solutions, the NetScreen-Hardware Security Client is able
to provide the same level of protection as is found at the central sites.
Juniper Networks
NetScreen-Hardware Security Client
5 User or Plus
Maximum Performance and Capacity
(1)
ScreenOS version support
ScreenOS 5.3
Firewall performance
50 Mbps
3DES performance
10 Mbps
Deep Inspection (DI) performance
50 Mbps
Concurrent sessions
1,000
New sessions/second
1,000
Policies
50
Interfaces
5 10/100 Base-T
Number of supported users
5 or unrestricted
Mode of Operation
Layer 2 mode (transparent mode)
(2)
No
Layer 3 mode (route and/or NAT mode)
Yes
NAT (Network Address Translation)
Yes
PAT (Port Address Translation)
Yes
MIP/VIP Grouping
Yes
Home/work zones
Yes
Policy-based NAT
Yes
Users supported
5 or unrestricted
IPSec pass thru in NAT mode
5 or unrestricted
Firewall
Number of network attacks detected
31
Network attack detection
Yes
DoS and DDoS protections
Yes
TCP reassembly for fragmented packet protection
Yes
Malformed packet protections
Yes
Deep Inspection (DI) firewall
Yes
Protocol anomaly
Yes
Stateful protocol signatures
Yes
Deep Inspection (DI) signature packs (See table on page 2)
Yes
Content Inspection
Yes
Embedded antivirus
Yes
Embedded Anti-Spam
Yes
Malicious Web filtering
Up to 48 URLs
External Web filtering (Websense or SurfControl)
Yes
Integrated Web filtering
Yes
Brute force attack mitigation
Yes
Deep Inspection (DI) attack pattern obfuscation
Yes
SYN cookie
Yes
Zone-based IP spoofing
Yes
Anti phishing
(3)
Yes
Spyware / Adware / Keylogger Protection
(4)
Yes
PKI Support
PKI certificate requests (PKCS 7 and PKCS 10)
Yes
Automated certificate enrollment (SCEP)
Yes
Online Certificate Status Protocol (OCSP)
Yes
Self Signed Certificates
Yes
Juniper Networks
NetScreen-Hardware Security Client
5 User or Plus
PKI Support
Certificate Authorities Supported
Verisign
Verisign
Yes
Entrust
Yes
Microsoft
Yes
RSA Keon
Yes
iPlanet (Netscape)
Yes
Baltimore
Yes
DOD PKI
Yes
VPN
Concurrent VPN tunnels
2
Tunnel interfaces
3
DES (56-bit), 3DES (168-bit) and AES encryption
Yes
MD-5 and SHA-1 authentication
Yes
Manual Key, IKE, PKI (X.509)
Yes
Perfect forward secrecy (DH Groups)
1,2,5
Prevent replay attack
Yes
Remote access VPN
Yes
L2TP within IPSec
Yes
Dead Peer Detection
Yes
IPSec NAT traversal
Yes
Redundant VPN gateways
Yes
VPN tunnel monitor
Yes
Antivirus/Anti-Spam
Embedded Scan Engine
Yes
Embedded Anti-Spam
Yes
Antivirus signatures
>80,000
Protocols
POP3, SMTP, HTTP, IMAP, FTP
HTTP Webmail only
Yes
Maximum AV Users
5 or 25
Automated Pattern file updates
Yes
Firewall and VPN User Authentication
Built-in (internal) database - user limit
up to 100
3rd Party user authentication
RADIUS, RSA
SecurID, and LDAP
XAUTH VPN authentication
Yes
Web-based authentication
Yes
Logging/Monitoring
Syslog (multiple servers)
External, up to 4 servers
E-mail (2 addresses)
Yes
NetIQ WebTrends
External
SNMP (v1, v2)
Yes
Standard and custom MIB
Yes
Traceroute
Yes
At session start and end
Yes
Virtualization
Virtual Routers (VRs)
2
802.1Q VLan Tagging
No