Juniper Networks - NSM


Picture 6
Juniper Networks NSM comes in either a software solution or new appliance offering. NSM provides a centralized method for configuration management and logging. Currently, NSM is used to manage Juniper firewalls, Juniper VPNs on Juniper firewalls and Juniper IDPs. For multi-vendor network and threat manage, look at the complimentary Juniper STRM solution.

Overview:
  • Centralized, end-to-end device life-cycle management of the firewall/IPSec VPN and Intrusion Prevention devices, for granular control of configuration, network settings, and security policies
  • Delegation of administrative roles provides relevant access to those who need it
  • Complete set of investigative tools provide in-depth network visibility
  • Robust architecture provides performance, flexibility and fault tolerance

Features and Benefits:

  • Intuitive GUI to simplify complex tasks, such as device configuration, policy creation, and VPN deployment
  • Delegation of administrative roles to provide information access to those who need it
  • Domains provide logical separation of data in a distributed enterprise or service provider environment
  • Granular control of configuration and network settings with local and global security policies
  • Object locking to allow multiple administrators to safely modify different policies or devices concurrently
  • Device templates to minimize configuration errors by managing any or all aspects of a device or group of devices via a template
  • VPN Manager to accelerate VPN deployments by creating all the necessary rules after a basic topology has been defined
  • Automated security updates offering attack coverage recommended by the Juniper security team
  • Statistical Report Server, an optional module, to generate up to 40 different network reports in 4 categories covering a full range of data points, which can be used for historical analysis to make sound business decisions moving forward

NSM includes a diverse, integrated set of investigative tools:
  • Log Viewer to allow logs to be viewed in real time, with filters to allow an administrator to perform rapid analysis of security status and events
  • Log-based reporting to allow an administrator to generate, view, and export reports summarizing logs and alarms originating from the managed firewall / IPSec VPN and IDP devices
  • Security Explorer presents an interactive graphical view of the relationships between hosts, networks, services and attacks
  • Profiler (for IDP devices) helps administrators baseline network activity and quickly identify new hosts and applications
  • Log Investigator to provide the ability to correlate high-level log information to look for trends and anomalies
Topology of NSM showing NSMXpress in HA mode:
Picture 8
For more information, get datasheets, contact us or visit the Juniper website.