Juniper SRX Series Firewall Reviews

• Manipulation of rules
• Flexibility in day-by-day use

Junos is the best OS for networks. It is very powerful and flexible.

The rollback option and Commit Confirmed are great features. They give us the security to change configurations without downtime.

It would be good if Junos had "unique commands" between all hierarchical levels, discarding the use of the "Run" command.

The robustness of Linux on top of Junos can be more effective after power down.

No stability issues.

No scalability issues.

High level of technical support.

We used Fortinet, and changed to Juniper to use Junos.

Easy.

Pricing is very good, not expensive.

We use the SRX1500 with Junos 15.1X49-D75.5. 

I rate the product 10 out of 10. It is very strong and Junos is very powerful. The total throughput is very large.

We use the solution for protection and security. We primarily use the solution for an internal firewall.

If you require any particular rule that needs to be modified, any particular rule that needs to be fine-tuned, the solution will give you all the details regarding how to fine-tune the policy, including the destination, IP, et cetera. You can easily fine-tune whatever you need to in Juniper. It's easy to implement and meets our patience threshold. 

The dashboard is very helpful. It's extremely useful in terms of putting the necessary policies in place.

I handle the operation part. I'm just putting policies, et cetera, on Juniper. For tasks such as those, it is very easy and it is a comfortable, straightforward process.

The solution has proven to be quite stable.

Technical support has been quite helpful.

I've noticed that the management interface could use some updates and upgrades.

The dashboard can be updated. 

The reporting could be more robust and in-depth.

I've looked into the Check Point firewall a bit and I've found that its anti-spoofing is a good feature. Juniper should consider adding that as a feature.

I've only just begun to really use the product. I only have one year of experience so far. It's still new to me. Therefore, it's hard to make any notes on any features or improvements, as I'm still familiarizing myself with everything. I need time to compare it to other firewalls, and I have not gone through the process of doing that just yet. I need more time.

I've been dealing with the solution for about one year. It hasn't been that long. 

It is really stable. I've seen Juniper work well in my other companies as well. It is very good, in terms of stability. There are no bugs or glitches. It doesn't crash or freeze. The performance is reliable.

Overall, the scalability is very good. A company should have no trouble with scaling if it would like to do so.

We have about 2,000 users currently. They cover various roles in our organization. It's not just used by a specific team.

The technical support on offer is very good. Whenever I would have some issues, they have responded on time and they have really good knowledge of the product. We've been quite satisfied overall.

We use a variety of solutions, including Cisco and Check Point.

I did not handle the initial implementation. That was handled by someone else. Therefore, I can't really share any insights on the process. I do not know if it was easy or difficult, or how long it really took to deploy.

I do not handle the licensing arrangements. That's handled by management. Therefore, I can't speak to how much it costs the organization or how often we pay a licensing fee.

We're just a customer and an end-user.

In general, on a scale from one to ten, I'd rate this product at a nine. We've been quite satisfied with its capabilities so far. 

I'd recommend the solution, however, it really depends on what an organization needs. There are various factors, like pricing, for example, that should be taken into account when looking at solutions.

The primary use case is for protecting enterprise systems.

It allows users connecting from homes, who urgently need to log into the networks through a secure tunnel without using internet IP gateway, access using a SSL.

• It is highly scalable, stable, and can be easily updated.
• It protects from distributed denial-of-service attacks, DDoS attacks, with Screen Options.
• When you design your networks, you can put SSL Inspection as a gateway to make the systems secured, like IT systems.

The GUI needs to be easier and more helpful for users who don't have security experience.

They need to add WAF management to the tool, as competitors already have it as part of their offerings. This feature is future of protecting enterprise solutions.

It is very stable, but it needs an engineer on the system while it is running to monitor for attacks and when attacks are in process.

It is easy to expand.

The technical support is good, but there is a time delay between the support and attacks.

The initial setup was straightforward, but has since become straightforward with experience.

For example, with MX (not SRX), it needs to be specific when you export or import the subnetting or addresses that you want to block or filter out of your networks. This is why it is a complex process the first time and becomes subsequently easier

You have to be aware of Linux commands, which will make you able to use this device, like exporting file, saving file, monitoring your logs, and making a new script.

The greatest improvement we have seen is in operational performance and operational stability. There are no outages.

• It's a reliable firewall and very stable, for both the hardware and applications it is stable. 
• It's very powerful. 
• It's also a very secure device, it has good attack prevention capabilities using UTM.
• It's user-friendly with a good UI.
• It has powerful CLI.

It's not 100%, it's not a perfect product, some points need to be adjusted, need to be enhanced.

There have been no issues with this product.

It's a very scalable product.

I think they have professional support. Support is really good, they are professional engineers.

Customer support is very good.

I used Cisco, and Palo Alto, and used McAfee. As a consultant, a systems integrator, if customers go to SRX it's because of its features and the stability of the product. It's the most stable product.

It was very straightforward, very clear.

Other than Palo Alto, StrongSoft is very stable. Cisco Firepower is very unstable.

I can say for, that for a datacenter, and for price, first I appreciate Palo Alto and then I appreciate Juniper, more than the others.

Support for Juniper is best, better than Palo Alto, but Palo Alto is more powerful. And there is a big difference in pricing.

Many customers of ours use Juniper firewalls — almost 30 enterprise companies in total. 

We have explored perimeter security; however, we have not had the chance to group all the security solutions from Juniper. In relation to perimeter firewalls, we have had a good experience. We have been working with Juniper for about 10 years now, and I think it's a good brand in the market in general. In the past, they had some issues involving integration with different products in the portfolio, but currently, I think they have solved that issue. Speaking about our experience with perimeter firewalls, we feel comfortable. We think they have a good interface, the operating system is good, it's robust. It has plenty of great features, and the relation between the cost and benefits works for our business.

They recently improved this solution. Currently, I feel comfortable with Juniper in general.

Support is good. We speak to them quite often.

The initial setup was very simple.

Currently, we plan on exploring more products and solutions geared toward cloud security.

Overall, on a scale from one to ten, I would give Juniper SRX a rating of nine.

Firewall for a lab environment.

Before, we were handling everything with a Vyatta server until our network became more complex.

Stability.

The device could be more user-friendly.

We integrate these solutions with clusters, which are a risk to firewalls.

It has a very usable CLI.

It doesn't support SSL encryption.

I have been using Juniper SRX Series Firewall for three years.

It is a stable solution. We work it with clusters to two SRX firewalls for redundancy.

It is suitable for enterprise businesses.

The initial setup is complex and takes a few days to complete.

I rate the initial setup a six out of ten, where one is difficult and ten is easy.

Customers always want cheaper solutions. Fortinet is a cheaper solution than Juniper.

It's difficult to implement when we have many policies and security.

I recommend the solution.

Overall, I rate the solution an eight out of ten.

We use Juniper SRX for branch offices or for small office use.

The GUI is simple to use.

I have been using Juniper SRX for approximately 20 years.

Juniper SRX is stable, but it could improve. FortiGate has better stability than Juniper SRX.

Juniper SRX could improve the scalability to compete better with other solutions, such as 
FortiGate.

We have less than 10% of our customers using Juniper SRX.

We use FortiGate solutions and we have been deploying them more than Juniper SRX because of the benefits.

The installation is straightforward.

The time of the deployment depends on the complexity of the environment. If the customer requires HA deployment and the configuration could take longer time. On average, for a small-scale branch office, it can be completed within one day, which includes testing. If the customer does not have any special preference on the policy and they do not have any IP tunnels then it could be completed within half a day.

We have an in-house team of 10 engineers that do the implementation and maintenance of the solutions we provide.

I rate Juniper SRX a seven out of ten.