Intrusion Detection and Prevention (IDP)
- Market-leading performance with 10 Gbps of real-world throughput
- Purpose-built scalable IPS appliances for small business to large enterprise and service providers
- A centralized, rule-based management solution offering granular control over the system's behavior
Overview
Juniper Networks intrusion Detection and Prevention (IDP) products offer the latest capabilities in in-line network Intrusion Prevention System (IPS) functionality to protect the network from a wide range of attacks. Using industry-recognized stateful detection and prevention techniques, Juniper Networks IDP provides zero-day protection against worms, trojans, spyware, keyloggers and other malware from penetrating the network or spreading from already infected users.
Juniper Networks IDP not only helps protect networks against attacks, it provides information on rogue servers as well as types and versions of applications and operating systems that may have unknowingly been added to the network. Application signatures, available on the Juniper Networks IDP, goes a step further and enables accurate detection of specific applications such as peer-to-peer or instant messaging. Armed with the knowledge of specific applications running in the network, administrators can more easily enforce security policies and maintain compliance with corporate application use policy. Juniper Networks IDP also provides DiffServ markings to allow the routers to enforce bandwidth limitations on non-essential applications. Not only can administrators control the access of specific applications, but they can ensure that business-critical applications receive a predictable quality of service.
Juniper Networks IDP products are managed by Juniper Networks NetScreen-Security Manager (NSM), a centralized, rule-based management solution offering granular control over the system’s behavior. NSM also provides easy access to extensive logging, fully customizable reporting, and management of all Juniper firewall/VPN/IDP systems from a single user interface. With the combination of highest security coverage, granular network control and visibility and centralized management, Juniper Networks IDP is the best solution to keep critical information assets safe.
Features & Benefits
| Feature | Feature Description | Benefit |
|---|---|---|
| Stateful Signature Detection | Signatures are applied only to relevant portions of the network traffic determined by the appropriate protocol context. | Minimize false positives. |
| Protocol Anomaly Detection | Protocol usage against published RFCs is verified to detect any violations or abuse. | Proactively protect network from undiscovered vulnerabilities. |
| Traffic Anomaly Detection | Heuristic rules detect unexpected traffic patterns that may suggest reconnaissance or attacks. | Proactively prevent reconnaissance activities or block Distributed Denial of Service (DDoS) attacks. |
| QoS/DiffServ Marking | Packets are marked using DiffServ code point (DSCP). | Optimize network and ensure necessary bandwidth for business-critical applications. |
| VLAN-Aware Rules | Unique policies are applied to different VLANs. | Apply unique policies based on department, customer and compliance requirements. |
| Role-Based Administration | More than 100 different activities can be assigned as unique permissions for different administrators. | Streamline business operations by logically separating and enforcing roles of various administrators. |
| Domains | Enable logical separation of devices, policies, reports and other management activities. | Conform to business operations by grouping of devices based on business practices. |
| IDP Reporter | Pre-configured real-time reporting capability available in each IDP appliance. | Provide detailed real-time reports from each IDP appliance installed in the network without taxing the central IT organization. |
| Profiler* | Capture accurate and granular detail of the traffic pattern over a specific span of time. | Provide details on what threats are encountered by the network as well as the mix of application traffic. |
*Profiler feature is not available with the IDP 8200.
Specifications
| IDP 75 | IDP 250 | IDP 800 | IDP 8200 | |
|---|---|---|---|---|
| Maximum Throughput | 150 Mb | 300 Mb | 1Gb | 10 Gb |
| Maximum Number of Sessions | 10,000 | 70,000 | 500,000 | 5 Million |
| Operational Modes | Passive sniffer, inline bridge, inline Proxy-ARP, and inline router | |||
| Detection Mechanisms | 8 including Stateful Signatures and backdoor detection | |||
| Signature Updates | Daily and emergency | |||
| Number of traffic Interfaces | Two RJ-45 Ethernet 10/100/1000 with bypass | Eight RJ-45 Ethernet 10/100/1000 with bypass | Ten RJ-45 Ethernet 10/100/1000 with bypass | Any Combination of four Module I/O cards:
|
| High-Availability Support | Integrated Bypass | Optional Bypass | ||
All product specifications can be found in the datasheet: Juniper Networks IDP 75/250/800/8200
606 KB
| IDP 50 | IDP 200 | IDP 600 C/F | IDP 1100 C/F | |
|---|---|---|---|---|
| Maximum Throughput | 50 Mb | 250 Mb | 500 Mb | 1 Gb |
| Maximum Number of Sessions | 10,000 | 70,000 | 220,000 | 500,000 |
| Operational Modes | Passive sniffer, inline bridge, inline Proxy-ARP, and inline router | |||
| Detection Mechanisms | 8 including Stateful Signatures and backdoor detection | |||
| Signature Updates | Daily and emergency | |||
| Number of Interfaces | 2 10/100/1000 traffic ports & 1 10/100/1000 mgmt port | 8 10/100/1000 traffic ports, 1 10/100/1000 mgmt port & 1 10/100/1000 HA port | 10 10/100/1000 or 8 Fiber SX + 2 10/100/1000 traffic ports, 1 10/100/1000 mgmt port & 1 10/100/1000 HA port | 10 10/100/1000 or 8 Fiber SX + 2 10/100/1000 traffic ports, 1 10/100/1000 mgmt port & 1 10/100/1000 HA port |
| High-Availability Support | Integrated Bypass | Integrated bypass for copper gigabit traffic ports, load sharing, clustering and 3rd party failover | ||
All product specifications can be found in the datasheet: Juniper Networks IDP 50/200/600/1100497 KB
Demos & Tutorial
Tutorial
Evaluating Intrusion Prevention Systems
In this tutorial, walk through the various criteria to consider when evaluating the best Intrusion Detection and Prevention System. Review the current security landscape including the growth of vulnerabilities, hackers and threats from new technologies. Understand the evolution of the attacks along with the IPS solutions. Finally, decipher through the various performance, security and management claims to identify the most appropriate IPS solution. See the tutorial
Demos
Protecting Your VoIP Network from External Threats
This high level demo provides insight into the growing VoIP market as well as the security concerns in deploying such new technologies into enterprise networks. It then illustrates the features in the Juniper IDP product line to secure enterprise VoIP networks. See the demo
Safeguarding Your Network
In this demo, learn how attackers infiltrate the network and what role different technologies can play to help keep critical assets safe, focusing on intrusion-prevention technology. Understand how different detection mechanisms look for different types of attacks, and how to deflect an attack once it is detected. Learn the importance of security management, and the time and cost efficiencies that can be gained with a strong, centralized rule-based approach. Finally, take a tour of the Juniper Networks IDP solution to see how to create a policy, write custom Stateful Signatures, investigate security incidents, pull reports, and take advantage of Juniper Networks unique Enterprise Security Profiler to proactively protect the network. See the demo
Literature
Datasheet
At-a-Glance
Brochure
Application Note
Feature Briefs
- Accurate Attack Detection241 KB
- Attack-Prevention Capabilities77 KB
- Integrated Incident Management196 KB
- Management & Reporting300 KB
- Architecture Overview148 KB
Solution Brief
- Securing VoIP Deployments with IDP Business Implications109 KB
- Coordinated Threat Control with Secure Access SSL VPN and IDP Intrusion Prevention31 KB
White Papers
- Securing Internal Networks: The Evolving Role and Requirements for Intrusion Prevention Systems649 KB
The occurrence of successful attacks is evidence that perimeter-centric defenses are not sufficient. This paper explores the conditions that are driving the need for enhanced, internal network security. Learn how Intrusion Prevention Systems (IPS) must evolve and about the key requirements that should be met for a solution that operates at the core of the enterprise network, and other strategic locations. Juniper Networks Intrusion Detection and Prevention (IDP) products offer the latest capabilities for in-line network IPS functionality that protects the network from a wide range of attacks. - Six Integral Steps to Selecting the Right IPS for your Network242 KB
- Juniper Networks Enterprise Security Profiler (ESP)640 KB
- Network Awareness: Adopting a Modern Mindset150 KB
- Competitive Overview of Statistical Anomaly Detection200 KB
- Juniper Networks IDP 600F v3.1 receives NSS Approved award1.9 MB
Case Studies
- Virginia Hospital Center45 KB
- Blue Square45 KB
- TDS Telecom35 KB
- Landmark Credit Union46 KB
- Space Coast Credit Union48 KB
Buyer's Guide
Application Note
Technical Note
Press Article
View all Juniper Networks Literature >
Multimedia
Video
- IDP Application Identification Feature Demo - 6:02 Minutes
3D Model
Demo
- IPS Overview - Learn how you can safeguard your network with a proactive and holistic approach - from firewall, to VPN, to intrusion protection. This demo will walk you through specific security vulnerabilities you hear about or experience every day. Also hear about how Juniper Networks makes it easy for you to control your network security to keep your information and assets safe. Watch the Demo.
