Name: Juniper SRX100
Brand: Juniper
Rating: 4 (1 reviews)

To Next Page

To Previous Page

contrast to the typical router active/standby resiliency protocols

such as Virtual Router Redundancy Protocol (VRRP), all dynamic

flow and session information is lost and must be reestablished in

the event of a failover. Some or all applications sessions will have

to restart depending on the convergence time of the links or nodes.

By maintaining state, not only is the session preserved, but security

is intact. In an unstable network, this active/active configuration

also mitigates link flapping affecting session performance.

Session-Based Forwarding Without the Performance Hit

In order to optimize the throughput and latency of the combined

router and firewall, Junos OS implements session-based

forwarding, an innovation that combines the session state

information of a traditional firewall and the next-hop forwarding

of a classic router into a single operation. With Junos OS, a

session that is permitted by the forwarding policy is added to

the forwarding table along with a pointer to the next-hop route.

Established sessions have a single table lookup to verify that the

session has been permitted and to find the next hop. This efficient

algorithm improves throughput and lowers latency for session

traffic when compared with a classic router that performs multiple

table lookups to verify session information and then to find a next-

hop route.

Figure 3 shows the session-based forwarding algorithm. When a

new session is established, the session-based architecture within

Junos OS verifies that the session is allowed by the forwarding

policies. If the session is allowed, Junos OS will look up the next-

hop route in the routing table. It then inserts the session and the

next-hop route into the session and forwarding table and forwards

the packet. Subsequent packets for the established session

require a single table lookup in the session and forwarding table,

and are forwarded to the egress interface.

Figure 3: Session-based forwarding algorithm

Security Policy Evaluation

and Next-Hop Lookup

Forwarding for

Permitted Trac

Ingress

Interface

Session Initial

Packet Processing

Table

Update

Disallowed by

Policy: Dropped

Egress

Interface

Session and

Forwarding Table

PSTN

Service Provider

SIP Soswitch

Service Provider

SIP Soswitch

PSTN

SRX210

J2350

POPPOPPOP

Clear channel T-1

Data (B8ZS)

Channelized T-1

Voice (AMI)

PBX

EX4200-24T

LARGE OFFICE

HEAD QUARTERS BRANCH BRANCH

J4350

EX4200 EX3200

Fax Fax

EX3200-24P

FIXED MOBILE SITE

(Mobile – 3G)

SMALL OFFICE

Cellular

Wireless

DSL

SRX210

Mobile

SRX210

INTERNET

J6350

Figure 4: The distributed enterprise

Other manuals for Juniper SRX100

Quick Start6 pages

Hardware Guide154 pages

Quick Start Guide2 pages

Questions and Answers:

Need help?

Do you have a question about the Juniper SRX100 and is the answer not in the manual?

Juniper SRX100 Specifications

General

Routing protocols	BGP, IS-IS, MPLS, OSPF
Switching protocols	VLAN 802.1Q, 802.3ad/LACP, STP
Supported network protocols	IPv4, IPv6, CLNS
Firewall security	Yes
Security algorithms	3DES, DES
Authentication method	RADIUS, RSA SecureID, LDAP
VPN support	IPsec VPN
Data transfer rate	0.1 Gbit/s
Input voltage	100 - 240 V
Input frequency	50/60 Hz
Heat dissipation	35 BTU/h
Power requirements	100-240, 50/60
Power over Ethernet (PoE)	No
Power consumption (typical)	30 W
Safety	UL 60950-1, CSA 60950-1, AS / NZS 60950-1, AS / NZS 60950-1, CB Scheme, EN 60950-1
Certification	FCC Class B ICES class B AS / NZS CISPR22 Class B AS / NZS CISPR22 Class B VCCI Class B EN 55022 Class B, EN 300386
Mounting type	Rack mounting
Internal memory	1024 MB
Storage temperature (T-T)	-20 - 70 °C
Operating temperature (T-T)	0 - 40 °C