| IP Address
Management |
Static addresses (IPv4 and IPv6)
|
| |
Dynamic Host Configuration Protocol (DHCP)
- DHCP server
- DHCP client
- DHCP address pools
- DHCP relay
- DHCP static mapping
|
| Internet
Protocols |
IPv4
- IP options
- Broadcast Internet Datagrams
|
| |
IPv6
- Routing and forwarding
- Global address configuration
- Internet Control Management Protocol (ICMP)
|
| |
Domain Name System (DNS)
- Proxy
- DNS with VPN
- Dynamic DNS (DDNS)
|
| |
| Routing
Protocols and Multicast |
Open Shortest Path First: OSPFv2 and OSPFv3
|
| |
Border Gateway Protocol: BGP4 and BGP4 extensions for IPv6
|
| |
Routing Information Protocol: RIPng and RIPv2
|
| |
Static routes: IPv4 and IPv6
|
| |
Neighbor Discovery Protocol and Secure Neighbor Discovery Protocol
|
| |
Intermediate System-to-Intermediate System (IS-IS)
|
| |
Routing over IPSec VPN tunnels
|
| |
Multiple virtual routers (VRs)
|
| |
Multicast
- Internet Management Protocol (ICMP)
- Protocol Independent Multicast (PIM)
- Distance Vector Multicast Routing Protocol (DVMRP)
- Single-source multicast
- Multicast Source Discovery Protocol (MSDP)
- Session Announcement Protocol (SAP) and Session Description
Protocol (/SDP)
|
| Encapsulations
|
Ethernet
- Media Access Control (MAC)
- 802.1p tagging
- Point-to-Point Protocol over Ethernet (PPPoE)
- Asychronous Transfer Mode (ATM)) for asymmetric digital
subscriber line (ADSL) or symmetric high-speed digital subscriber
line (SHDSL)
- Circuit cross-connect (CCC)
- Transnational cross-connect (TCC)
|
| |
Synchronous Point-to-Point Protocol (PPP)
|
| |
Frame Relay
|
| |
High-Level Data Link Control (HDLC)
|
| |
Serial encapsulation over RS-232, RS-449, X.21, V.35, and EIA-530
connections
|
| |
802.1Q filtering and forwarding
|
| |
Multilink Frame Relay (not supported on native serial interfaces)
|
| |
Multilink PPP
|
| Traffic
Management |
Three-level scheduling with weighted round-robin (WRR)
|
| |
Policing and shaping
|
| |
Class-based queuing with prioritization
|
| Security
|
Security policies
|
| |
Packet filters
|
| |
Zones
|
| |
Administrator authentication
Firewall authentication: passthrough and Web authentication
|
| |
Screens
|
| |
| |
Network Address Translation (NAT)
- Policy-based NAT-dst (dynamic and static)
- Static NAT (source and destination))
- Allow-incoming Table (dynamic NAT-dst and PAT)
- Interface Source Pool (dynamic NAT-src and PAT)
- Source Pool with PAT (dynamic NAT-src and PAT)
- Source Pool without PAT (dynamic NAT-src))
- Static Source Pool (Static NAT-src)
|
| |
Application Layer Gateways (ALGs) support, including the following
gateways:
- Internet Inter-ORB Protocol (IIOP)
- Winframe
- Session Initiation Protocol (SIP)
- H.323
- Media Gateway Control Protocol (MGCP)
- Skinny Client Control Protocol (SCCP)
- UNIX remote shell services
- File Transfer Protocol (FTP)
- Real-Time Streaming Protocol (RTSP)
- Trivial File Transfer Protocol (TFTP)
- SQLNET
- Domain Name System (DNS)
- Internet Control Message Protocol (ICMP)
- TALK
- NetShow
- Simple Network Management Protocol-GET (SNMP-GET)
|
| |
Generic routing encapsulation (GRE) and IP-over-IP.
GRE with IP multicast and GRE keepalive packets.
Fragmentation reassembly is not supported.
|
| |
Compressed Real-Time Transport Protocol (CRTP)
|
| |
Jumbo Frame Support
|
| IPSec VPNs
|
Policy-based and route-based IPSec VPNs
|
| |
Internet Key Exchange (IKE) key and manual key management
|
| |
IPSec peer types, with the following features:
- Static IP and dynamic IP addresses for remote access
- Remote access by means of user IKE peer and user-group
IKE peer
|
| |
IKE authentication preshared keys and certificates with the
following features:
- Certificate encodings: X509 and PKCS7
- RSA signatures
|
| |
128-bit, 192-bit, and 256-bit Advanced Encryption Standard (AES)
|
| |
56-bit Data Encryption Standard (DES) and 168-bit 3DES encryption
|
| |
MD5 and Secure Hash Algorithm (SHA-1) authentication. (For IPSec
IKE Phase 2, SHA-2 is also supported.)
|
| |
Antireplay (replay attack prevention)
|
| |
Next-hop tunnel binding
|
| |
| |
| System Management
|
JUNOScript XML application programming interface (API)
|
| |
J-Web browser interface—for Services Router configuration
and management
|
| |
JUNOS command-line interface (CLI)—for Services Router configuration
and management through the console, Telnet, SSH, or J-Web CLI terminal
|
| |
Simple Network Management Protocol: SNMPv1 and SNMPv2
|
| |
J-Flow flow monitoring and accounting
|
| |
Packet capture (PCAP)
|
| Traffic
Analysis |
Real-time performance monitoring (RPM)
|
| |
| |
J-Web event viewer
|
| Activity
Logging and Monitoring |
Traceroute
|
| |
System log
|
| |
RADIUS external administrator database support
|
| Administration
|
Configuration rollback
|
| |
Autoinstallation
|
| |
Button-operated configuration rescue (CONFIG)
|
| |
Confirmation of configuration changes
|
| |
Software upgrades
|
| |
Supports the following features for automating network operations
and troubleshooting:
- Commit scripts
- Operation scripts
- Event policies
|
|
Class of Service
|
- DiffServ
- Classification
- Traffic marking
- Scheduling
- Policing and shaping
- Intelligent drop mechanisms
- Link efficiency mechanism
- Policy management
|
