Juniper SRX4600 Services Gateway – High performance, NGFW

Juniper SRX4600 Specifications:

  • Brand: Juniper, Juniper Networks
  • Product Line: Juniper Networks
  • Model: SRX4600 Services Gateway
  • Type: Security appliance (NGFW)
  • Form Factor: 1U

Juniper SRX4600 DataSheet – Download PDF

Description

Juniper SRX4600 Specifications:

  • Brand: Juniper, Juniper Networks
  • Product Line: Juniper Networks
  • Model: SRX4600 Services Gateway
  • Type: Security appliance (NGFW)
  • Form Factor: 1U

Performance Statistics¹ 

  • Firewall throughput—IMIX: 400 Gbps
  • Firewall throughput with application security: 90 Gbps
  • IPsec VPN throughput—IMIX/1400 B: 48/75 Gbps
  • Intrusion prevention system (IPS): 65 Gbps
  • NGFW² throughput: 60 Gbps
  • Connections per second: 600.000
  • Maximum session: 60 million

Hardware

  • Total onboard I/O ports: Up to 24x1GbE/10GbE (SFP+) /  4x40GbE/100GbE (QSFP28)
  • Out-of-Band (OOB) management ports: RJ-45 (1 Gbps)
  • Dedicated high availability (HA) ports: 2x1GbE/10GbE (SFP+) Control  /  2x1GbE/10GbE (SFP+) Data
  • Console: RJ-45 (RS232)
  • USB 2.0 ports (Type A): 1

Memory and Storage

  • System memory (RAM): 256 GB
  • Secondary storage (SSD): 2x 1 TB M.2 SSD

Performance

  • Routing/firewall (64 B packet size) throughput Gbps4: 104 Gbps
  • Routing/firewall (IMIX packet size) throughput Gbps4: 400 Gbps
  • Routing/firewall (1518 B packet size) throughput Gbps4: 400 Gbps
  • IPsec VPN (IMIX packet size) Gbps4: 16 Gbps
  • IPsec VPN (1400 B packet size) Gbps4: 55 Gbps
  • Application security performance in Gbps5: 90 Gbps
  • Recommended IPS in Gbps6: 65 Gbps
  • Next-generation firewall in Gbps6: 60 Gbps
  • Connections per second (CPS): 600,000
  • Maximum security policies: 80,000
  • Maximum concurrent sessions (IPv4 or IPv6): 60 million
  • Route table size (RIB/FIB) (IPv4 or IPv67): 4 million/1.2 million
  • IPsec tunnels: 7500
  • Number of remote access/SSL VPN (concurrent) users: 7500

1 Performance, capacity, and features listed are based on systems running Junos OS 21.3R1 and are measured under ideal testing conditions. Actual results may vary based on Junos OS releases and by deployments.

2NGFW is a combination of advanced features such as application security, IPS, and URLF in addition to the foundational services such as logging and stateful firewall.

4 There are eight dedicated 1GbE/10GbE ports.  The four 40GbE/100GbE ports can use breakout cables to create 4x1GbE/10GbE (SFP+) ports each, resulting in a total of 24x 1GbE/10GbE ports.

5 Throughput numbers based on UDP packets and RFC2544 test methodology
6 Throughput numbers based on HTTP traffic with 44 KB transaction size and up to the numbers captured here
7 IPv6 FIB scale is with 32-bit mask

Juniper SRX4600 Product Features:

Advanced Threat Prevention

  • Protect your network against the latest threats with Juniper Advanced Threat Prevention.
  • Our rich suite of security capabilities that adjust dynamically to network conditions provides malware sandboxing, threat intelligence feeds, and Encrypted Traffic Insights, a feature able to detect malware hidden in SSL-encrypted traffic.

Next-Generation Firewall

  • Detect and mitigate threats through software-enabled next-generation firewall (NGFW) features, including intrusion prevention system (IPS), application security (AppSecure), user ID and role-based access controls, and content security (network anti-virus, anti-spam, and enhanced Web filtering).

Secure SD-WAN

  • Unify control of WAN connections across multiple types of network interfaces while managing and securing MPLS, broadband, and 4G LTE links.

Fault Tolerance

  • Redundant hardware and components, such as power supplies, combine with resilient network and system processes in Junos OS software to deliver high availability.

Easy-to-Use GUI

  • On-box GUI includes centralized management for auto-provisioning, firewall policy management, Network Address Translation (NAT), and IPsec VPN deployments.

Juniper Secure Connect

  • Offers dynamic, adaptive, and secure SSL VPN access to corporate and cloud resources to employees working remotely.

On/Off-Box Automation

  • On/off-box capabilities enable the automatic, remote configuration of network and security policies and settings on SRX devices.

High Port Densities

  • Offers high onboard port densities with the flexibility of multiple Ethernet interface speeds.

Juniper SRX4600 DataSheet – Download PDF