Try our new research platform with insights from 80,000+ expert users
Principal Director of IT at Reanaud-bray
User
Tried configuring the IDS for more than four months, but it did not work properly
Pros and Cons
  • "We use it as a firewall at our head office and branches."
  • "It did not improve our safety because the IDS does not detect some attacks, but our anti-virus software did."
  • "We tried configuring the IDS for more than four months, but it did not work properly."

What is our primary use case?

We use it as a firewall at our head office and branches. We use its IDS solution at the head office too.

How has it helped my organization?

It did not improve our safety because the IDS does not detect some attacks, but our anti-virus software did.

What needs improvement?

  • Correct the bugs in the current version. 
  • Help customers more with its configuration so they can feel safer.

We tried configuring the IDS for more than four months, but it did not work properly.

For how long have I used the solution?

Less than one year.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Network Manager with 1-10 employees
Real User
They should add a dashboard because the product is difficult to operate. It is not that expensive.
Pros and Cons
  • "It helps us perform our daily jobs."
  • "I would like them to add a dashboard because it's difficult to operate."
  • "The product only has basic features."

What is our primary use case?

The Juniper SRX that we have is being used as a firewall. Somehow, it is performing.

The product is a normal router with basic firewall capacity. We don't have a dedicated firewall. Therefore, I don't have high expectations from Juniper. 

How has it helped my organization?

It helps us perform our daily jobs.

What is most valuable?

We are using it as a normal type of firewall.

What needs improvement?

I would like them to add a dashboard because it's difficult to operate.

The product only has basic features.

For how long have I used the solution?

Less than one year.

What do I think about the stability of the solution?

The stability is normal.

What do I think about the scalability of the solution?

The scalability is normal.

How are customer service and technical support?

I haven't used technical support, just local support.

How was the initial setup?

The initial setup was complex.

What's my experience with pricing, setup cost, and licensing?

It is not that expensive.

Which other solutions did I evaluate?

We are evaluating Palo Alto, Barracuda, and Sophos because we need a Next-Gen firewall.

What other advice do I have?

It crashed, and we could not change it for some reason. I don't want to keep Juniper within my network anymore.

Most important criteria when selecting a vendor: 

  • Dedicated support team
  • Easy configuration.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Juniper SRX Series Firewall
December 2024
Learn what your peers think about Juniper SRX Series Firewall. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
Senior Consultant with 51-200 employees
Consultant
Easy to configure and manage, has a helpful rollback feature, and is easy to setup
Pros and Cons
  • "When compared to Palo Alto, Juniper is a better choice when it comes to the enterprise network and connectivity."
  • "The user interface is something that Juniper needs to improve."

What is our primary use case?

I work with firewalls. We have a team to manage them. We also have services that are related to hosting and we provide solutions related, and we set up everything.

We manage their connections remotely.

Every firewall has different use cases. Juniper is zone-based and the architecture matters. It offers convenience for the users to have remote access and ensures a secure and safe authentication.

What is most valuable?

When compared to Palo Alto, Juniper is a better choice when it comes to the enterprise network and connectivity.

Juniper SRX is pretty fast to configure and make it work.

Once it is configured, it's fine, which is not the case with other firewalls.

Juniper is user-friendly. It works perfectly well.

Upgrades are available.

Juniper SRX has a roll-back feature which is very interesting. As no one is perfect and mistakes do happen, we can roll it back to the previous configuration.

This solution can handle a lot. It's manageable when you know the parameters, the features, and the number of policies of your firewall.

What needs improvement?

The user interface is something that Juniper needs to improve. 

For how long have I used the solution?

We have used many models of Juniper SRX. Based on the scale and the environment of the customer, we choose what is best for them.

Most of what we use are between the SRX300 and SRX345. These are the most commonly used series.

Simple, mid-scale establishments can use these models.

What do I think about the stability of the solution?

It is more or less stable. I prefer it for its stability as a firewall.

What do I think about the scalability of the solution?

We are not a large team, we have 20 members in our company.

It's a scalable solution.

How are customer service and technical support?

The support could be somewhat improved with Juniper.

Which solution did I use previously and why did I switch?

We have also had firewalls from Palo Alto as well as FortiGate. I prefer Palo Alto, comparatively, it is better.

We find that the technical support with FortiGate is very slow. We are not able to get the proper help in spite of having the AMC add-on.

How was the initial setup?

It is not at all complex. It's easy. 

The initial setup is straightforward.

The maintenance requirements are based on the customer's agreement and whether it is to manage the firewall and maintain it.

What's my experience with pricing, setup cost, and licensing?

It is best suited to an enterprise-level, as the mid-range companies may find that the cost is not affordable.

Which other solutions did I evaluate?

Previously, we had an implementation plan for a client. We verified the different types of firewalls and the support and how it works. We evaluated Cisco, Juniper, and FortiGate.

From the previous recommendation, we saw all of the technical aspects of the different firewalls. Based on that information, we were able to clarify and come to a conclusion and chose the firewall that was best suited to the client's needs.

Recently, because of the price, we have moved to Juniper.

Most of the AMCs are costly.

What other advice do I have?

We choose our solution based on many reasons. One is the cost, which is the primary reason, and the second is the performance. Performance in this context includes how it loads, and how it handles. Based on these parameters, we choose the firewalls.

At this time, we are not using cloud-based features. It is something we anticipate in the future. We are not using Juniper cloud-based. When you have a setup at an architecture level, they will not have drastic changes until, or unless they are financially stable and they want a higher level of architecture to be implemented.

The change will not happen suddenly, even if you have an enterprise core application it won't be done in a different way. There will be a roadmap done. We also have the SSG firewalls.

There is a lot of work in the pipeline, it might take more time to change the firewalls that need upgrading.

When we use so many products, we have to follow the hierarchy. We don't commonly work in a UI environment.

I would recommend this solution to others who are interested in using it. It is good, and it is faster and easier to maintain. The price is not bad and when compared with Cisco, I find that Juniper is better. It's a good product for enterprise companies. 

We have a custom-built model that makes it very simple to migrate.

I would rate Juniper SRX an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Mohd.Rivai - PeerSpot reviewer
Network Security Engineer at a tech services company with 201-500 employees
Real User
Top 10
Good IPSec configuration, with good support, and easy to install
Pros and Cons
  • "The IPSec configuration is going well."
  • "In the future, I would like to see the UI more responsive"

What is our primary use case?

The primary use case of this solution is a traditional firewall.

We use Juniper SRX for the site-to-site VPN.

What is most valuable?

The IPSec configuration is going well.

What needs improvement?

We are experiencing some issues with the clustering. It needs to be simplified and more stable.

Some of the features included in SRX need improvement. For example, if you want to change your SSH port number, you cannot go into the application layer. You will have to go to the shell command to change the port. This is a problem because when you show the configuration, you cannot see what was put in the shell. It should easier.

Also, the user interface is a bit slow.

In the future, I would like to see the UI more responsive. The new generation doesn't use SSH anymore. One-click would be better.

For how long have I used the solution?

I have been using Juniper SRX for approximately six years.

A few years ago, we were using the SRX240 now we are using a more recent version.

What do I think about the scalability of the solution?

We deploy on SRX to handle 500 sites.

We will continue to use this solution in the future. We have no plans to change.

How are customer service and technical support?

The technical support is a lot better because when we log a case, they respond.

Which solution did I use previously and why did I switch?

We also use Fortinet FortiGate and I have some experience and knowledge of Cisco ASA.

How was the initial setup?

It's not too complicated. It's plug and play.

The most challenging is when you upload the ISO. Deployment is less than one hour.

The installation is completed in-house.

We are not a large company, we have a team of less than five for deployment and maintenance.

What other advice do I have?

I would recommend this solution for those who are interesting in using it for a VPN.

I would rate this solution an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Works at UNACOOPEC
Real User
Good security features but is lacking a web filter
Pros and Cons
  • "I've found the security features, such as IDS and the VPN most valuable."
  • "In terms of other features, I'd like to see a web filter, 10 point control, application control and a DNA filter in the next release."

What is most valuable?

I've found the security features, such as IDS and the VPN most valuable.

What needs improvement?

In terms of other features, I'd like to see a web filter, 10 point control, application control and DNA features in the next release.

For how long have I used the solution?

I've been using the solution for 5 years.

Which solution did I use previously and why did I switch?

We previously didn't use a different solution.

What other advice do I have?

I would rate this solution a 7 out of 10.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
it_user697011 - PeerSpot reviewer
Systems Engineer with 1,001-5,000 employees
Real User
Consolidation combines routing, switching, and firewall services in one device

What is most valuable?

  • Form factor: It is small, very nimble, and can be deployed in very small environments which do not have wiring closets.
  • Consolidation: It combines routing, switching, and firewall services in one device.
  • Stable OS: There is a one Junos release training for all the Juniper products, thus minimizes the training needed and enhances interoperability.
  • Open standards: The Juniper OS is based on the open standards and making it very interoperable in the mixed vendor environments.
  • Superior performance: This can be achieved by true separation of control and data plane, hence data plane inefficiencies do not affect the control plane and vice versa.
  • Cloud-enabled device: The SRX300 is cloud-ready and can be used to implement SDSN in micro-environments.

How has it helped my organization?

It has greatly reduced the network management functions by reducing the number of devices to manage (one vs three), and easy fault management using the new GUI.

What needs improvement?

Disaggregation (this is available in the box) should be improved to include software intelligence that is actionable.

For how long have I used the solution?

I have used this solution for about four and a half years.

What do I think about the stability of the solution?

There were no stability issues. It is a very stable and reliable product. It can run for several years without a single glitch.

What do I think about the scalability of the solution?

It is highly scalable for its target market.

How are customer service and technical support?

The technical support team is very co-operative and gives quick responses for the logged cases. A hundred percent of the logged cases have been resolved within the SLA period.

Which solution did I use previously and why did I switch?

We looked at MikroTik. However, more features such as the performance, scalability, and consolidation were available on the Juniper device.

How was the initial setup?

The initial setup was simple and can be done 100% via the GUI.

What's my experience with pricing, setup cost, and licensing?

The price per performance value is the best out there in the market. No licensing is needed for all the features apart from the security part, i.e., no licensing for extra services and VPN comes free in the base.

Which other solutions did I evaluate?

We evaluated the FortiGate 80 and 60 series and Cisco ASA 5500.

What other advice do I have?

The Juniper SRX300 is a stable and very reliable product, packed with a lot of capabilities that are not available in the competing products of the same range. I would highly recommend this product to anyone interested in implementing it.

This box has it all and is more for the small-scale branch market. Packaged as an all-in-one routing, switching, and security solution, the SRX300 minimizes the need to deploy separate devices to perform these functions by leveraging on its consolidation, all coming with the carrier-grade capabilities.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1507461 - PeerSpot reviewer
Freelancer at a non-tech company with self employed
Real User
Good for medium sized networks but the UI needs improvement
Pros and Cons
  • "The scalability is fine."
  • "Juniper SRX's UI is very bad."

What is our primary use case?

We use it to deploy the firewall.

Sometimes we use the newer version, sometimes the older version. It depends.

What is most valuable?

In terms of valuable features, Juniper firewall filtering is good.

What needs improvement?

Juniper SRX's UI is very bad. We have to use CLA all of the time and Sky ATP.

If I compare Fortinet with SRX, particularly for filtering websites and email addresses, SRX is very very difficult.

For how long have I used the solution?

I have been using Juniper SRX for the last five to six years.

What do I think about the stability of the solution?

It is good for a medium sized network. It depends how it is deployed.

If you look at the Gartner rating, Juniper is not among the top rankers.

What do I think about the scalability of the solution?

The scalability is fine.

How are customer service and technical support?

Since COVID, the tech support is not much good. You have to wait a long time. For example, if you open up a case, you don't know how much time it will be before they come and if the person opening the ticket is even experienced.

How was the initial setup?

Because I have been using Juniper for five years, for me the setup is not hard. But compared to FortiGate it is much more difficult for new users.

What's my experience with pricing, setup cost, and licensing?

It is on a subscription basis, mostly yearly. It totally depends on the customer. The customer gets a discount on the hardware.

What other advice do I have?

On a scale of one to ten, I would give Juniper SRX a seven.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Integrator
PeerSpot user
reviewer1256787 - PeerSpot reviewer
Technical Lead at a tech services company with 10,001+ employees
Real User
Not reliable or easy to install, support and pricing need improvement
Pros and Cons
  • "We did not have problems with scaling, as we have less than 500 users in our organization."
  • "It was very difficult to deal with and required a lot of support, and the UI is very poor."

What is our primary use case?

The primary use case of this solution is as a high-capacity firewall.

What needs improvement?

It was very difficult to deal with and required a lot of support, and the UI is very poor. 

I didn't like this product at all.

We faced many issues with the power supply causing many outages with this SRX box.

We experienced outage issues when load-balancing between two availability architectures, which had an effect on the availability.

Once we started to deal with this solution, it was very difficult to troubleshoot. It was not straightforward at all when comparing to Cisco. 

We always had support tickets. More than 50 tickets per month exceeded the SLA by more than two weeks.

Better support is needed.

In the next release, this solution needs to be stable, offer better support, better pricing, and less expensive to migrate.

For how long have I used the solution?

I have been using Juniper SRX for more than five years.

We are using the latest version but will be dismantling this product soon.

What do I think about the stability of the solution?

It is not stable at all. There are many outages.

We will not continue using this solution.

What do I think about the scalability of the solution?

We did not have problems with scaling, as we have less than 500 users in our organization.

How are customer service and technical support?

Technical support was not helpful.

The support was horrible. Once we started our investigation, we were faced with another support engineer calling to go over the first steps again. We needed to restart the investigation from the beginning of the week.

How was the initial setup?

The installation was not straightforward.

It took more than one month to set it up.

What about the implementation team?

We had a team of three technicians to implement this solution.

What's my experience with pricing, setup cost, and licensing?

One of the main reasons for dismantling this solution is that were asked to migrate the old books to the new books using Juniper and to transfer the policies and firewalls by using licensing. 

It was very expensive to upgrade to their products. 

The product itself is costly and the price of migration is very high.

What other advice do I have?

I do not recommend this product and instead, would recommend using FortiGate.

I would rate Juniper SRX a zero. I would not even give it a one out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free Juniper SRX Series Firewall Report and get advice and tips from experienced pros sharing their opinions.
Updated: December 2024
Buyer's Guide
Download our free Juniper SRX Series Firewall Report and get advice and tips from experienced pros sharing their opinions.