Juniper SRX1500
Juniper's Connected Security Distributed Services Architecture, managed by Juniper Security Director Cloud, offers a high-performance, scalable, and easy-to-manage firewall solution to secure today’s distributed data centers.
Juniper's Connected Security Distributed Services Architecture, managed by Juniper Security Director Cloud, offers a high-performance, scalable, and easy-to-manage firewall solution to secure today’s distributed data centers.
The Juniper Networks® SRX1500 is a high-performance next-generation firewall and security services gateway that protects mission-critical networks at campuses, and regional headquarters, and large branch offices. The SRX1500 provides best-in-class security, threat detection, and mitigation capabilities, integrating carrier-class routing and feature-rich switching in a single platform.
The SRX1500 delivers a next-generation security solution that supports the changing needs of cloud-enabled enterprise networks. Whether rolling out new services in an enterprise campus, connecting to the cloud, complying with industry standards, or achieving operational efficiency, the SRX1500 helps organizations realize their business objectives while providing scalable, easy-to-manage, secure connectivity and advanced threat detection and mitigation capabilities. The SRX1500 protects critical corporate assets as a next-generation firewall, acts as an enforcement point for cloud-based security solutions, and provides application visibility and control to improve the user and application experience.
Hardware and software architectures on the SRX1500 provides significant performance improvements to a small 1 U form factor. The key to the SRX1500 hardware is the security flow accelerator, a programmable high-speed Layer 4 firewall chip, and a robust x86-based security compute engine for advanced security services like application visibility, intrusion prevention, and threat mitigation capabilities. The SRX1500 software architecture leverages these programmable hardware components and virtualization to deliver high-speed firewall performance, application visibility, and intrusion prevention while lowering the total cost of ownership (TCO).
The SRX1500 is purpose-built to protect 10GbE network environments, consolidating multiple security services and networking functions in a highly available appliance. It supports up to 9.2 Gbps of firewall performance, 3.3 Gbps of intrusion prevention, and 4.5 Gbps of IPsec VPN in enterprise campus, regional headquarters, and large branch deployments.
Advanced Threat Prevention: Our rich suite of security capabilities adjusts dynamically to network conditions, providing malware sandboxing, threat intelligence feeds, and an Encrypted Traffic Insights feature that detects malware hidden in SSL-encrypted traffic.
Next-Generation Firewall: Detect and mitigate threats using software-enabled NGFW features, including an intrusion prevention system (IPS), application security (AppSecure), user identity services, and role-based access control (RBAC). For content security, the firewall supports integrated network antivirus, antispam, and enhanced web filtering capabilities.
Secure SD-WAN: Unify control of WAN connections across multiple network interfaces while managing and securing MPLS, Internet broadband, and 4G LTE and 5G links.
EVPN-VXLAN: EVPN-VXLAN (EVPN Type 5 route) configuration supported across all Juniper SRX Series Firewalls embeds security across the entire EVPN-VXLAN fabric, everywhere your workloads are.
AI-Predictive Threat Prevention: AI-Predictive Threat Prevention feature keeps known and zero-day threats off the network at line rate for the entire attack lifecycle—not just for 24 hours—helping your network stay safe from initial and subsequent attacks.
Fault Tolerance: Redundant hardware and components, such as power supplies, combine with resilient network and system processes in Junos operating system software to deliver high availability.
Total Onboard ports | 16x1GbE and 4x10GbE |
Onboard RJ-45 ports | 12x1GbE |
Onboard small form-factor pluggable plus (SFP+) transceiver ports | 4 x 1 GbE |
Out-of-Band (OOB) management ports | 1 x 1 GbE G (RJ-45) |
Dedicated high availability (HA) ports 2 x 1 GbE SFPDedicated high availability (HA) | ports 2 x 1 GbE SFP |
Console | 1 (RJ-45) |
USB 3.0 ports (Type A) | 1 |
System memory (RAM) | 16 GB |
Primary boot storage (mSATA) | 16 GB |
Storage (SSD) | 1 x 100 GB |
Form factor | 1U |
Size (W x H x D) | 17.28 x 1.74 x 18.20 in |
Weight (device and PSU) | 16.1 lb (7.30 kg) |
Redundant PSU | 1+1 |
Power supply | AC |
Average heat dissipation | 512 BTU / hour |
Maximum current consumption | 2.5A (for AC PSU); 6.2A (for DC PSU) |
Maximum inrush current | 50 A for 1 cycle of AC |
Acoustic noise level | 66.5dBA |
Airflow/cooling | Front to back |
Operating temperature | 32° to 104° F (0° to 40° C at 6000 ft altitude) |
Nonoperating temperature | 4° to 158° F (-20° to 70° C) |
Operating humidity | 5% to 90% non-condensing |
Meantime between failures (MTBF) Over | 100,000 hours (12 years) |
FCC classification | Class A |
RoHS compliance | RoHS 2 |
Firewall (IMIX packet size) throughput Gbps | 4.8 |
Firewall (1518B packet size) throughput Gbps | 9.2 |
IPsec VPN (IMIX packet size) throughput Gbps | 1.3 |
IPsec VPN (1400B packet size) throughput Gbps | 4.5 |
Application security performance in Gbps (TPS/CPS) | 21.5 Gbps/5.3 Gbps |
IPS recommended in Gbps (TPS/CPS) | 21 Gbps/2.75 Gbps |
Next-generation firewall in Gbps (TPS/CPS) | 21 Gbps/2.75 Gbps |
Secure Web Access Firewall in Gbps (TPS) | 2.5 Gbps |
Advanced Threat in Gbps (CPS) | 1.3 Gbps |
Connections per second (64B) | 95,000 |
Maximum security policies | 16,000 |
Maximum concurrent sessions (IPv4 or IPv6) | 2 Million |
Route table size (RIB/FIB) (IPv4) | 2 Million/1 Million |
IPsec VPN tunnels | 2,000 |
Number of remote access/SSL VPN (concurrent) users | 2,000 |
Max VLANs | 4,096 |
GRE Tunnels | 2,000 |
Maximum Security Zones | 512 |
Maximum Virtual Routers | 512 |
NAT Rules | 8,000 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|