Juniper Networks NetScreen-Security Manager

• Centralized, end-to-end device life-cycle management of the firewall/IPSec VPN and Intrusion Prevention devices, for granular control of configuration, network settings, and security policies
• Delegation of administrative roles provides relevant access to those who need it
• Complete set of investigative tools provide in-depth network visibility
• Robust architecture provides performance, flexibility and fault tolerance

Overview

NetScreen-Security Manager (NSM) is a powerful, centralized management solution that controls the entire device life cycle of firewall/IPSec VPN and IDP devices, including basic setup and network configuration with local and global security policy deployment. Unmatched role-based administration allows IT departments to delegate appropriate levels of administrative access to specific users, thereby minimizing the possibility of a configuration error that may result in a security hole. NSM can scale from small to large enterprises by offering NSMXpress and NSM Central Manager as an easy-to-use plug-and-play appliance preloaded with the latest version of NSM software.

The NetScreen-Security Manager system uses Juniper Networks Statistical Report Server, an optional module for storing statistical information from the managed firewall / IPSec VPN devices in the network, and for generating reports from this data, enabling further viewing and analysis of the information about a security deployment. From the Statistical Report Web Interface, customers can choose from a selection of over 40 reports to view and analyze network traffic, device and VPN statistics, system resources, and other administrative information. Customers can also customize templates for commonly used reports, and generate these on a regularly scheduled basis.

Features and Benefits

Key features and benefits of the NetScreen-Security Manager system include the following:

• Intuitive GUI to simplify complex tasks such as device configuration, policy creation, and VPN deployment
• Delegation of administrative roles to provide information access to those who need it
• Domains provide logical separation of data in a distributed enterprise or service provider environment
• Granular control of configuration and network settings with local and global security policies
• Object locking to allow multiple administrators to safely modify different policies or devices concurrently
• Device templates to minimize configuration errors by managing any or all aspects of a device or group of devices via a template
• VPN Manager to accelerate VPN deployments by creating all the necessary rules after a basic topology has been defined
• Automated security updates offering attack coverage recommended by the Juniper security team
• A diverse, integrated set of investigative tools enables complete visibility into the network:
  • Log Viewer to allow logs to be viewed in real time, with filters to allow an administrator to perform rapid analysis of security status and events
  • Log-based reporting to allow an administrator to generate, view, and export reports summarizing logs and alarms originating from the managed firewall / IPSec VPN and IDP devices
  • Security Explorer presents an interactive graphical view of the relationships between hosts, networks, services and attacks
  • Profiler (for IDP devices) helps administrators baseline network activity and quickly identify new hosts and applications
  • Log Investigator to provide the ability to correlate high-level log information to look for trends and anomalies
• Statistical Report Server, an optional module, to generate up to 40 different network reports in 4 categories covering a full range of data points, which can be used for historical analysis to make sound business decisions moving forward

All product specifications can be found in the datasheet:

Juniper Networks NetScreen-Security Manager118 KB