Juniper HSC 5-User w/UK power supply NS-HSC-003-AV Ficha De Dados

Datasheet

Page 

Juniper Networks NetScreen-Hardware Security Client

The Juniper Networks NetScreen-Hardware Security Client, combined with NetScreen-Security 
Manager, is Juniper’s most cost effective security solution for the fixed telecommuter and small 
remote office. It can easily be deployed and managed in large deployments with Juniper Network’s 
Rapid Deployment capabilities, eliminating expensive staging steps. Using the same operating 
system as all NetScreen firewall and VPN solutions, the NetScreen-Hardware Security Client is able 
to provide the same level of protection as is found at the central sites. 

 ScreenOS version support

ScreenOS 5.3

 Firewall performance

50 Mbps

 3DES performance

10 Mbps

 Deep Inspection (DI) performance

50 Mbps

 Concurrent sessions

1,000

 New sessions/second

1,000

 Policies

50

 Interfaces

5 10/100 Base-T

 Number of supported users

5 or unrestricted

 Layer 2 mode (transparent mode)

(2)

No

 Layer 3 mode (route and/or NAT mode)

Yes

 NAT (Network Address Translation)

Yes

 PAT (Port Address Translation)

Yes

 MIP/VIP Grouping

Yes

 Home/work zones

Yes

 Policy-based NAT

Yes

 Users supported

5 or unrestricted

 IPSec pass thru in NAT mode

5 or unrestricted

 Number of network attacks detected

31

   Network attack detection

Yes

   DoS and DDoS protections

Yes

   TCP reassembly for fragmented packet protection

Yes

   Malformed packet protections

Yes

   Deep Inspection (DI) firewall

Yes

   Protocol anomaly

Yes

   Stateful protocol signatures

Yes

   Deep Inspection (DI) signature packs (See table on page 2)

Yes

 Content Inspection

Yes

   Embedded antivirus

Yes

   Embedded Anti-Spam

Yes

   Malicious Web filtering

Up to 48 URLs

   External Web filtering (Websense or SurfControl)

Yes

   Integrated Web filtering

Yes

   Brute force attack mitigation

Yes

   Deep Inspection (DI) attack pattern obfuscation

Yes

   SYN cookie

Yes

   Zone-based IP spoofing

Yes

 Anti phishing

(3)

Yes

 Spyware / Adware / Keylogger Protection

(4)

Yes

 PKI certificate requests (PKCS 7 and PKCS 10)

Yes

 Automated certificate enrollment (SCEP)

Yes

 Online Certificate Status Protocol (OCSP)

Yes

 Self Signed Certificates

Yes

Certificate Authorities Supported
   Verisign

Yes

   Entrust

Yes

   Microsoft

Yes

   RSA Keon

Yes

   iPlanet (Netscape)

Yes

   Baltimore

Yes

   DOD PKI

Yes

 Concurrent VPN tunnels

2

 Tunnel interfaces

3

 DES (56-bit), 3DES (168-bit) and AES encryption

Yes

 MD-5 and SHA-1 authentication

Yes

 Manual Key, IKE, PKI (X.509)

Yes

 Perfect forward secrecy (DH Groups)

1,2,5

 Prevent replay attack

Yes

 Remote access VPN

Yes

 L2TP within IPSec

Yes

 Dead Peer Detection

Yes

 IPSec NAT traversal

Yes

 Redundant VPN gateways

Yes

 VPN tunnel monitor

Yes

 Embedded Scan Engine

Yes

 Embedded Anti-Spam

Yes

 Antivirus signatures

>80,000

 Protocols

POP3, SMTP, HTTP, IMAP, FTP

   HTTP Webmail only

Yes

 Maximum AV Users

5 or 25

 Automated Pattern file updates

Yes

 Built-in (internal) database - user limit

up to 100

 3rd Party user authentication

RADIUS, RSA

   

SecurID, and LDAP

 XAUTH VPN authentication

Yes

 Web-based authentication

Yes

 Syslog (multiple servers)

External, up to 4 servers

 E-mail (2 addresses)

Yes

 NetIQ WebTrends

External

 SNMP (v1, v2)

Yes

 Standard and custom MIB

Yes

 Traceroute

Yes

 At session start and end

Yes

 Virtual Routers (VRs)

2

 802.1Q VLan Tagging

No