Juniper IDP 600F

The Juniper Networks Intrusion Detection and Prevention (IDP) system is a turnkey appliance-based system which uses as many as eight detection methods to detect malicious network traffic.

The IDP 600F is capable of operating in both in-line mode (as an IPS) or as a passive Intrusion Detection System attached to a SPAN or mirror port on a switch.

The IDP 600F is designed for 500 Mpbs networks and can handle its maximum rated bandwidth under most normal traffic conditions likely to be encountered on a sub-gigabit network. On a typical network, we would deem the 500Mbps rating to be conservative. Latency is excellent under all conditions and all packet sizes providing the device is not subjected to heavy DOS/DDOS attacks. We recommend that the device is deployed behind an effective attack mitigation appliance.

We found the IPD 600F to be very stable and reliable, coping with our extensive reliability tests with ease and without blocking any legitimate traffic or succumbing to common evasion techniques.

The management system has been well designed to handle management and configuration of large numbers of sensors across the enterprise. Policy definition and deployment is extremely flexible and powerful, and the alert handling and reporting/forensic capabilities are extensive - some of the most flexible we have seen in terms of drill-down and quick reporting capabilities.

Subscribe to eNews

Get notified of new reports and other topics!

Name:

Email:

Quick Links

"NSS Labs reports help us internally deploy security products that meet PCI compliance requirements, as well as helping our merchant population"

Tom Landsness
VP of Operations
Kincaid Technologies, Inc

nsslabs.com