| Maximum Performance and Capacity | |
Firewall performance (large packets): 650 Mbps
Firewall performance (IMIX): 200 Mbps
Firewall + routing PPS (64 Byte): 75 Kpps
AES256+SHA-1/3DES+SHA-1 VPN performance: 65 Mbps
IPsec VPN Tunnels: 128
IPS (intrusion prevention system): 60 Mbps
Antivirus: 25 Mbps
Connections per second: 2,000
Maximum concurrent sessions: 16 K / 32 K
DRAM options: 512 MB / 1 GB DRAM
Maximum security policies: 384
Maximum users supported for J-SRX100S: 20
|
| Network Connectivity | |
Fixed I/O: 8 x 10/100
I/O slots: N/A
ExpressCard slot (3G WAN): No
WAN/LAN interface options: N/A
Optional maximum number of PoE ports: N/A
USB: 1
|
| Protocols | |
IPv4, IPv6, ISO Connectionless Network Service (CLNS)
|
| Routing and Multicast | |
Static routes
RIPv2
OSPF
IS-IS
Multicast ((Internet Group Management Protocol (IGMPv3), PIM, Session Description Protocol (SDP), Distance Vector Multicast Routing Protocol (DVMRP), source-specific))
MPLS
|
| IP Address Management | |
Static
Dynamic Host Configuration Protocol (DHCP) (client and server)
DHCP relay
|
| Encapsulations | |
Ethernet (MAC and tagged)
Point-to-Point Protocol (PPP) (synchronous)
Multilink Point-to-Point Protocol (MLPPP)
Frame Relay
Multilink Frame Relay (MLFR) (FRF.15, FRF.16)
High-Level Data Link Control (HDLC)
Serial (RS-232, RS-449, X.21, V.35, EIA-530)
802.1q VLAN support
Point-to-Point Protocol over Ethernet (PPPoE)
|
| Traffic Management | |
Marking, policing, and shaping
Class-based queuing with prioritization
Weighted random early detection (WRED)
Queuing based on VLAN, data-link connection identifier (DLCI), interface, bundles, or filters
|
| Security | |
Firewall, zones, screens, policies
Stateful firewall, ACL filters
Denial of service (DoS) and distributed denial of service (DDoS) protection (anomaly-based)
Prevent replay attack; Anti-Replay
Unified Access Control
UTM (Optional license) – (High memory model only)
Antivirus, antispam, Web filtering, IPS
Content Security Accelerator (High memory model only)
ExpressAV option (High memory model only)
Content filtering
|
| VPN | |
Tunnels (generic routing encapsulation, IP-in-IP, IPsec)
IPsec, Data Encryption Standard (DES) (56-bit), triple Data Encryption Standard (3DES) (168-bit), Advanced Encryption Standard (AES) (256-bit) encryption
Message Digest 5 (MD5) and SHA-1 authentication
Access Manager: Dynamic VPN Client. Browser based remote access feature requiring a license.
|
| Voice Transport | |
FRF.12
Link fragmentation and interleaving (LFI)
Compressed Real-Time Transport Protocol (CRTP)
|
| High Availability | |
VRRP
Stateful failover and dual box clustering via JSRP
Backup link via 3G wireless or other WAN
|
| IPv6 | |
OSPFv3
IPv6 Multicast Listener Discovery (MLD)
BGP
Quality of service (QoS)
|
| SLA and Measurement | |
Real-time performance monitoring (RPM)
Top talkers (sessions, packets, bandwidth usage)
J-Flow flow monitoring and accounting services
|
| Logging and Monitoring | |
Syslog
Traceroute
|
| Administration | |
Network and Security Manager support
STRM Series Security Threat Response Managers support
Advanced Insight Solutions support
External administrator database (RADIUS, LDAP, SecureID)
Auto configuration
Configuration rollback
Rescue configuration with button
Commit confirm for changes
Auto record for diagnostics
Software upgrades
J-Web
|
| Routing | |
BGP instances: 5
BGP peers: 8
BGP routes: 4 K / 8 K
OSPF instances: 4
OSPF routes: 4 K / 8 K
RIP v1 / v2 instances: 4
RIP v2 routes: 4 K / 8 K
Static routes: 4 K / 8 K
Source-based routing: Yes
Policy-based routing: Yes
Equal-cost multipath (ECMP): Yes
Reverse path forwarding (RPF): Yes
|
| MPLS | |
Layer 2 VPN (VPLS): Yes
Layer 3 VPN: Yes
LDP: Yes
RSVP: Yes
Circuit Cross-connect (CCC): Yes
Translational Cross-connect (TCC): Yes
|
| Multicast | |
IGMP (v1, v2, v3): Yes
Protocol independent multicast (PIM) sparse mode (SM): Yes
PIM dense mode (DM): Yes
PIM source-specific multicast (SSM): Yes
Multicast inside IPsec tunnel: Yes
Translational Cross-connect (TCC): Yes
|
| IPsec VPN | |
Concurrent VPN tunnels: 128
Tunnel interfaces: 10
DES (56-bit), 3DES (168-bit) and AES (256-bit): Yes
MD-5 and SHA-1 authentication: Yes
Manual key, Internet Key Exchange (IKE), public key infrastructure (PKI) (X.509): Yes
Perfect forward secrecy (DH Groups): 1,2,5
Prevent replay attack: Yes
Dynamic remote access VPN: Yes
IPsec NAT traversal: Yes
Redundant VPN gateways: Yes
|
| User Authentication and Access Control | |
Third-party user authentication: RADIUS, RSA SecureID, LDAP
RADIUS accounting: Yes
XAUTH VPN, Web-based, 802.X authentication: Yes
PKI certificate requests (PKCS 7 and PKCS 10): Yes
Certificate Authorities supported: VeriSign, Entrust, Microsoft, RSA Keon, iPLanet, (Netscape), Baltimore, DoD PKI
|
| Virtualization | |
Maximum number of security zones: 10
Maximum number of virtual routers: 3
Maximum number of VLANs: 16
|
| Encapsulations | |
Ethernet (MAC and tagged)
Point-to-Point Protocol (PPP) (synchronous)
Multilink Point-to-Point Protocol (MLPPP)
Frame Relay
Multilink Frame Relay (MLFR) (FRF.15, FRF.16)
High-Level Data Link Control (HDLC)
Serial (RS-232, RS-449, X.21, V.35, EIA-530)
802.1q VLAN support
Point-to-Point Protocol over Ethernet (PPPoE)
|
| Address Translation | |
Source NAT with Port Address Translation (PAT): Yes
Static NAT: Yes
Destination NAT with PAT: Yes
|
| IP Address Assignment | |
Static: Yes
DHCP, PPPoE client: Yes
DHCP, PPPoE client: Yes
DHCP relay: Yes
|
| L2 Switching | |
VLAN 802.1Q: Yes
Link Aggregation 802.3ad/LACP: Yes
Jumbo Frame (9216 Byte): No
Spanning Tree Protocol (STP) 802.1D, RSTP 802.1w, MSTP 802.1s: Yes
Authentication 802.1x Port based and multiple supplicant: Yes
|
| Traffic Management Quality of Service (QoS) | |
Guaranteed bandwidth: Yes
Maximum bandwidth: Yes
Ingress traffic policing: Yes
Priority-bandwidth utilization: Yes
DiffServ marking: Yes
|
| High Availability | |
Active/active—L3 mode: Yes
Active/passive—L3 mode: Yes
Configuration synchronization: Yes
VRRP: Yes
Session synchronization for firewall and VPN: Yes
Session failover for routing change: Yes
Device failure detection: Yes
Link failure detection: Yes
|
| Firewall | |
Network attack detection: Yes
DoS and DDos protection: Yes
TCP reassembly for fragmented packet protection: Yes
Brute force attack mitigation: Yes
SYN cookie protection: Yes
Zone-based IP spoofing: Yes
Malformed packet protection: Yes
|
| Unified Threat Management | |
Intrusion Prevention System (IPS): Yes
Protocol anomaly detection: Yes
Stateful protocol signatures: Yes
Intrusion prevention system (IPS) attack pattern obfuscation: Yes
Customer signatures creation: Yes
Frequency of updates: Daily and emergency
Express AV (packet-based AV): No
File-based antivirus: Yes
Signature database: Yes
Protocols scanned: POP3, HTTP, SMTP, IMAP, FTP
Antispyware: Yes
Antiadware: Yes
Antikeylogger: Yes
Antispam: Yes
Integrated Web filtering: Yes
Redirect Web filtering: Yes
Content filtering: Yes
Based on MIME type, file extension, and protocol commands: Yes
|
| System Management | |
Web UI: Yes
Command-line interface: Yes
Network and Security Manager: Yes
STRM Series: Yes
|
| Flash and Memory | |
Memory minimum and maximum (DRAM): 512 MB (Accessible), 1 GB
Memory slots: Fixed memory
Flash memory: 1 GB
USB port for external storage: Yes
|
| Dimensions and Power | |
Dimensions (W x H x D): 8.5 x 1.4 x 5.8 in (21.6 x 3.6 x 14.7 cm)
Weight (Device and Power supply): 2.5 lb (1.1 kg)
Rack mountable: Yes, 1 RU
Power supply (AC): 100-240 VAC, 30 W
Maximum PoE power: N/A
Average power consumption: 10 W
Input frequency: 50-60 Hz
Maximum current consumption: 0.25 A @ 100 VAC
Maximum inrush current: 60 A
Average heat dissipation: 35 BTU/hr
Maximum heat dissipation: 80 BTU/hr
Redundant power supply (hot swappable): No
Acoustic noise level (Per ISO 7779 Standard): 0 dB (fanless)
Operational temperature: 32° to 104° F, (0° to 40° C)
Nonoperational temperature: 4° to 158° F, (-20° to 70° C)
Humidity: 10–90% noncondensing
Mean time between failures (Telcordia model): 24.8 years [SRX100B], 24.8 years [SRX100H]
|
Choose Dell PowerConnect J-SRX100 Router
