Understanding vSRX with Microsoft Hyper-V

This section presents an overview of vSRX as deployed in Microsoft Hyper-V.

vSRX Overview

vSRX is a virtual security appliance that provides security and networking services at the perimeter or edge in virtualized private or public cloud environments. vSRX runs as a virtual machine (VM) on a standard x86 server. vSRX is built on the Junos operating system (Junos OS) and delivers networking and security features similar to those available on the software releases for the SRX Series Services Gateways.

Figure 1 shows the high-level architecture for vSRX.

Figure 1: vSRX Architecture



vSRX Architecture

vSRX in Microsoft Hyper-V

Microsoft Hyper-V is a hypervisor-based virtualization technology. It provides software infrastructure and basic management tools that you can use to create and manage a virtualized server computing environment. This virtualized environment can be used to address a variety of business goals aimed at improving efficiency and reducing costs. Hyper-V works on x86- and x64-based systems running Windows.

You deploy a vSRX virtual security appliance on a Microsoft Hyper-V server to provide networking security features for the virtualized server computing environment. Hyper-V implements isolation of virtual machines in terms of a partition. The vSRX virtual machine runs in Microsoft Hyper-V as a child partition.

Note the following for deploying vSRX on a Microsoft Hyper-V server:

  • Starting in Junos OS Release 15.1X49-D80 and Junos OS Release 17.3R1, you can deploy the vSRX only on Microsoft Hyper-V Server 2012 R2 or 2012.
  • Starting in Junos OS Release 15.1X49-D100 and Junos OS Release 17.4R1, you can deploy the vSRX on Microsoft Hyper-V Server 2016.

vSRX Benefits and Use Cases

vSRX on standard x86 servers enables you to quickly introduce new services, deliver customized services to customers, and scale security services based on dynamic needs. vSRX is ideal for public, private, and hybrid cloud environments.

Some of the key benefits of vSRX in a virtualized private or public cloud multitenant environment include:

  • Stateful firewall protection at the tenant edge
  • Faster deployment of virtual firewalls into new sites
  • Full routing, VPN, core security, and networking capabilities
  • Application security features (including IPS and App-Secure)
  • Content security features (including Anti Virus, Web Filtering, Anti Spam, and Content Filtering)
  • High Availability (HA) support for chassis clustering
  • Centralized management with Junos Space Security Director and local management with J-Web Interface
  • Juniper Networks Sky Advanced Threat Prevention (Sky ATP) integration

Release History Table

Release
Description
Starting in Junos OS Release 15.1X49-D80 and Junos OS Release 17.3R1, you can deploy the vSRX only on Microsoft Hyper-V Server 2012 R2 or 2012.
Starting in Junos OS Release 15.1X49-D100 and Junos OS Release 17.4R1, you can deploy the vSRX on Microsoft Hyper-V Server 2016.

Modified: 2017-09-25