Межсетевой экран Juniper NS-ISG-1000-DC

Технические характеристики Juniper NS-ISG-1000-DC: NS-ISG 1000 Advanced System, 4-10/100/1000 ports, Fan Tray, 0 I/O modules, DC power supply, 0 VSYS General Information Manufacturer: Juniper Product ID: NS-ISG-1000-DC Product Description: NS-ISG 1000 Advanced System, 410/100/1000 ports, Fan Tray, 0 I/O modules, DC power supply, 0 VSYS Product Type: Network Security/Firewall Appliance Marketing Information The Juniper Networks Integrated Security Gateway 1000 is purpose-built security solution that leverage a fourth generation security ASIC, the GigaScreen, along with high speed microprocessors to deliver unmatched firewall and VPN performance. The Juniper Networks ISG 1000 is ideally suited for securing enterprise, carrier and data center environments where advanced applications such as VoIP and streaming media dictate consistent, scalable performance. Integrating best-in-class Deep Inspection firewall, VPN and DoS solutions, the ISG 1000 enable secure, reliable connectivity along with network and application-level protection for critical, high traffic network segments. Technical Information Virtualization: 250000 x Concurrent Session 20000 x Concurrent Session 10000 x Policies 2000 x Concurrent VPN Tunnel 512 x Tunnel Interface 20 x Security Zone Firewall Protection: Network Attack Detection Distributed Denial of Service (DDoS) Denial of Service (DoS) TCP Reassembly for Fragmented Packet Protection Malformed Packet Attack Deep Inspection Firewall Stateful Protocol Signature Web Filtering Replay Attack Prevention VPN Authentication Encryption Standard: DES 3DES (168-bit) AES Interfaces/Ports Total Number of Ports: 4 Network & Communication Ethernet Technology: Fast Ethernet Network Standard: 10/100/1000Base-T I/O Expansions Number of Total Expansion Slots: 4 Physical Characteristics Form Factor: Rack-mountable Height: 5.3" Width: 17.5" Depth: 17.3" Weight (Approximate): 30 lb Miscellaneous Additional Information: Two I/O modules for interface expansion Two security modules for IDP integration Rack mountable: 23" optional MTBF (Bellcore model): 7.6 years Mode of Operation: Layer 2 mode (transparent mode) Layer 3 mode (route and/or NAT mode) Policy-based NAT Mapped IP: 4096 Virtual IP: 8 Routing: OSPF/BGP dynamic routing: Up to 8 instances each RIP v1, RIP v2 dynamic routing: Up to 12 instances supported BGP dynamic routing: 64 instances, 128 peers Static routes: 10000 Source-based routing ECMP flow based routing High Availability: Active/Active Active/Passive Redundant interfaces Configuration synchronization Session synchronization for firewall and VPN Session failover for routing change Device failure detection Link failure detection Authentication for new HA members Encryption of HA traffic IP Address Assignment: Static DHCP client Internal DHCP server DHCP relay Certificate Authorities Supported: Verisign Entrust Microsoft RSA Keon iPlanet (Netscape) Baltimore DOD PKI External Flash: CompactFlash: Supports 128 or 512 MB Industrial-Grade SanDisk System config script Certifications & Standards: Safety Certifications: UL CUL CSA CB EMC Certifications: FCC class A CE class A C-Tick VCCI class A IEEE: IEEE 802.3 IEEE 802.3u IEEE 802.3ab IEEE 802.1Q Шлюз Juniper ISG1000 является полностью интегрированной системой для решения задач межсетевого экранирования, VPN-туннелирования и предотвращения вторжений. Его отличительными чертами являются поддержка мультигигабитных скоростей, модульная архитектура и широкие возможности для виртуализации. Пропускная способность шлюза для межсетевого экранирования составляет до 2 Гбит/с, а для дополнительной функции интегрированного обнаружения и предотвращения вторжений - до 1 Гбит/с. Базовая система для межсетевого экранирования/VPN-туннелирования оснащена четырьмя интерфейсами 10/100/1000 и двумя дополнительными модулями ввода/вывода для расширения интерфейса.