Description
Features
Full-Featured Firewall
Provides comprehensive next-generation firewall capabilities in a compact footprint.
Small Footprint
Lightweight and portable, the cSRX software image size is just a few hundred megabytes, making it easy to port across cloud-native hosts.
Container-Speed Security
Supports quick boot time; once container resources are available, the cSRX is able to instantiate in less than a minute to secure workloads.
Next-Generation Firewall
Detect and mitigate threats through software-enabled next-generation firewall (NGFW) features, including intrusion prevention system (IPS), application security (AppSecure), user ID and role-based access controls, and content security (network anti-virus, anti-spam, and enhanced Web filtering).
SDN Support
Integrates with the Juniper Contrail software-defined networking (SDN) management platform, OpenStack cloud computing platform, and third-party SDN solutions.
Cloud-Native Security
Delivers microsegmentation, encryption, and security at Layers 4–7 for cloud-native applications when paired with Juniper Contrail Enterprise Multicloud.
Overview
The cSRX Container Firewall protects containerized applications and environments with advanced security services, including content security and intrusion prevention system (IPS). Purpose-built for containers, the cSRX next-generation firewall can be spun up or down in less than a second for the agility needed to manage transitory container environments like Kubernetes.
Whether you’re using a physical, virtual, or containerized firewall, Juniper delivers comprehensive visibility from edge to cloud; the cSRX adds visibility into securing applications that run in your containers. You can deploy security policies that limit access to specific applications, while intrusion prevention protects applications not easily patched. To safeguard applications from east-west traffic, the cSRX limits traffic between container segments using Layer 4–7 security policies.
Specifications
Capacity and Performance1 | cSRX |
---|---|
Virtual CPU | 2 |
Memory | 4 GB |
Firewall throughput, large packet (1514 B) | 12.3 Gbps |
Firewall throughput, IMIX | 3.2 Gbps |
Application visibility and control2 | 5.8 Gbps |
Intrusion prevention system (IPS)-recommended signatures2 | 2 Gbps |
Connections per second (AppFW) | 30,000 |
Maximum concurrent sessions | 512,000 |