cSRX Container Firewall
More and more companies are relying on container technology for developing applications. The Juniper cSRX offers advanced security services, such as content security, AppSecure, and unified threat management in a container form factor.
By using Docker containers, the overhead is drastically reduced, because each container uses the same OS as the host. Regardless of the number of containers in a server, only one OS can be used at a time. Thanks to the lightweight of the containers, a server can run many more container instances than virtual machines (VMs) and is therefore much better in use. Due to the small footprint and the Docker container management system, the cSRX provides flexible, concentrated security implementations.
The cSRX container firewall differs from VMs in several ways. The cSRX has no guest OS overhead, a significantly smaller footprint, and is easier to migrate or download. It uses significantly less memory and the startup time is in sub-seconds - resulting in higher concentration at a lower cost.
The Junos Space Security Director improves policy configuration, management and visibility for both physical and virtual instances with a common, centralised platform. Additionally, the Security Director provides a single pane of glass for consistently managing firewall policies across vSRX, cSRX, and SRX platforms.
For Service Providers and organisations with service-oriented applications, the cSRX has a wide range of containerised security services, including: intrusion prevention system (IPS), AppSecure, and unified threat management (UTM). These capabilities of the cSRX support a wide range of Network Functions Virtualization (NFV) use cases.
The cSRX can also be integrated with Juniper Contrail and OpenStack. Integration with third-party SDN solutions is possible through common management within the SRX family.