Presentation is loading. Please wait.

Presentation is loading. Please wait.

Product Overview April 2009

Published byHilda Lynch Modified over 6 years ago

Similar presentations

Presentation on theme: "Product Overview April 2009"— Presentation transcript:

1 Product Overview April 2009
SRX 5600/5800 Services Gateway Product Overview April 2009

2 Market Dynamics Large Enterprise and Service Providers
Consolidation Hyper-consolidation of datacenters Server consolidation Performance requirements increasing at unexpected level Application and Service Deployments Rapid pace of new application deployments Sophistication of new application/services taxing underlying infrastructure

3 Example of performance requirements
Assumptions Single application = single connection Underlying Functionality Multiple connections are established to retried map segments Segments are then pieced together to form a whole map Infrastructure Requirements Must support multiple connections at once Network delays result in grey map areas until graphics are loaded Reality Google Map creates >20 connections per map request

4 Example of Mobile Network Requirements
Assumptions 3G devices follow the growth of standard networking Real-world Requirement US-based Service Provider Plan to support 74 Million 3G devices by 2009 Plan to support the network with 4 to 6 Datacenters The Math >12 Million 3G devices per Datacenter (best case) Each 3G devices supporting multiple sessions Reality Google Map on iPhone can require 24 Million Connections per Sec per Datacenter!

5 Business Challenges Performance and Service Integration Compromise
Traditional solutions based on performance/integration tradeoff Limited performance options Deploy more platforms Disable “expensive” features Limited integration options Deploy dedicated appliances Service Integration Performance

6 Managing Performance Requirements Single Lane to Swim lane
Inline solution unable to keep up Cannot support growth spikes High Connection Rate High Session Count Firewall Load-balanced or route spraying Configuration and management challenges Firewall

7 Managing Feature Integration Network Intelligence to Physical Consolidation
Provide stronger network intelligence Increasing Management Challenges Maintenance and support challenges Router Firewall IPS IPsec VPN NAT Physical consolidation of multiple appliances Similar challenges as multiple appliance deployments Potential bottleneck at various functional “cards”

8 Integration and Performance No-Compromise Solution
Scale performance and integration New service/application deployments Rapid time to market Tight integration between services Simple management Performance Integration

9 Today’s Architecture Challenge Scalability Options Chassis PC/Laptop
Each blade = separate appliance CPU and I/O limitation at blade level Fixed CPU and I/O on blades Flexible feature and performance Scalability Options Install more blades Chassis Cannot upgrade CPU Restrictive I/O Options Fixed CPU Dedicated HW Expansion I/O slots Install I/O cards Upgrade Memory Buy another router Appliance Limited CPU upgrades Limited memory expansion Upgrade CPU Buy a faster PC Fixed # of CPU Expansion slots PC/Laptop

10 Challenge Today’s Architecture
Each blade = separate appliance CPU and I/O limitation at blade level Fixed CPU and I/O on blades Flexible feature and performance Scalability Options Install more blades Chassis Cannot upgrade CPU Restrictive I/O Options Fixed CPU Dedicated HW Expansion I/O slots Install I/O cards Upgrade Memory Buy another router Appliance Limited CPU upgrades Limited memory expansion Upgrade CPU Buy a faster PC Fixed # of CPU Expansion slots PC/Laptop Why assume fixed CPU or fixed number of CPUs? Why assume fixed or limited expansion of I/O? Why guess on optimal CPU and I/O combination? Shouldn’t additional CPU result in a bigger CPU and not two CPUs? Why not let the customer decide?

11 Architectural Complexity: Barrier to Accelerating Service Deployment
Static “Services” Delivery Only MGMT 1 MGMT 2 MGMT 3 MGMT 4 MGMT 5 Routing Firewall IPS IPSec VPN NAT Router Firewall IPS IPsec VPN NAT OS 1 OS 2 OS 3 OS 4 OS 5 Resources Service architecture must dynamically scale in all dimensions

12 SRX Dynamic Services Gateway
SRX Services Gateway First in Family of JUNOS-based Dynamic Services Gateways Dynamic Services Consolidate Management Framework App Layer Forwarding Threat Prevention Access Control Routing Firewall IPS IPSec VPN NAT SRX Dynamic Services Gateway 12

13 Dynamic Services Architecture ™
Dedicated Control Plane Built-on Terabit Fabric Interchangeable I/O and processing cards Any service, any card Feature integration on JUNOS Fast time to market Tightest integration between features Carrier-class Reliability Service Integration via JUNOS ™ Dedicated Management Fabric FW IDP NAT VPN DoS QoS Interface Scalability Processing Scalability

14 Break the Performance/Integration Tradeoff
Services integration via JUNOS Processing scalability via SPC I/O scalability via IOC Management and deployment simplicity Firewall Limited Services Scalability via multiple appliances Management and deployment challenges Performance Services via dedicated appliances Management and deployment nightmare Router Firewall IPS IPsec VPN NAT Service Integration

15 No Compromise: Introducing Juniper Networks SRX Dynamic Services Gateway
World’s Fastest Firewall Integrated Services Scalable Performance Operational Simplicity Based on Dynamic services Architecture for accelerated new service deployment

16 Leader in all Categories
SRX Services Gateway Features First in the family of JUNOS-based services gateways Leader in all Categories Feature integration Security: FW, IDP, DoS Networking: HA, NAT, QoS, Routing, Virtual Routers Scalability Linear scale with incremental cards Superior OPEX Based on JUNOS Converged OS for Juniper FW 120 Gbps IDP 30 Gbps $68K Chassis Max SPC - 11 Max IOC - 11 FW 60 Gbps IDP 15 Gbps $65K Chassis Max SPC - 5 Max IOC - 5

17 SRX5600 Services Gateway Horizontal chassis system Interfaces
40-SFP 4-10Gig FlexIO 2 slot FPC 16xSFP, 16xCu, 4x10G modules Dimensions 8U chassis height Performance & Capacities FW – 60 Gbps IDP – 15 Gbps Concurrent sessions – 8M New and sustained cps – 350k

18 SRX5800 Services Gateway Vertical slot chassis system Interfaces
40-SFP 4-10Gig FlexIO 2 slot FPC 16xSFP, 16xCu, 4x10G modules Dimensions 16U chassis height Performance and Capacities FW – 120 Gbps IDP – 30 Gbps Concurrent sessions – 8M New and sustained cps – 350K

19 New - Introducing the FlexIOC
New, low cost, modular line I/O card Full width carrier, supports 2 pluggable port modules Minimum of 1 pluggable port module per carrier 16x1 (SFP, RJ45), 4x10 (XFP) Based on existing architecture Interoperable with current 40x1 and 4x10 IOCs 20Gbps max throughput Vs. 40Gbps for 4x10G or 40x1G IOCs Advantages Lower entry cost over current IOCs Larger session cache per NP 10/100/1000 Copper support Modularity Denser 10Gig ports (8 per slot, oversubscribed)

20 Note: 16xSPF port module not shown
FlexIOC 16x10/100/1000 4x10Gig XFP Note: 16xSPF port module not shown

21 SRX Services Gateway Configuration
Minimum Configuration 1 Chassis (SRX5600 or SRX5800) 1 SCB (included in chassis bundle) 1 RE (included in chassis bundle) 1 Service Processing Card 1 I/O Card Unique Customer Configuration Number of SPCs based on several factors FW Throughput FW & IDP Throughput Connections per Second Packets per Second Total Session Number of IOCs determined by Interface requirements Max 12 SPCs/IOCs supported on 5800 Max 6 SPCs/IOCs supported in 5600

22 Performance and Configuration
SRX5600 and SRX5800 SPC and Throughput Configuration 1 2 3 4 5 6 7 8 FW + IPS FW 10.0 30.0 50.0 70.0 90.0 110.0 130.0 150.0 1.8 5.3 8.8 12.3 15.8 19.3 22.8 26.3 0.0 20.0 40.0 60.0 80.0 100.0 120.0 140.0 160.0 Throughput (Gbps) SPCs More than 8 SPCs on SRX5800 would not leave sufficient slot for IOCs to achieve optimal throughput

23 Integrated Services Dynamic Services Architecture Differentiator
Juniper SRX Traditional Appliances Dedicated Control Plane Buildable Processing Pool Buildable I/O Pool Scalable Service Engine Single policy/configuration Single device to manage

24 Industry’s Highest Performance Firewall
3x FASTER 6x FASTER New Session Rate SRX Juniper Cisco FIREWALL SRX Juniper Cisco CheckPoint 75% SPACE SAVINGS 6x FASTER 50% POWER SAVINGS IDP SRX Juniper Cisco Checkpoint POWER USAGE SRX Cisco

25 Firewall Consolidation: Power Savings
95% SPACE SAVINGS SRX5600 60Gbps FW 8U High 2800 Watts 47W/Gbps 60x1Gbps FW 3Ux60 = 180U High 220x60=13,200Watts 220W/Gbps POWER USAGE 79% POWER SAVINGS SRX Small FW

26 SRX Dynamic Services Gateway
Up to 50% less power Unified Management One release train Application Visibility Up to 75% Space Savings Carrier-Class Reliability 6X Faster Firewall 6X Faster IDP

27 High-End Security Portfolio
10 Gbps 30 Gbps 50 Gbps 150 Gbps FW and Integrated Security Designed for enhanced perimeter and DC security Services Gateway Designed for integration and scalability Dynamic Services Architecture Terabit Fabric Technology Dynamic Processing Pool Dynamic I/O Pool JUNOS SW feature delivery ISG Series SRX5600 SRX5800 NetScreen Series SRX3400 SRX3600

28 JUNOS Future Direction Integrated security and networking on JUNOS
Continued leadership in security JUNOS Integrated security and networking on JUNOS Best-in-Class Security Continued leadership in networking Best-in-Class Routing

29 Juniper Networks Services and Support

30 Performance-Enabling Services
Accelerate Time to Value Manage Risks Fuel Growth Juniper’s performance-enabling services help you to achieve your business goals through accelerating, extending and optimizing the performance of your network. Control Costs Improve Operations Achieve Operational Excellence

31 Performance-Enabling Services & Support
Education Services Improve the productivity and self-sufficiency of your technical staff Education Services Technical Training and Certification Consulting Services Accelerate your network’s value with expert assistance Consulting Services Assessment and Analysis Design and Planning Project Implementation Installation and Configuration Services Startup Services Conversion Services Installation/Config Services Start your high-performance, high-value network rapidly, confidently Technical Services J-Care Technical Services Resident Engineer Main points: you can choose from different types of support and services to best complement your staff and situation Technical Services Protect your high-performance business investment through operational assistance 31

32 Installation and Configuration Services PLAN & DESIGN / OPTIMIZE
Services Portfolio Technical Services Installation and Configuration Services Consulting Services Education Services OPERATE IMPLEMENTATION PLAN & DESIGN / OPTIMIZE OPTIMIZE J-Care Essential Services J-Care Efficiency Services J-Care Continuity Services J-Care Agility Services Resident Engineer–Operations Resident Engineer—Design Startup Services Installation & Commissioning (Rack & Stack) Engineering Furnish and Installation Service (EF&I) QuickStarts (SSL, WX/WXC, FW Branch) Conversion Services Vendor Introduction Program (VIP) Juniper Enterprise Transition (JET) Assessment and Analysis Network Assessment & Risk Mitigation Security Assessment & Risk Mitigation Routing Policy Optimization Security Policy Optimization Access Control Policy Optimization Design and Planning Network Architecture & Design Project Implementation Switch Migrations Firewall Migrations Router Migrations Design Implementation Technical Certification JNCIS JNCIA JNCIP JNCIE Training Courses Juniper Delivered Training Information Additional details on services Technical Support J-Care Technical Support Technical Service Mgmt Resident Engineer Installation and Configuration Services Startup Services Conversion Services Consulting Services Assessment and Analysis Design and Planning Project Implementation Education Services Post Sales Technical Training and Certification 32

33 J-Care Technical Services Overview
Agility Services Provides the flexibility to adapt and evolve with business initiatives Continuity Services Focuses on high availability to increase network uptime Efficiency Services Designed to increase operational effectiveness and lower expenses Essential Services Protects high-performance networking investment NEED SPEAKER NOTES – Intro copy from each DS for each service product

34 J-Care Technical Services
Evolution & Adaptability Advanced Options Proactive Product Reports High Availability Service Management Desk Premium Service Management Desk Access to Insight JTAC Access to Insight JTAC Automated Incident Management Automated Incident Management Automated Incident Management Operational Efficiency Inventory Management Assistance Inventory Management Assistance Inventory Management Assistance Knowledge Transfer Knowledge Transfer Knowledge Transfer Essential care for your network J-Care Essential Services provide the operational assistance you need to protect your high-performance investment Increased operational efficiency The automated features of the Efficiency, Continuity and Agility Services increase staff productivity and lower operating expenses through reduced time identifying problems, troubleshooting and communicating with Technical Support Engineers Up-to-date inventory information detailing your network improves staff knowledge and productivity Higher availability Automation features allow for quicker time to resolution, resulting in higher uptime for your network Designated teams of Technical Support Engineers with advanced knowledge and capabilities result in even more rapid problem resolution Evolution and Adaptability Proactive services help avoid incidents and assure your network is fully optimized to meet your business and growth needs Optional services provide greater insight into your present and future networking environment Business Protection J-Care Essential Services Technical Support Technical Support Technical Support Technical Support J-Care Efficiency Services J-Care Continuity Services J-Care Agility Services

35 For complete details on our service offerings . . .
Juniper.net Consulting Services Education Services Installation and Configuration Services Technical Services

36 THANK YOU

Download ppt "Product Overview April 2009"

Similar presentations

Copyright © 2007 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 JUNIPER NETWORKS Moving up the Partner Program.

Copyright © 2007 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 JUNIPER NETWORKS Moving up the Partner Program.
Introducing Campus Networks

Introducing Campus Networks
Agenda Product Overview Hardware Interfaces Software Features

Agenda Product Overview Hardware Interfaces Software Features
MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.

MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.
Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.

Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.
SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.

SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.
Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.

Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.
Securing the Enterprise - new trends on networking security SCOP / Bucharest 15th April 2009 Uwe Richter Sr. SE Manager Eastern Europe The most flexible,

Securing the Enterprise - new trends on networking security SCOP / Bucharest 15th April 2009 Uwe Richter Sr. SE Manager Eastern Europe The most flexible,
VMware Virtualization Last Update 2014.02.06 2.0.0 1Copyright 2011-2014 Kenneth M. Chipps Ph.D. www.chipps.com.

VMware Virtualization Last Update Copyright Kenneth M. Chipps Ph.D.
Cisco and NetApp Confidential. Distributed under non-disclosure only. Name Date FlexPod Entry-level Solution FlexPod Value, Sized Right for Smaller Workloads.

Cisco and NetApp Confidential. Distributed under non-disclosure only. Name Date FlexPod Entry-level Solution FlexPod Value, Sized Right for Smaller Workloads.
MSIT 458: Information Security & Assurance By Curtis Pethley.

MSIT 458: Information Security & Assurance By Curtis Pethley.
Avaya Data Solutions for SME. ©2010 Avaya Inc. All rights reserved. 2 2 Avaya’s Unique Value Proposition  Up to 7X better resiliency  100% Call Completion.

Avaya Data Solutions for SME. ©2010 Avaya Inc. All rights reserved. 2 2 Avaya’s Unique Value Proposition  Up to 7X better resiliency  100% Call Completion.
Citrix Partner Update The Citrix Delivery Centre.

Citrix Partner Update The Citrix Delivery Centre.
MIGRATION FROM SCREENOS TO JUNOS based firewall

MIGRATION FROM SCREENOS TO JUNOS based firewall
Service Provisioning Service Provider Consulting Microsoft Consulting Services harvests the knowledge, experience, and tools established by designing and.

Service Provisioning Service Provider Consulting Microsoft Consulting Services harvests the knowledge, experience, and tools established by designing and.
1 © 2001, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Easy VPN Solutions Applications and Implementation with Cisco IOS.

1 © 2001, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Easy VPN Solutions Applications and Implementation with Cisco IOS.
Copyright Microsoft Corp. 2006 Ramnish Singh IT Advisor Microsoft Corporation Secure Remote Access Challenges, Choices, Best Practices.

Copyright Microsoft Corp Ramnish Singh IT Advisor Microsoft Corporation Secure Remote Access Challenges, Choices, Best Practices.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Confidential 1 MAP Value Proposition.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Confidential 1 MAP Value Proposition.
VPN for Sales Nokia FireWall-1 Products Complete Integrated Solution including: –CheckPoint FireWall-1 enterprise security suite –Interfaces installed.

VPN for Sales Nokia FireWall-1 Products Complete Integrated Solution including: –CheckPoint FireWall-1 enterprise security suite –Interfaces installed.
Bob Thome, Senior Director of Product Management, Oracle SIMPLIFYING YOUR HIGH AVAILABILITY DATABASE.

Bob Thome, Senior Director of Product Management, Oracle SIMPLIFYING YOUR HIGH AVAILABILITY DATABASE.

Similar presentations

Ads by Google