FW/IPSec VPN Buyer’s Guide
o | in logs |
|
|
|
Identification of failures | Yes |
|
| |
o | in logs |
|
|
|
Yes |
|
| ||
| shooting |
|
|
|
Offers |
|
|
| |
known “good” configuration, if | Yes |
|
| |
changes do not “work” |
|
|
| |
Ability to integrate with other |
|
| Note: NTP integration allows | |
management and enterprise |
|
| internal clocks to be | |
platforms/systems: |
|
| synchronized to ensure log | |
o | SNMP traps | Yes |
| files have accurate time |
o | MIP | Yes |
| stamps |
o | MIB | Yes |
|
|
o CLI via SSH for | Yes |
|
| |
o | configuration | Yes |
|
|
Syslog |
|
| ||
o | NTP | Yes |
|
|
Yes |
|
| ||
|
|
|
| |
Broad array of support options | Yes |
|
| |
Support is delivered by a |
|
|
| |
single vendor with a single |
|
|
| |
support contract | Yes |
|
| |
VPN Specific |
|
|
| |
|
| Yes, utilizing dynamic |
|
|
New networks can be easily | routing and Security |
|
| |
added to the VPN | Zones |
|
| |
|
| Yes, |
|
|
|
| o Dynamic routing |
|
|
Reroute around problems with | automatically finds |
|
| |
minimal human intervention | available routes |
|
| |
|
| o |
|
|
|
| VPNs can switch |
|
|
|
| to alternate routes |
|
|
|
| in route table |
|
|
Flexibility to do complex VPN |
|
|
| |
configurations (e.g. hybrid full |
|
|
| |
mesh, hub and spoke) using: |
|
|
| |
o | Yes |
|
| |
o | Yes |
|
| |
o | Dynamic Route- | Yes |
|
|
| Based |
|
|
|
Copyright © 2004, Juniper Networks, Inc. | 16 |
