2
Connectivity and Routing:
The SSG300 line provides four onboard
10/100/1000 interfaces complemented by I/O expansion slots that
can house a mix of LAN or WAN interfaces, making the SSG300
line an extremely flexible platform. The broad array of I/O options
coupled with WAN protocol and encapsulation support makes the
SSG300 line of gateways easily deployable as traditional branch
office routers or as consolidated security and routing devices, which
can help reduce capex and Opex.
Access Control Enforcement:
The SSG300 line of gateways can act
as enforcement points in a Juniper Networks Unified Access control
deployment with the simple addition of the Juniper Networks Ic
Series UAc Appliances. The Ic Series functions as a central policy
management engine by interacting with the SSG300 line to augment
or replace the firewall-based access control. It grants/denies access
based on more granular criteria, including endpoint state and user
identity in order to accommodate the dramatic shifts in attack
landscape and user characteristics.
In addition, Juniper Networks Professional Services will collaborate
with your team to identify goals, define the deployment process,
create or validate the network design, and manage the deployment
to its successful conclusion. Whether it involves simple lab testing
or a major network implementation, Juniper Networks Professional
Services is there to help you ensure success.
Features and Benefits
Feature
Feature Description
Benefit
High performance
Purpose-built platform is assembled from custom-built
hardware, powerful processing and a security-specific
operating system.
delivers performance headroom required to protect
against internal and external attacks now and into
the future.
Best-in-class UTM security features
UTM security features (antivirus, antispam, Web
filtering, IPS) stop all manner of viruses and malware
before they damage the network.
ensures that the network is protected against all
manner of attacks.
Integrated antivirus
Annually licensed antivirus engine, provided by Juniper,
is based on Kaspersky Lab engine.
Stops viruses, spyware, adware and other malware.
Integrated antispam
Annually licensed antispam offering, provided by
Juniper, is based on Sophos technology.
Blocks unwanted email from known spammers and
phishers.
Integrated Web filtering
Annually licensed Web filtering solution, provided by
Juniper, is based on Websense Surfcontrol technology.
controls/blocks access to malicious Web sites.
Integrated intrusion prevention
system (IPS) (deep Inspection)
Annually licensed IPS engine is available with Juniper
Networks deep Inspection Firewall Signature Packs.
Prevents application-level attacks from flooding the
network.
Fixed Interfaces
Four fixed 10/100/1000 interfaces, two USB ports, one
console port and one auxiliary port are standard on all
SSG300 line models.
Provides high-speed LAN connectivity, future
connectivity and flexible management.
Network segmentation
Bridge groups, security zones, virtual LANs and virtual
routers allow administrators to deploy security policies
to isolate guests, wireless networks and regional servers
or databases.*
Powerful capabilities facilitate deploying security for
various internal, external and dMZ sub-groups on the
network, to prevent unauthorized access.
Interface modularity
Six interface expansion slots support optional T1, e1,
Serial, AdSL/AdSL2/AdSL2+, G.SHdSL, 10/100/1000,
and SFP connectivity.
delivers combination of LAN and WAN connectivity
on top of unmatched security to reduce costs and
extend investment protection.
robust routing engine
Proven routing engine supports OSPF, BGP and rIP v1/2
along with Frame relay, Multilink Frame relay, PPP,
Multilink PPP and HdLc.
enables the deployment of consolidated security
and routing device, thereby lowering operational and
capital expenditures.
Juniper Networks Unified Access
control enforcement point
Interacts with the centralized policy management
engine (Ic Series) to enforce session-specific access
control policies using criteria such as user identity,
device security state and network location.
Improves security posture in a cost-effective
manner by leveraging existing customer network
infrastructure components and best-in-class
technology.
Management flexibility
Use any one of three mechanisms, cLI, WebUI or Juniper
Networks Network and Security Manager (NSM), to
securely deploy, monitor and manage security policies.
enables management access from any location,
eliminating on-site visits thereby improving response
time and reducing operational costs.
Auto-connect VPN
Automatically sets up and takes down VPN tunnels
between spoke sites in a hub-and-spoke topology.
Provides a scalable VPN solution for mesh
architectures with support for latency-sensitive
applications such as VoIP and video conferencing.
World-class professional services
From simple lab testing to major network
implementations, Juniper Networks Professional
Services will collaborate with your team to identify
goals, define the deployment process, create or validate
the network design and manage the deployment.
Transforms the network infrastructure to ensure that
it is secure, flexible, scalable and reliable.
*Bridge groups supported only on uPIMs in Juniper Networks ScreenOS
®
Software 6.0 and higher releases.
