Datasheet

ManualsBrandsJuniper ManualsNetworkingNS-5GT-005-AV

Page 2

Firewall

5GT 10 user

or plus

5GT ADSL

10 user

or plus

5GT Wireless

10 user

or plus

Number of network attacks detected 31 31 31

Network attack detection Yes Yes Yes

DoS and DDoS protections Yes Yes Yes

TCP reassembly for fragmented

packet protection

Yes Yes Yes

Malformed packet protections Yes Yes Yes

Malicious Web ﬁltering Up to 48 URLs

Brute force attack mitigation Yes Yes Yes

Syn cookie protection Yes Yes Yes

Zone-based IP spooﬁng Yes Yes Yes

VPN

Concurrent VPN tunnels Up to 10

Tunnel interfaces Up to 10

DES (56 bit), 3DES (168-bit) and AES

encryption

Yes Yes Yes

MD-5 and SHA-1 authentication Yes Yes Yes

Manual Key, IKE, PKI (X.509) Yes Yes Yes

Perfect forward secrecy (DH Groups) 1, 2, 5 1, 2, 5 1, 2, 5

Prevent replay attack Yes Yes Yes

Remote access VPN Yes Yes Yes

L2TP within IPSec Yes Yes Yes

Dead Peer Detection Yes Yes Yes

IPSec NAT traversal Yes Yes Yes

Redundant VPN gateways Yes Yes Yes

VPN tunnel monitor Yes Yes Yes

Unied Threat Management / Content Security

IPS (Deep Inspection FW) Yes Yes Yes

Protocol anomaly detection Yes Yes Yes

Stateful protocol signatures Yes Yes Yes

Antivirus

(3)

Yes Yes Yes

Signature database 100,000+

Maximum AV Users

(4)

POP3, SMTP, HTTP, IMAP, FTP

Anti-Phishing Yes Yes Yes

Anti-Spyware Yes Yes Yes

Anti-Adware Yes Yes Yes

Anti-Keylogger

Yes Yes Yes

Anti-Spam

(4)

Yes Yes Yes

Integrated URL ﬁltering

(5)

Yes Yes Yes

External URL ﬁltering

(6)

Yes Yes Yes

Firewall and VPN User Authentication

Built-in (internal) database - user limit up to 100 up to 100 up to 100

3rd Party user authentication RADIUS, RSA, SecurID, 802.1x and LDAP

XAUTH VPN authentication Yes Yes Yes

Web-based authentication Yes Yes Yes

IPS

Deep Inspection (DI) ﬁrewall

(2)

Yes Yes Yes

Protocol anomaly detection Yes Yes Yes

Stateful protocol signatures Yes Yes Yes

5GT Series

Logging/Monitoring

5GT 10 user

or plus

5GT ADSL

10 user

or plus

5GT Wireless

10 user

or plus

Syslog (multiple servers) External, up to 4 servers

E-mail (2 addresses) Yes Yes Yes

NetIQ WebTrends External External External

SNMP (v1, v2) Yes Yes Yes

Standard and custom MIB Yes Yes Yes

Traceroute Yes Yes Yes

At session start and end Yes Yes Yes

Virtualization

Virtual routers (VRs) 3 3 3

802.1Q VLan Tagging Yes Yes Yes

Routing

OSPF/BGP/RIPv1/v2 dynamic routing 3 instances each

Static routes 1024 1024 1024

Source Based Routing, Source

Interface Based Routing

Yes Yes Yes

Equal cost multi-path routing Yes Yes Yes

IGMP groups 2400 2400 2400

High Availability (HA)

HA Lite Yes - with Extended License Key

Dial Backup

(6)

Yes Yes Yes

Dual Untrust Yes Yes Yes

VoIP

H.323 ALG Yes Yes Yes

SIP ALG Yes Yes Yes

SCCP ALG Yes Yes Yes

MGCP ALG Yes Yes Yes

NAT for H.323/SIP Yes/Yes Yes/Yes Yes/Yes

IP Address Assignment

Static Yes Yes Yes

DHCP/PPPoE/PPPOA client Yes/Yes/No Yes/Yes/Yes

Yes/Yes/Yes

(w/ADSL)

Internal DHCP server Yes Yes Yes

DHCP relay Yes Yes Yes

PKI Support

PKI certiﬁcate requests (PKCS 7 and

PKCS 10)

Yes Yes Yes

Automated certiﬁcate enrollment

(SCEP)

Yes Yes Yes

Online Certiﬁcate Status Protocol

(OCSP)

Yes Yes Yes

Self Signed Certiﬁcates Yes Yes Yes

Certiﬁcate Authorities Supported

Verisign, Entrust, Microsoft, RSA Keon, iPlanet

(Netscape), DOD PKI, Baltimore

RADIUS Accounting

RADIUS Start/Stop Yes Yes Yes

System Management

WebUI (HTTP and HTTPS) Yes Yes Yes

Command Line Interface (console) Yes Yes Yes

Command Line Interface (telnet) Yes Yes Yes

Command Line Interface (SSH) Yes, v1.5 and v2.0 compatible

NetScreen-Security Manager Yes Yes Yes

All management via VPN tunnel on

any interface

Yes Yes Yes

Rapid deployment Yes Yes Yes