• Purpose-built, high-performance, integrated security system for medium to large enterprises and carriers
• Virtual System support for logical partitioning of the system into separate firewall and/or VPN domains
• GPRS support to provide mobile operators with a purpose-built, high-performance, security solution for protecting GPRS data networks

The Juniper Networks NetScreen-500 system is a purpose-built, integrated security system that provides a flexible, high-performance solution for medium and large enterprise central sites and service providers. The NetScreen-500 network security system integrates firewall, DoS, VPN, and traffic-management functionality in a low-profile, modular chassis. It provides high levels of total throughput for firewall and VPN plus support for virtual systems and security zones. Its flexible and resilient hardware architecture incorporates modular physical interfaces, redundant power supplies, fans, and high-availability interfaces. The NetScreen-500 system is well suited to match the peak load and strong deterrence requirements of the most demanding environments.

Key features and benefits of the NetScreen-500 system and the NetScreen-500 GPRS system include the following:

• Integrated security system with security-optimized hardware, operating system, and applications, providing a higher level of security than software-based solutions
• Comprehensive, high-availability solution for sub-second failover between interfaces or devices
• Full mesh configurations to allow for redundant physical paths in the network, thereby providing maximum resiliency and uptime
• Virtual System support to allow partitioning into multiple security domains, each with a unique set of administrators, policies, VPNs, and address books
• Interface flexibility for varying network-connectivity requirements and future growth requirements
• Virtual Router support to map internal, private, or overlapped IP addresses to a new IP address, providing an alternate route to the final destination and concealing it from public view
• Customizable security zones to increase interface density without additional hardware expenditures, lower policy-creation costs, contain unauthorized users and attacks, and simplify management of VPNs
• Redundant VPN gateways for an additional level of redundancy in a VPN network, by allowing backup tunnel definitions in the event of a lost VPN connection
• Firewall attack protection on every interface, for a secure internal as well as external network
• Transparent mode to allow the device to function as a Layer 2 IP security bridge, providing firewall, VPN, and DoS protections, but with minimal change to the existing network
• Management through graphical Web UI, CLI, or the NetScreen-Security Manager central management system
• Policy-based management for centralized, end-to-end life-cycle management