Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Juniper Security Director System Requirements for KVM

Ensure that your system meets the hardware and softwate requirements and host specifications.

Hardware Requirements

Table 1 outlines the recommended VM configuration options, device management, and storage capabilities. You can choose any one of the recommended configuration options for optimal performance.

Table 1: Hardware Requirements for KVM
VM Configuration Device Management Capability Log Analytics and Storage Capability

Option 1

  • 16 vCPU

  • 80 GB RAM

  • 2.2 TB storage

  • Up to 1000 devices

  • Up to 10000 policy rules per device

  • Up to 6000 NAT rules per device

  • Up to 1000 VPNs per device/system

  • Up to 14000 logs per second

  • Out of the total 2.2 TB storage:

    • OS disk—200 GB

    • App disk—400 GB

    • Log analytics—1.5 TB

Option 2

  • 40 vCPU

  • 208 GB RAM

  • 4.3 TB storage

  • Up to 3000 devices

  • Up to 20000 policy rules per device

  • Up to 10000 NAT rules per device

  • Up to 1500 VPNs per device/system

  • Up to 40000 logs per second

  • Out of the total 4.3 TB storage:

    • OS disk—200 GB

    • App disk—525 GB

    • Log analytics— 3.5 TB
Note:

  • We do not recommend hyperthreading on hypervisor. You must use dedicated resources for CPU, RAM, and storage.

  • We do not recommend sharing resources.

  • You can switch from VM configuration option 1 to VM configuration option 2, if necessary. However, once you switch to VM configuration option 2, you cannot revert to VM configuration option 1. See Upgrade the VM.

Host Specification

Table 2: Host Specification
Linux Distribution Version Host Processor Type
Ubuntu 22.04 LTS and 24.04 LTS Intel x86_64 multi-core CPU

Software Requirements

  • You must have the following dedicated IP addresses in the same subnet:

    • Management IP address—IP address for the VM that provides access to the Juniper Security Director CLI.

    • UI virtual IP address—Virtual IP address to access the Juniper Security Director GUI.

    • Device connection virtual IP address—Virtual IP address to establish connection between the managed devices and Juniper Security Director.

    • Log collector virtual IP address—Virtual IP address to receive logs from devices.

    To ensure a smooth deployment of the VM, you must make sure that the UI virtual IP address, device connection virtual IP address, and log collector virtual IP address are accessible through the default gateway. Additionally, verify that the Fully Qualified Domain Names (FQDN) associated with these IP addresses can be resolved before you start the OVA deployment process.

  • Ensure that you have access to SMTP, NTP, and DNS servers from the VM network (Juniper Security Director).

    Note:

    We support NTP server with IPv4 address only.

WHAT's NEXT

Deploy Juniper Security Director Using KVM