Solved

netscreen 5xt 10-user vs unlimilted users

Posted on 2006-10-28
9
1,032 Views
Last Modified: 2010-04-08
is there a big difference between netscreen 5xt 10-user and unlimited user 5xt? is the difference of how many ip addresses in trusted interfaces it or something else?

i have netscreen 5xt 10-user model and i wonder if this is good enough for my webserver and mail server.
0
Comment
Question by:cuc888
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
9 Comments
 
LVL 9

Accepted Solution

by:
jabiii earned 125 total points
ID: 17850883
No, the difference is in # of users that authenticate to the Netscreen Device, and or # of internal IP's. (trusted)

10 IP's is plenty.. Unlimited just gives you more IP's/Users available.

There is no performanc difference, so if you don't authenticate users to the box, and don't need more than 10 IP's on the trusted side, Id save your money. ;)

Here's the spec sheet.
https://www.juniper.net/products/integrated/ns_5series.html

Jim
0
 
LVL 9

Expert Comment

by:jabiii
ID: 17850927
License Options
The NetScreen-5GT Series is available in licensing options to support different numbers
of users.
Licensing Options                      Description
10 user Product license             Limits capacity to 10 concurrent users
Plus Product license                  Increases capacity to an unlimited number of users
Extended Product license          Increases sessions and VPN tunnel capacities to 4000 and 25 respectively. Adds a DMZ zone and HA lite (no session synchronization)
0
 

Author Comment

by:cuc888
ID: 17850943
i've found out the difference in a hard way, i had it connected and run and only 10 internal users at a time can connect. As i originally thought it had something to do with the numbers of policies i could create.
0
Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

 

Author Comment

by:cuc888
ID: 17850965
i am looking to upgrade to Netscreen SSG-5, any comments on this one?
0
 
LVL 9

Expert Comment

by:jabiii
ID: 17851232
Well, for 2 servers and 2 workstations, 100 polices should be MORE than enough.....
the 10 user limit ONLY applies to User objects, and those are only needed if they need to authenticate to the NS.

Now if you have more than 10 IP's (workstations) on the inside, you might want to go to the unlimited. or a different modle like you said.

I haven't looked at the SSG's to closely. I have a meeting with Juniper latter today. I will ask and let you know :)

0
 
LVL 9

Expert Comment

by:jabiii
ID: 17862653
SSG-5 series are 5xt/gt on some SERIOUS sterariods. And about the same price. SHould be a good deal, I am probably going to migrate all my 5series to them as I get money.
Your talking double the throughput for the same price, and ability for more indepth routing, etc etc looks good I'm sold.
0
 

Author Comment

by:cuc888
ID: 17864152
thanks.i just got it SSG-5 today and it works great. here is one problem i have and have not figured out. i need to connect to a couple machines on another network 172.31.6.1. i then connect one of their network cable to one of the trusted port on SSG-5. under Objects > Addresses > List > Trust: i added 172.31.6.20/32, 172.31.6.20 is the machine i would like to make connection to. i then created a policy from Trust to Trust > destination address is the machine i would like to connect. this does not work at all. i know there has to be more than just this simple configuration.

any help to solve this connection?
secondly, my end users actually do pick up the other network dhcp ip address instead of my SSG-5 dhcp ip. how to solve this problem also?
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
exact syntax to permit ipfilter rules in Solaris 10 x86 2 72
CLOUD SECURITY 3 78
PCAnywhere 2 158
Current Mac OS X Network Profiles and Firewall 5 122
Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question