Juniper Networks - Intrusion Detection and Prevention


Using industry recognized stateful detection and prevention techniques, Juniper Networks IDP provides zero-day protection against worms, Trojans, spyware, keyloggers, and other malware from penetrating the network and spreading from already infected users to others.

Juniper has IDS capability in their firewalls, but also offers a full stand-alone purpose-built enterprise grade choice of IDP platforms. IDP capability is also available as a security module in the ISG firewall product line. For more information on IDS within the firewall, please visit here.

In addition to protecting networks against attacks, Juniper Networks IDP provides information on rogue servers, as well as types and versions of applications and operating systems that may have unknowingly been added to the network. Combined with granular level of control, such as rate limiting, not only can administrators control the access of specific applications, but they can now ensure business critical applications receive a predictable quality of service.

Key features and benefits of the Juniper Networks IDP solutions include:

  • Multi-method detection system that includes compound signatures, stateful signatures, protocol anomaly and backdoor detection
  • Extensive signature customization to improve the ability to detect unique attacks and tailor the signature specific to the customer's requirements
  • Rate limiting capability at the application level (via Diffserv marking) to ensure QoS for mission-critical applications
  • Enhanced network visibility with support for new protocol decodes covering VoIP solutions, database accesses and wireless data communication
  • Closed loop investigation process to quickly see the big picture and then drill down to the appropriate level of detail to make informed security decisions
  • Enterprise Security Profiler (ESP) to gain insight into network and attack activity that accelerates inline deployment and facilitates attack investigation
  • Security Explorer to view the network activities through a graphical, easy to understand and interactive user interface
  • Policy Editor to create and deploy granular security policies based on what traffic to look at, what attacks to look for in that traffic and how to respond when an attack has been detected
  • Log Viewer to investigate specific security incidents with the ability to customize the way information is processed within the system
  • Common management solution as Juniper Networks' FW/VPN and integrated FW/VPN/IDP appliances for centralized rule-based management across multiple security appliances
  • Fully customizable reporting to generate up to the minute status on network activity
  • Role-based administration to logically divide administrator accesses based on business practices
  • IDP clustering to enable stateful, standalone high availability minimizing the risk of a single point of failure and maximizing network protection

Juniper Networks IDP products can be optionally centrally managed by NetScreen-Security Manager (NSM), the same management solution used by Juniper Networks' FW/VPN appliances, as well as the integrated ISG FW/VPN/IDP products. In addition to the benefit of managing all Juniper Networks' firewall, VPN and IDP products from a single user interface, NSM offers granular control over the system's behavior, easy access to extensive logging and fully customizable reports.

For more information, get datasheets, contact us or visit the Juniper website.