Juniper SSG 20 SSG-20-SH Ficha De Dados
Códigos do produto
SSG-20-SH
2
Features and Benefits
Feature
Feature Description
Benefit
High performance
Purpose-built platform is assembled from custom-built
hardware, powerful processing and a security-specific
operating system.
hardware, powerful processing and a security-specific
operating system.
Delivers performance headroom required to protect against
internal and external attacks now and into the future.
internal and external attacks now and into the future.
Best-in-class UTM security features
UTM security features (antivirus, anti-spam, Web
filtering, IPS) stop all manner of viruses and malware
before they damage the network.
filtering, IPS) stop all manner of viruses and malware
before they damage the network.
Ensures that the network is protected against all manner
of attacks.
of attacks.
Integrated antivirus
Annually licensed antivirus engine is based on
Kaspersky Lab engine.
Kaspersky Lab engine.
Stops viruses, spyware, adware and other malware.
Integrated anti-spam
Annually licensed anti-spam offering is based on
Symantec technology.
Symantec technology.
Blocks unwanted email from known spammers and phishers.
Integrated Web filtering
Annually licensed Web filtering solution is based on
SurfControl’s technology.
SurfControl’s technology.
Controls/blocks access to malicious Web sites.
Integrated IPS (Deep Inspection)
Annually licensed IPS engine.
Prevents application-level attacks from flooding the network.
Fixed Interfaces
Seven fixed 10/100 interfaces on the SSG 5, and five
fixed 10/100 interfaces on the SSG 20. The SSG 5
is factory configured with either RS232 Serial/AUX or
ISDN BRI S/T or V.92 fixed WAN backup. Both models
include one console port and one auxiliary port.
fixed 10/100 interfaces on the SSG 20. The SSG 5
is factory configured with either RS232 Serial/AUX or
ISDN BRI S/T or V.92 fixed WAN backup. Both models
include one console port and one auxiliary port.
Provides high-speed LAN connectivity, redundant WAN
connectivity and flexible management.
connectivity and flexible management.
Network segmentation
Security zones, virtual LANs and virtual routers allow
administrators to deploy security policies to isolate
guests, wireless networks and regional servers or
databases.
administrators to deploy security policies to isolate
guests, wireless networks and regional servers or
databases.
Facilitates deployment of internal security to prevent
unauthorized access, contain attacks and assist in achieving
regulatory compliance.
unauthorized access, contain attacks and assist in achieving
regulatory compliance.
Interface modularity
Two interface expansion slots (SSG 20 only)
supporting optional ADSL 2+, T1, E1, ISDN BRI S/T,
Serial, SFP and v.92 Mini physical interface modules
(Mini-PIMs).*
supporting optional ADSL 2+, T1, E1, ISDN BRI S/T,
Serial, SFP and v.92 Mini physical interface modules
(Mini-PIMs).*
Delivers combination of LAN and WAN connectivity on top of
unmatched security to reduce costs and extend investment
protection.
unmatched security to reduce costs and extend investment
protection.
Robust routing engine
Proven routing engine supports OSPF, BGP, and
RIP v1/2.
RIP v1/2.
Enables the deployment of a consolidated security and routing
device, thereby lowering operational and capital expenditures
device, thereby lowering operational and capital expenditures
802.11 a/b/g wireless-specific
security features
security features
Wireless-specific privacy and authentication features
augment the UTM security capabilities to protect
wireless traffic.
augment the UTM security capabilities to protect
wireless traffic.
Provides additional device consolidation opportunities (WLAN
access point, security, routing) for small office environment.
access point, security, routing) for small office environment.
Juniper Networks Unified Access
Control enforcement point
Control enforcement point
Interacts with the centralized policy management
engine (Infranet Controller) to enforce session-specific
access control policies using criteria such as user
identity, device security state and network location.
engine (Infranet Controller) to enforce session-specific
access control policies using criteria such as user
identity, device security state and network location.
Improves security posture in a cost-effective manner
by leveraging existing customer network infrastructure
components and best-in-class technology.
by leveraging existing customer network infrastructure
components and best-in-class technology.
Management flexibility
Use any one of three mechanisms, command line
interface (CLI), WebUI or NetScreen-Security Manager to
securely deploy, monitor and manage security policies.
interface (CLI), WebUI or NetScreen-Security Manager to
securely deploy, monitor and manage security policies.
Enables management access from any location, eliminating
onsite visits thereby improving response time and reducing
operational costs.
onsite visits thereby improving response time and reducing
operational costs.
World-class professional services
From simple lab testing to major network
implementations, Juniper Networks Professional
Services will collaborate with your team to identify
goals, define the deployment process, create or validate
the network design and manage the deployment.
implementations, Juniper Networks Professional
Services will collaborate with your team to identify
goals, define the deployment process, create or validate
the network design and manage the deployment.
Transforms the network infrastructure to ensure that it is
secure, flexible, scalable and reliable.
secure, flexible, scalable and reliable.
Product Options
Option
Option Description
Applicable Products
DRAM
The SSG 5 and SSG 20 are available with either
128 MB or 256 MB of DRAM.
128 MB or 256 MB of DRAM.
SSG 5 and SSG 20
Unified Threat Management/Content
Security (high memory option
required)
Security (high memory option
required)
The SSG 5 and SSG 20 can be configured with any
combination of the following best-in-class UTM and
content security functionality: antivirus (includes anti-
spyware, anti-phishing), IPS (Deep Inspection), Web
filtering and/or anti-spam.
combination of the following best-in-class UTM and
content security functionality: antivirus (includes anti-
spyware, anti-phishing), IPS (Deep Inspection), Web
filtering and/or anti-spam.
High memory SSG 5 or SSG 20 only
I/O options
Two interface expansion slots (SSG 20 only)
supporting optional ADSL 2+, T1, E1, ISDN BRI S/T,
Serial, SFP and v.92 Mini physical interface modules
(Mini-PIMs).
supporting optional ADSL 2+, T1, E1, ISDN BRI S/T,
Serial, SFP and v.92 Mini physical interface modules
(Mini-PIMs).
SSG 5 and SSG 20
802.11 a/b/g connectivity
The SSG 5 and SSG 20 can be factory configured for
802.11 a/b/g wireless LAN connectivity.
802.11 a/b/g wireless LAN connectivity.
SSG 5 and SSG 20
Extended license
Key capacities can be increased (sessions, VPN
tunnels, VLANs) and stateful High Availability (HA)
support for firewall and VPN can be added.
tunnels, VLANs) and stateful High Availability (HA)
support for firewall and VPN can be added.
SSG 5 and SSG 20
*Serial and SFP Mini-PIMs only supported in ScreenOS 6.0 or greater releases