We just raised a $30M Series A: Read our story

Juniper vSRX OverviewUNIXBusinessApplication

Juniper vSRX is #3 ranked solution in top Virtualization Security tools, #7 ranked solution in top Unified Threat Management (UTM) tools, and #22 ranked solution in best firewalls. IT Central Station users give Juniper vSRX an average rating of 8 out of 10. Juniper vSRX is most commonly compared to Juniper SRX:Juniper vSRX vs Juniper SRX. The top industry researching this solution are professionals from a computer software company, accounting for 33% of all views.
What is Juniper vSRX?
The vSRX offers the same features as physical SRX Series firewalls but in a virtualized form factor for delivering security services that scale to match network demand. It offers the same features as the SRX appliance, including core firewall, robust networking, full next-gen capabilities, and automated life-cycle management. It handles speed up to 100 Gbps. It supports Juniper Contrail, OpenContrail, and third-party software-defined networking (SDN) solutions and integrates with cloud orchestration tools. Deployed in your private cloud, vSRX protects against the lateral spread of advanced threats between virtual machines within your network borders. It provides scalable application security for dynamic workloads and protects mission-critical applications from known and unknown threats. Also the vSRX virtual firewall helps you seamlessly extend your private cloud into public cloud environments, securely moving data and workloads with ease. As a VPN gateway, the vSRX provides remote users with safe access to their workloads. As a segmentation gateway, the vSRX protects public-cloud workloads by blocking lateral threats using application policies that help maintain security and compliance.
Buyer's Guide

Download the Firewalls Buyer's Guide including reviews and more. Updated: November 2021

Juniper vSRX Customers
Expedient Data Centers
Juniper vSRX Video

Archived Juniper vSRX Reviews (more than two years old)

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
AH
Network Security Engineer at a tech services company with 51-200 employees
Real User
Top 5
Controlled traffic for site-to-site connections with flexible commit features

Pros and Cons

  • "The architecture of the OS in Juniper is very good. It's flexibility, scalability, and the technicality is also good."
  • "In the next release, I would like to see improvements made to the GUI because it isn't very good."

What is our primary use case?

The primary use case of this solution is to load traffic for our RH team so that they can connect to our servers on our other sites. 

I load source addresses to connect to the destination address with applications such as HTTP, HTTPs, and SSH to connect the servers to the RH team.

What is most valuable?

The flexibility of the commit check and the commit confirmed commands is very good. The design of the forwarding plane and the control plane in the operating system is very important in performing when we have a large amount of traffic.

The architecture of the OS in Juniper is very good. It's flexibility, scalability, and the technicality are also good.

What needs improvement?

The support can be improved. 

The GUI needs to be improved, as Cisco is more advanced with their ASDM platform.

In the next release, I would like to see improvements made to the GUI because it isn't very good.

I would like them to discard some of the existing commands because we have to delete them. It should be more practical.

For how long have I used the solution?

I have been working with Juniper for more than two years.

The versions that I have worked with are the SRX 550, 3600 and 5800.

What do I think about the scalability of the solution?

This solution is scalable.

How are customer service and technical support?

I have dealt with Cisco's Technical support as well as the Technical support from Juniper, and there are some differences. Cisco is more available, and the degree of competence regarding our case is better.

Which solution did I use previously and why did I switch?

We have used both Cisco and Juniper products. When comparing them, there are differences with the command line interface. Cisco is more advanced.

What's my experience with pricing, setup cost, and licensing?

After some research, I think that the cost of Juniper is more than Check Point, Palo Alto, and Fortinet. 

What other advice do I have?

I would recommend Juniper because they have a good product, especially the 5800 version. 

This is a good product for internet service providers.

I would rate this solution an eight out of ten.

Which deployment model are you using for this solution?

Private Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
NN
IT Manager at a comms service provider with 1,001-5,000 employees
Real User
A good solution with lots of features but very bad technical support

Pros and Cons

  • "There are a few valuable features that offer very good quality on the solution. Especially NetScreen. We used to use NetScreen for the the product line. It was a very mature solution, very robust, easy to configure, easy to manage, etc. It made it easy to do everything."
  • "We have some weird errors and some weird behavior on the solution occasionally. The device gets buggy without anyone touching it. It would work and then suddenly stop. Sometimes you need to just move the cards out and restart it again, and it will work. The solution itself, the hardware and the software, there must be some bugs that need to be dealt with."

What is our primary use case?

My company is an IAP so we use the solution for virtual security to segregate work.

What is most valuable?

There are a few valuable features that offer very good quality on the solution. Especially NetScreen. We used to use NetScreen for the product line. It was a very mature solution, very robust, easy to configure, easy to manage, etc. It made it easy to do everything. 

What needs improvement?

We have some weird errors and some weird behavior on the solution occasionally. The device gets buggy without anyone touching it. It would work and then suddenly stop. Sometimes you need to just move the cards out and restart it again, and it will work. The solution itself, the hardware and the software, there must be some bugs that need to be dealt with. 

We are using high-end devices. For the high-end devices, all the features are there; we don't need more features. What we need are for the features we have to work exactly as we want them to. Especially on the IT desk. There's something wrong between the hardware and the software. As I mentioned, some hardware is not working correctly in some integrations, and I'm not sure why. 

For how long have I used the solution?

I've been using the solution for about two years.

How are customer service and technical support?

Technical support is very bad. They never respond to any ticket you open, although we pay for the support. 

How was the initial setup?

The initial setup was a little bit complex.

What about the implementation team?

We used a consultant to assist with implementation. In retrospect, we probably could have handled it ourselves.

What other advice do I have?

We use the on-premises deployment model.

I would rate the solution seven out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Find out what your peers are saying about Juniper, Netgate, Fortinet and others in Firewalls. Updated: November 2021.
553,954 professionals have used our research since 2012.
SN
Security Administrator at a comms service provider with 11-50 employees
Real User
Scalable solution but it has a lot of problems and the management is hard to work with

Pros and Cons

    • "I've talked to people that say Juniper now, as a device, can be a solution for a data center, but in the past, I have not seen this as being possible."

    What needs improvement?

    It seems that most of the problems were the device from management and not from support.  We would spend a lot of time with support trying to solve the problems we had. We didn't resolve it because it was a problem from the device and management. The technical support did not seem to help.

    I've talked to people that say Juniper now, as a device, can be a solution for a data center, but in the past, I have not seen this as being possible.

    For how long have I used the solution?

    I have been using the solution for more than ten years.

    What do I think about the scalability of the solution?

    We currently have about 10,000 users on the solution, but we are moving to the cloud, so I don't think we plan on increasing usage.

    How are customer service and technical support?

    We are not satisfied with technical support. We've had a lot of problems with them not being able to solve our issues.

    How was the initial setup?

    We did the original setup about ten years ago, so I can't recall how straightforward or complex the implementation was.

    What other advice do I have?

    When we started with vSRX we came over from NetScreen. With vSRX We had a lot of problems and management was very hard to work with. It's not so very user-friendly. Before we had NetScreen 5400 and it was much better.

    We're in the process of migrating away from Juniper onto Fortinet.

    For us, it was not the correct solution for our data center.

    I would rate the solution six out of ten.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    Samer Hamadeh
    Senior Information Security Engineer at FNS
    Real User
    Top 5Leaderboard
    Straightforward implementation but GUI needs improvement

    Pros and Cons

    • "The initial setup was very straightforward. There was no problem. The initial deployment took about one hour."
    • "They really need to improve the GUI."

    What is our primary use case?

    I use the solution for network authentication, what you use while accessing the network. In general, controlling the traffic going inside the enterprise and off it.

    What is most valuable?

    I find the VPN and the cluster the most valuable features.

    What needs improvement?

    The syndication or domain controllers, quick policies, and user rules - like being able to see the IP source and destination could be improved. This feature already exists in Palo Alto.

    They really need to improve the GUI.

    For how long have I used the solution?

    I've been using the solution for seven years.

    What do I think about the stability of the solution?

    The stability is getting better. It has got some bugs.

    What do I think about the scalability of the solution?

    The scalability is good. It's very flexible, but the problem is the GUI is not very easy to use.

    How are customer service and technical support?

    They have good technical support but we very rarely use technical support. We go through vendors.

    Which solution did I use previously and why did I switch?

    We previously used Cisco.

    How was the initial setup?

    The initial setup was very straightforward. There was no problem. The initial deployment took about one hour. One person is enough for deployment and maintenance.

    What about the implementation team?

    I implemented the solution myself.

    What other advice do I have?

    In Saudi Arabia, Juniper has a problem with marketing. They're less well known. A lot of companies are changing or going with Palo Alto.

    With the GUI, the firewall is not easy to use. It doesn't cover all the features. Juniper should enhance the GUI, and make it easier to use. Both the firewall and virtual security are hard to use. It's not easy to configure it and not friendly to users.

    I would advise for those thinking about using the product, to make sure they learn as much as possible, and also look to use a redundancy.

    I would rate this solution seven out of 10.

    Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
    SV
    Network Engineer at a tech services company with 11-50 employees
    Real User
    Has advanced features and enables us to have faster firewall deployments

    Pros and Cons

    • "It's much faster to deploy a power source. If you need to deploy a firewall in the cloud of software, it's much easier and much faster than deploying the office firewall in a rush."
    • "he stability could be improved."

    What is our primary use case?

    I primarily use it as a firewall for our customers. It's much faster to deploy a power source. If you need to deploy a firewall in the cloud of software, it's much easier and much faster than deploying the office firewall in a rush. That's our primary usage, fast deployment of firewalls for customers.

    What is most valuable?

    We just use three or four features. There are several advanced features, that we are not using at the moment.

    What needs improvement?

    The stability could be improved.

    For the moment I think it has all of the features I need. The only thing I'd like to see is the ability to create firewalls. That's the only feature I lack. Also, when you need to upgrade and when you need to reboot it, there's some downtime, and I'd like to be able to upgrade it without downtime.

    For how long have I used the solution?

    I've been using the solution for two years.

    What do I think about the stability of the solution?

    The early version, the 15 version, was very stable, but we've found when we go to higher versions we have the features but the stability lacks a little bit. It's pretty stable. For example, it's stable, but when you want to diminish features it can be unstable and sometimes we need to roll back to earlier versions.

    What do I think about the scalability of the solution?

    It's very scalable. It's very easy to deploy, one instance per customer or per instance needed.

    How are customer service and technical support?

    We have very close contact with technical support, so if we have a problem we can contact them directly. It's a good relationship. They are very good.

    Which solution did I use previously and why did I switch?

    We used Palo Alto, Fortinet and One IP. Our main focus is on Juniper material.

    How was the initial setup?

    The initial setup was straightforward. It's not very complex. Deployment takes about ten minutes. In the beginning, it was half an hour, but now we are deploying vSRX in ten minutes. At the moment, for maintenance, we use just one junior network engineer. It's all automated. In the beginning, we had two to three people working on the deployment.

    What about the implementation team?

    We implemented the solution ourselves.

    What's my experience with pricing, setup cost, and licensing?

    Because we use the attached features we just buy perpetual licenses for one-year or three years just for the bandwidth.

    What other advice do I have?

    I would recommend the solution and suggest you test it. It's a good product if you have a chance to work with it, if it fits right in your environment, it's really good to see what it can do.

    I would rate this solution at 8.5 out of 10. I would rate it as a 10 if I had the ability to create a highly available firewall and if there was more stability in the new features.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    SM
    Solutions Architect at a tech services company with 51-200 employees
    Real User
    Enables us to collect all of the updates in one single place and then push it over to the vessel

    Pros and Cons

    • "The features we found most valuable are using the IDS and IPS during protection. The application filtering feature is great."
    • "The pricing still needs some improvement."

    What is our primary use case?

    Our primary use case for the Juniper vSRX solution is protection. We use it for Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS).

    How has it helped my organization?

    At the moment, we have about 120 vessels running under Juniper vSRX with 20 people per vessel. It's 2400 users. For deployment and maintenance, we have nine people.

    We don't use anything extra on the production side. We would like to increase usage. We are going to put an inner portfolio on more than 20,000 vessels. 

    We plan to put all of them under the same umbrella with Juniper vSRX.

    What is most valuable?

    The features we found most valuable are using the IDS and IPS during protection. For prevention, the application filtering feature is great, fantastic.

    What needs improvement?

    Up to the point we have used it now, there is no need for anything extra in the product.

    For how long have I used the solution?

    We have been using this solution for three years now.

    What do I think about the stability of the solution?

    The stability of the solution is very good. It's very stable.

    What do I think about the scalability of the solution?

    Juniper vSRX is very scalable and easy to use. The difference is that we are always using it. The scalability is the main reason why we got it. 

    We evaluated quite a lot of products before we took on this station. It's expensive.

    How are customer service and technical support?

    The technical support is very good. They are very fast. They are our partners. It's in their benefit to help us work efficiently. They are earning money on it.

    How was the initial setup?

    The initial setup is straightforward. Our deployment took three months. We had to put it together with many adjustments for the system to work together.

    What about the implementation team?

    We used our partner Teresa for the installation of Juniper vSRX.

    Which other solutions did I evaluate?

    We evaluated the IDS and IPS without considering application filtering. It is easy to connect Juniper vSRX to the vessels. We have vessels that lead to connectivity.

    Our network is very limited. One of the most important details with Juniper vSRX is that we can collect all of the updates in one single place and then push it over to the vessel. 

    This was something very important to us in production.

    What other advice do I have?

    On a scale from 1 to 10, I would rate this product a 10. When you've got a 10, there is nothing to improve. There's nothing to add. The pricing still needs some improvement.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PP
    Technical Product Manager at a financial services firm with 5,001-10,000 employees
    Real User
    The authentication part is seamless and easy for people. However, the stability needs improvement.

    Pros and Cons

    • "The authentication part is seamless and easy for people."
    • "Right now, we are going through issues and problems where the product gets dropped with the connection or during the authentication initial phase. While it could be our problem, we would like to see more stability in this area."

    What is our primary use case?

    We use it for our network and VPN.

    How has it helped my organization?

    We have a lot of field users. Using this tool, they can get authenticated into the system. Instead of going through multiple steps to bring up client information, it is just the click of a button on a mobile application, then they can get authenticated.

    What is most valuable?

    The authentication part is seamless and easy for people. They can use their mobile phones and everything to get authenticated. 

    What needs improvement?

    Right now, we are going through issues and problems where the product gets dropped with the connection or during the authentication initial phase. While it could be our problem, we would like to see more stability in this area.

    For how long have I used the solution?

    Less than one year.

    What do I think about the stability of the solution?

    The stability needs improvement.

    What do I think about the scalability of the solution?

    We have more than 5000 field agents. From our perspective, we are okay with scalability at this time.

    Which solution did I use previously and why did I switch?

    Juniper vSRX was a replacement product for something called Network Connect that we were using before. It seems much easier for the clients to log into it.

    What other advice do I have?

    We are using both the on-premise and AWS versions. They are used for different purposes, so I can't compare them.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    RH
    Systems Analyst at a university with 10,001+ employees
    Real User
    It's easy to use, maintain, and set up

    Pros and Cons

    • "It is easy for me to go in and update settings, make changes, or add/remove rules or security."
    • "The user interface could always be better. They could make it simpler and more intuitive."

    What is our primary use case?

    Our primary use case is for firewall and network security

    How has it helped my organization?

    It does everything that we need it to do.

    What is most valuable?

    • Easy to maintain.
    • Easy to use.
    • Easy to set up.

    It is easy for me to go in and update settings, make changes, or add/remove rules or security. 

    Also, it works. That is the biggest thing.

    What needs improvement?

    The user interface could always be better. They could make it simpler and more intuitive. While it is pretty good now, they could always make improvements.

    For how long have I used the solution?

    More than five years.

    What do I think about the stability of the solution?

    We don't put that much stress on it, but it is very stable. I don't think we have ever had an issue with it crashing or going down.

    What do I think about the scalability of the solution?

    Our college is small, so we have a smaller environment. However, it appears like it would scale easily. There are other larger colleges who use Juniper using the same system and setup that we do with thousands of faculty and staff instead of the hundreds that we have.

    How is customer service and technical support?

    I have not contacted technical support.

    What's my experience with pricing, setup cost, and licensing?

    It is not that costly.

    Which other solutions did I evaluate?

    We also evaluated Cisco, but we had a good experience with Juniper in the past. Our rep with them would come out and talk to us about things routinely. Thus, we already had a good relationship with them.

    What other advice do I have?

    It works for us and has worked for other colleges and universities.

    We use just the on-premise version of the product. We are not on AWS yet. I'm looking forward to integrating this solution into AWS soon.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    Aaron Venson
    CTO at SEV Technologies LLC
    Real User
    The security posture and VPN are its most valuable features, but the GUI interface needs improvement.

    What is our primary use case?

    On the cloud, we use it to test functionality. Our company is in a proof of concept mode with this product. We have not selected it yet.

    What is most valuable?

    Security posture VPN

    What needs improvement?

    The GUI interface needs improvement. It also needs improvement with the VPCs.

    For how long have I used the solution?

    One to three years.

    What do I think about the stability of the solution?

    Because we are in proof of concept, the stability hasn't been stressed more than 30 percent.

    What do I think about the scalability of the solution?

    The scalability is okay.  The size of our environment is 46 offices.

    How is customer service and technical support?

    The technical support has been good.

    How was the initial setup?

    The integration…

    What is our primary use case?

    On the cloud, we use it to test functionality.

    Our company is in a proof of concept mode with this product. We have not selected it yet.

    What is most valuable?

    • Security posture
    • VPN

    What needs improvement?

    The GUI interface needs improvement. It also needs improvement with the VPCs.

    For how long have I used the solution?

    One to three years.

    What do I think about the stability of the solution?

    Because we are in proof of concept, the stability hasn't been stressed more than 30 percent.

    What do I think about the scalability of the solution?

    The scalability is okay. 

    The size of our environment is 46 offices.

    How is customer service and technical support?

    The technical support has been good.

    How was the initial setup?

    The integration and configuration with AWS was excellent.

    What's my experience with pricing, setup cost, and licensing?

    Our experience purchasing the solution through the AWS Marketplace was good.

    We like pricing through the AWS Marketplace.

    Which other solutions did I evaluate?

    We also were considering Palo Alto Networks.

    What other advice do I have?

    Look at this product and Palo Alto's product, then do a deep comparison analysis.

    It integrates with our VPC and Direct Connect Gateway.

    I am also using it on-premise. Compared to the AWS version, it is pretty transparent.

    Disclosure: IT Central Station contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
    it_user685407
    Firewall Engineer at a tech services company with 10,001+ employees
    Consultant
    We have been able to solve a lot of connectivity issues with these firewalls that the bigger name devices didn’t handle so well.

    How has it helped my organization?

    I can’t really say a firewall improves anything other than security, but we have been able to solve a lot of extranet connectivity issues with these firewalls that the bigger name devices didn’t handle so well.

    It is bomb proof as seen by the fact they are still in production use today. A simple human friendly command structure, making CLI edits and debug sessions easy and quick, means that they just don’t fail.

    The SRX is a different device. It is much more sensitive to unexpected power loss so we had to RMA several after unexpected site power outages. The command structure is also different so that I always need my cheat sheet when debugging on them.

    The NSM is its own beast. It's a 10 when it’s running properly, gives you all the info you need easily to make and document edits and monitor status of devices, but keeping it running well is almost a job in itself. It doesn’t manage its own database very well and it gets slow and unresponsive, often requiring user intervention on the server backend.

    What is most valuable?

    Currently we use Juniper products, SSG and SRX firewalls in about a 50/50 mix both standalone and in HA clusters. We also use their NSM for device management and logging.

    The SSG models are mostly EOL and are being replaced with new “Next Gen” firewalls. The SRX models will likely continue to be used internally as support will remain available for some time.

    We only use the firewall and virtual router options and they do what we need:

    • The firewall is easy to configure and testing shows we are blocking the threats.
    • The virtual routers make this solution a one box answer for our needs and simplify our internal networking. As they are built into the devices, they allow you to move and separate traffic in a number of ways on one set of hardware.

    They constitute a solid working solution that has been able to cope with any of the unique challenges that have come up.

    What needs improvement?

    While the OS supports a pretty full UTM option, we found in testing that the hardware was not powerful enough to run with all the bells and whistles turned on for the amount of traffic we process. So we use other hardware for those services meaning it’s not a deal breaker for us.

    What do I think about the stability of the solution?

    We have had no issues at all with the SSG models and the SRX model only had problems with sudden power loss occasionally.

    What do I think about the scalability of the solution?

    The only issue was that the Network Security Manager (which is EOL) was sold as supporting over 125 devices. That may be true if you are just managing the configurations but once you add in monitoring and logging it’s really only happy with fewer than 40 devices, as the database grows too big to deal with and needs constant maintenance.

    How are customer service and technical support?

    I would rate the technical support as average, as the calls were responded to quickly but as usual it depends on who you happen to get on the phone that day. Some were very good, others times I had to ask for a different engineer to join the call.

    Which solution did I use previously and why did I switch?

    This solution was in place when I started so I cannot answer this question.

    How was the initial setup?

    The setup was straightforward and to get into a cluster consists of about ten commands. The hardest part is deciding on active/active or active/passive for your solution.

    What's my experience with pricing, setup cost, and licensing?

    I’m not involved in the financial side of the purchase. Our buyers handle that. Support and licensing comes in the usual tiers, SLA for repairs and/or options turned on in the device.

    Which other solutions did I evaluate?

    I know they left Check Point and looked at Cisco products before choosing Juniper, but that decision pre-dates my involvement.

    What other advice do I have?

    I would say get an SSG but they are EOL so for the SRX make sure you have the recovery boot system configured and a way to remote console the device.
    I know this sounds like a major problem but it’s not been that big an issue. We run HA and have same day replacement on them so if we lose one it’s not a major outage, just more work to do.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    Buyer's Guide
    Download our free Firewalls Report and find out what your peers are saying about Juniper, Netgate, Fortinet, and more!