To Next Page

To Previous Page

SRX100 SRX210 SRX240 SRX650

Routing (continued)

Source-based routing Yes Yes Yes Yes

Policy-based routing Yes Yes Yes Yes

Equal-cost multipath (ECMP) Yes Yes Yes Yes

Reverse path forwarding (RPF) Yes Yes Yes Yes

MPLS

Layer 2 VPN (VPLS) Yes Yes Yes Yes

Layer 3 VPN Yes Yes Yes Yes

LDP Yes Yes Yes Yes

RSVP Yes Yes Yes Yes

Circuit Cross-connect (CCC) Yes Yes Yes Yes

Translational Cross-connect (TCC) Yes Yes Yes Yes

Multicast

IGMP (v1, v2, v3) Yes Yes Yes Yes

Protocol independent multicast (PIM) sparse

mode (SM)

Yes Yes Yes Yes

PIM dense mode (DM) Yes Yes Yes Yes

PIM source-speciﬁc multicast (SSM) Yes Yes Yes Yes

Multicast inside IPsec tunnel Yes Yes Yes Yes

IPsec VPN

Concurrent VPN tunnels 128 256 1,000 3,000

Tunnel interfaces 10 64 128 512

DES (56-bit), 3DES (168-bit) and AES (256-bit) Yes Yes Yes Yes

MD-5 and SHA-1 authentication Yes Yes Yes Yes

Manual key, Internet Key Exchange (IKE), public key

infrastructure (PKI) (X.509)

Yes Yes Yes Yes

Perfect forward secrecy (DH Groups) 1,2,5 1,2,5 1,2,5 1,2,5

Prevent replay attack Yes Yes Yes Yes

Dynamic remote access VPN Yes Yes Yes No

IPsec NAT traversal Yes Yes Yes Yes

Redundant VPN gateways Yes Yes Yes Yes

User Authentication and Access Control

Third-party user authentication RADIUS, RSA SecureID,

LDAP

RADIUS, RSA SecureID,

LDAP

RADIUS, RSA SecureID,

LDAP

RADIUS, RSA SecureID,

LDAP

RADIUS accounting Yes Yes Yes Yes

XAUTH VPN, Web-based, 802.X authentication Yes Yes Yes Yes

PKI certiﬁcate requests (PKCS 7 and PKCS 10) Yes Yes Yes Yes

Certiﬁcate Authorities supported VeriSign, Entrust,

Microso, RSA Keon,

iPLanet, (Netscape),

Baltimore,

DoD PKI

VeriSign, Entrust,

Microso, RSA Keon,

iPLanet, (Netscape),

Baltimore,

DoD PKI

VeriSign, Entrust,

Microso, RSA Keon,

iPLanet, (Netscape),

Baltimore,

DoD PKI

VeriSign, Entrust,

Microso, RSA Keon,

iPLanet, (Netscape),

Baltimore,

DoD PKI

Virtualization

Maximum number of security zones 10 12 32 128

Maximum number of virtual routers 3 10 20 60

Maximum number of VLANs 16 64 512 4096

Encapsulations

PPP/MLPPP N/A Yes Yes Yes

MLPPP maximum physical interfaces N/A 1 4 12

Frame Relay N/A Yes Yes Yes

MLFR (FRF .15, FRF .16) N/A Yes Yes Yes

MLFR maximum physical interfaces N/A 1 4 12

HDLC N/A Yes Yes Yes

Address Translation

Source NAT with Port Address Translation (PAT) Yes Yes Yes Yes

Static NAT Yes Yes Yes Yes

Destination NAT with PAT Yes Yes Yes Yes

Brand	Juniper
Model	SRX650
Category	Gateway
Language	English

Juniper SRX650 Datasheet

Table of Contents

Other manuals for Juniper SRX650

Questions and Answers:

Juniper SRX650 Specifications

Related product manuals