Juniper SRX Series Firewall Reviews

I work with firewalls. We have a team to manage them. We also have services that are related to hosting and we provide solutions related, and we set up everything.

We manage their connections remotely.

Every firewall has different use cases. Juniper is zone-based and the architecture matters. It offers convenience for the users to have remote access and ensures a secure and safe authentication.

When compared to Palo Alto, Juniper is a better choice when it comes to the enterprise network and connectivity.

Juniper SRX is pretty fast to configure and make it work.

Once it is configured, it's fine, which is not the case with other firewalls.

Juniper is user-friendly. It works perfectly well.

Upgrades are available.

Juniper SRX has a roll-back feature which is very interesting. As no one is perfect and mistakes do happen, we can roll it back to the previous configuration.

This solution can handle a lot. It's manageable when you know the parameters, the features, and the number of policies of your firewall.

The user interface is something that Juniper needs to improve. 

We have used many models of Juniper SRX. Based on the scale and the environment of the customer, we choose what is best for them.

Most of what we use are between the SRX300 and SRX345. These are the most commonly used series.

Simple, mid-scale establishments can use these models.

It is more or less stable. I prefer it for its stability as a firewall.

We are not a large team, we have 20 members in our company.

It's a scalable solution.

The support could be somewhat improved with Juniper.

We have also had firewalls from Palo Alto as well as FortiGate. I prefer Palo Alto, comparatively, it is better.

We find that the technical support with FortiGate is very slow. We are not able to get the proper help in spite of having the AMC add-on.

It is not at all complex. It's easy. 

The initial setup is straightforward.

The maintenance requirements are based on the customer's agreement and whether it is to manage the firewall and maintain it.

It is best suited to an enterprise-level, as the mid-range companies may find that the cost is not affordable.

Previously, we had an implementation plan for a client. We verified the different types of firewalls and the support and how it works. We evaluated Cisco, Juniper, and FortiGate.

From the previous recommendation, we saw all of the technical aspects of the different firewalls. Based on that information, we were able to clarify and come to a conclusion and chose the firewall that was best suited to the client's needs.

Recently, because of the price, we have moved to Juniper.

Most of the AMCs are costly.

We choose our solution based on many reasons. One is the cost, which is the primary reason, and the second is the performance. Performance in this context includes how it loads, and how it handles. Based on these parameters, we choose the firewalls.

At this time, we are not using cloud-based features. It is something we anticipate in the future. We are not using Juniper cloud-based. When you have a setup at an architecture level, they will not have drastic changes until, or unless they are financially stable and they want a higher level of architecture to be implemented.

The change will not happen suddenly, even if you have an enterprise core application it won't be done in a different way. There will be a roadmap done. We also have the SSG firewalls.

There is a lot of work in the pipeline, it might take more time to change the firewalls that need upgrading.

When we use so many products, we have to follow the hierarchy. We don't commonly work in a UI environment.

I would recommend this solution to others who are interested in using it. It is good, and it is faster and easier to maintain. The price is not bad and when compared with Cisco, I find that Juniper is better. It's a good product for enterprise companies. 

We have a custom-built model that makes it very simple to migrate.

I would rate Juniper SRX an eight out of ten.

We use the solution for protection and security. We primarily use the solution for an internal firewall.

If you require any particular rule that needs to be modified, any particular rule that needs to be fine-tuned, the solution will give you all the details regarding how to fine-tune the policy, including the destination, IP, et cetera. You can easily fine-tune whatever you need to in Juniper. It's easy to implement and meets our patience threshold. 

The dashboard is very helpful. It's extremely useful in terms of putting the necessary policies in place.

I handle the operation part. I'm just putting policies, et cetera, on Juniper. For tasks such as those, it is very easy and it is a comfortable, straightforward process.

The solution has proven to be quite stable.

Technical support has been quite helpful.

I've noticed that the management interface could use some updates and upgrades.

The dashboard can be updated. 

The reporting could be more robust and in-depth.

I've looked into the Check Point firewall a bit and I've found that its anti-spoofing is a good feature. Juniper should consider adding that as a feature.

I've only just begun to really use the product. I only have one year of experience so far. It's still new to me. Therefore, it's hard to make any notes on any features or improvements, as I'm still familiarizing myself with everything. I need time to compare it to other firewalls, and I have not gone through the process of doing that just yet. I need more time.

I've been dealing with the solution for about one year. It hasn't been that long. 

It is really stable. I've seen Juniper work well in my other companies as well. It is very good, in terms of stability. There are no bugs or glitches. It doesn't crash or freeze. The performance is reliable.

Overall, the scalability is very good. A company should have no trouble with scaling if it would like to do so.

We have about 2,000 users currently. They cover various roles in our organization. It's not just used by a specific team.

The technical support on offer is very good. Whenever I would have some issues, they have responded on time and they have really good knowledge of the product. We've been quite satisfied overall.

We use a variety of solutions, including Cisco and Check Point.

I did not handle the initial implementation. That was handled by someone else. Therefore, I can't really share any insights on the process. I do not know if it was easy or difficult, or how long it really took to deploy.

I do not handle the licensing arrangements. That's handled by management. Therefore, I can't speak to how much it costs the organization or how often we pay a licensing fee.

We're just a customer and an end-user.

In general, on a scale from one to ten, I'd rate this product at a nine. We've been quite satisfied with its capabilities so far. 

I'd recommend the solution, however, it really depends on what an organization needs. There are various factors, like pricing, for example, that should be taken into account when looking at solutions.

We use the solution as a device to meet NTLS connections, a firewall, and we are thinking about using it for SD-WAN.

The firewall features and the routing capability are the most valuable. The interface is straightforward and we have not had any problems with integration.

Their models for service providers could improve. We are an MSP, we resell services and I think the company could have a better program for service providers because our needs are different from our regular customer that is buying it for.

More recently we started using the GUI interface and that looks pretty shameful and needs improvement.

Juniper has a different product line that has artificial intelligence capabilities. In the future, we would like to see that extended to the SRX line.

I have been using the solution for approximately two years.

We have found the solution to be very stable. We have had literally little to no hardware or device failures in the field and have not had any customer complaints. In the years we have been using the solution we have not had any issues using it.

The scalability is good. The solution is best for small to medium size businesses.

We had to use the support in a couple of instances. When we have used the support, it was good. They were responsive and able to resolve our issues. There is also some community support online that I have found to be helpful.

The installation difficulty depends on the setup. Initially, when we started using the solution, we were using the command line interface and it took us a while to learn the commands, eventually, it becomes straightforward. 

The full deployment took us approximately one month. We typically need only one person for deployment, and we have a service operation center that manages the devices and provides the maintenance.

The price could improve, it is a bit expensive. Our licensing cost is approximately $120.00 USD annually. There are some extra fees, for example, the GUI has an orchestrator that has its own fees. 

Some of our clients have also seen similar solutions from our competitors such as Cisco and Fortinet. I think technically they are all very good products. However, for us we were looking for a product that was stable and had good support, this is the reason we chose Juniper. We package Juniper as part of our managed service to our customers.

My advice would be, generally, it is a good product with helpful support. The one thing we would like to see changes in is the pricing could be better.

I rate Juniper SRX an eight out of ten.

The Juniper SRX is our edge firewall.

We have three in total. Two of them are set up in an HA pair, and the other is standalone in another city.

This product has definitely not improved the way our organization functions.

I am familiar with Cisco products and when we purchased the Juniper units, they told us that if you know Cisco IOS then Juniper SRX is really easy. It isn't. It would be like saying that if you know English, then Chinese is really easy. The reality is that it's completely different. There's no commonality and the philosophies are different. Everything is different.

We purchased it for the basic firewall features but added UTM a little bit later.

The reliability needs to be improved. We purchased three devices and all three have been replaced under RMA. We've had other problems where they have needed to be rebooted.

A couple of times I've run into the problems where they have to integrate with other systems. The Juniper support really doesn't have a clue about other systems. They know Juniper and if everything is Juniper then it's great. However, we have Windows RADIUS Servers and I need Juniper-specific settings for them. Unfortunately, they're having a real hard time telling me what those should be, and they keep referring back to it being Microsoft, which they don't support. When they say that I need to speak with Microsoft, I remind them that these are things that are defined in the Juniper configurations that I need to set up. They seem to forget that not everybody is exclusively Juniper.

We bought three Juniper SRX345s about four years ago, and we are still using them today.

We have had glitches that necessitating rebooting the device. For example, a couple of times, they just stop routing on certain VLANs, and one time, it was our server VLANs, so our DNS was down and no one could get to anything. People thought that our internet connection down but actually, it was the DNS and the routing to it had been stopped.

We're a relatively small organization so we didn't scale it.

All of the people in the organization are protected by the devices.

I have used technical support quite a bit, and they are really good. I would rate them an eight out of ten. There is almost always room for improvement.

Prior to the Juniper SRX devices, we had some Cisco ASAs. They were reaching end-of-life so we had to replace them.

At the time we were shopping, Cisco was behind in their technologies. Had they kept up with the technology and provided a comparable device at a competitive price, we would have stayed with Cisco.

We hired a contractor to set up the units.

The IT manager and I, being the network admin, are the only ones who touch it. We try to keep the software updated on all of our devices.

My advice to anybody who is implementing this product is to make sure that they fully understand Junos OS. Over the past four years, I have become moderately proficient with Juniper SRX. There still a lot to learn but I also have contractors that I can get assistance from if needed. For example, currently, I'm trying to set up RADIUS and I'm having some problems with it.

In summary, I think that their design philosophy is really good, but the execution leaves a bit to be desired.

I would rate this solution a six out of ten.

The GUI of the solution is quite good. It's also very different from other solutions. On others, if you need to configure anything, you can do it all from the default gateway. Cisco, for example, has a bit of a more difficult process. Juniper's GUI is easier and it makes configuration easier.

Troubleshooting with the solution is quite easy. If you compare the process to, for example, Fortigate, Juniper is much easier.

The speed of the solution is very good.

The initial setup is very easy.

While the GUI is pretty good on the Juniper side, there can still be tweaks made to it that will make it even better.

I've been using the solution for two years or so.

The stability has been good so far. We haven't had issues with bugs or glitches. It's not a solution that crashes a lot of freezes up. We find it very reliable.

The scalability potential depends on the customer. Some customers are working only on the edge with smaller systems and the other environment is connected to Cisco switches. Some clients mix up switches and use HP or Cisco. Some like ASA, however, that's more expensive. Many go with SRX as an affordable option. 

I have reached out to Juniper tech support a couple of times. I recall the experience being good. I got the answers I needed. I've used technical support from Sophos and Cisco in the past, and in comparison, I find Juniper to be quite good. I'd say we are satisfied with the level of support provided. 

I've used Cisco and Fortigate solutions, among others, in the past as well. I find Juniper easier to use from a GUI aspect. Cisco is better from a CLI perspective.

We did not find the initial setup to be complex. The implementation was straightforward and simple. It didn't really give us any trouble.

The pricing of the product is pretty good. It's less than Cisco, which can be expensive for some organizations.

Our client is a medium, small branch company. When they purchased this firewall, they understood that they could use it for a couple of years.

I have a client that works with Juniper 4200 and 4300 and they find the solution to be very user-friendly.

Overall, I would recommend the solution as it is easy to use and has a pretty good GUI. Customers really seem to like it.

In general, on a scale from one to ten, I would rate it at an eight.

We use Juniper for EEE routing and we also use the gateway feature.

The most valuable features are routing and policy security.

The EEE security controls allow us to make policy restrictions, so I can customize port numbers to allow or limit control.

The Juniper SRX protects against DDoS attacks. 

When we first tested the serial interface on our model, it did not work.

It should be easier to escalate support tickets.

We have been working with Juniper SRX for eight or nine years.

We sized this solution based on our bandwidth, so scalability has not been a problem.

The support that we receive from the partner is good. They are available if you are looking for a replacement or an upgrade, and they worked with me when it came to sizing the router according to our bandwidth.

They were also able to find a workaround to the problem that we were having with the serial interface not working on our SRX550-M.

The only issue with technical support is that it depends on the escalation.

We also have a small number of Cisco routers but we rely primarily on Juniper. The Cisco products are more expensive.

The initial setup is straightforward.

Overall, this is a really good product.

I would rate this solution an eight out of ten.

We use Juniper SRX as a firewall mainly, for security and securing the network.

Juniper SRX is a very powerful firewall and sometimes can be used as a router.

I think Juniper SRX should have a GUI. Some of the competitors are already implementing GUI for the firewall.

I have been working with Juniper SRX for sixteen years.

Juniper SRX is a stable solution.

The scalability of Juniper SRX is acceptable.

Technical support initially is not that fast, if the case requires escalation, the other levels of support are fast.

The setup is a straightforward configuration, but the security customization may take time.

I would rate Juniper SRX a nine out of ten.

Juniper SRX is used for NCLS networks as well as fiber to the home.

We are a reseller of Juniper.

Juniper SRX has helped in the financial success of our organization.

The most powerful feature in Juniper SRX is definitely NCLS.

Aside from the updates, I am satisfied with everything this solution has to offer.

I'm satisfied with its routing, firewalling, and web filtering.

Juniper's product updates are extremely slow, and competitors are rapidly keeping up. It slowly updates the model.

Juniper SRX lacks email protection, for example. it is not malware-protected. In the case of malware, you are purchasing a software package from vendors through Juniper. They do not sell their own products. 

It lacks the Sandbox as well as the CM. The CM is available from Juniper, but it is manufactured by IBM rather than Juniper, despite its name.

I have been using Juniper SRX since 2012, or 2013. This solution is still being used today.

We are working with the most recent up-to-date version.

The stability of Juniper SRX is perfect.

The scalability is amazing.

We have approximately 1,000 users in our organization.

Our usage is moderate.

Technical support is a little worse than Cisco but better than everybody else.

Previously, we worked with several solutions. We switched to Juniper SRX because of the pricing, scalability, and performance.

The initial setup is straightforward. It's very easy.

The time it takes to deploy is determined by the one you choose. It can take a week or less.

I wouldn't be able to tell the amount of staff that is required to update the solution because I am not involved in the process myself.

I am a third-party integrator.

Yes, we have seen a return on investment.

Make sure you have qualified personnel, because qualified personnel may not be as readily available in your country as Cisco professionals, for example.

I would rate Juniper SRX a nine out of ten.