Juniper NFX150 Network Services
The Juniper Networks NFX150 Network Services Platform is a secure, automated, software-driven customer premises equipment (CPE) platform that delivers virtualized network and security services on demand. Leveraging Network Functions Virtualization (NFV) and built on the Juniper Cloud CPE solution, NFX150 enables service providers to deploy and chain multiple, secure, high-performance virtualized network functions (VNFs) on a single device.
The NFX150 is suited for small to medium-sized enterprises. With key security features and NFV, the NFX150 can be used in secure SD-WAN and secure router deployments.
This topic covers:
System Software
The NFX150 architecture integrates routing, switching, and security functions on a single platform that optimizes the usage of system resources. The architecture enables unified management of all the components through a single CLI. Key components in the NFX150 software include the Junos Control Plane (JCP), Juniper Device Manager (JDM), Layer 2 dataplane, Layer 3 dataplane, and Virtual Network Functions (VNFs). The JCP is the Junos virtual machine (VM) running on the host OS, Wind River Linux. The JCP functions as the single point of management for all the components. The JCP CLI is displayed when you log in to the NFX150 device.
VNF Flexibility Unlike traditional CPE devices that inhibit agility, the NFX Series is highly scalable, supporting multiple concurrent VNFs on a single device. This substantially reduces upfront CapEx and software costs, establishing a flexible consumption model for on-demand network services from the cloud. The NFX Series features Open vSwitch, an open-source network automation and switching framework that intelligently manages service chaining. Open vSwitch effectively optimizes data traffic flow within the NFX Series platforms, providing consistent VNF service functions and improving performance to minimize service interruptions.
NFX150 Hardware
The NFX150 portfolio consists of a compact desktop model and a rack-mount model. Both the models are available with or without LTE support.
The NFX150 device has four 1-GbE RJ-45 ports which can be used as either access ports or as uplinks, two SFP ports, two SFP+ ports, and one management port. The NFX150 device has a 1 U form factor and comes with built-in fans and power supply.
Security and Reliability The NFX Series offers a complete suite of NGFW, unified threat management (UTM), and threat intelligence services. These consist of intrusion prevention system (IPS), application security (AppSecure), user role-based firewall controls, on-box and cloudbased antivirus and zero-day detection, antispam, and enhanced Web filtering, protecting your network from the latest contentborne threats, exploits, and malware. Security Intelligence (SecIntel) provides threat intelligence and offers adaptive threat protection against command and control (C&C) related botnets and policy enforcement based on GeoIP and attacker fingerprinting technology (the latter providing Web application protection)—all based on Juniper-provided feeds. Customers may also leverage their own custom and third-party feeds to defend against advanced malware and other threats. Additionally, the NFX Series incorporates many advanced security features. The Secure Boot feature ensures that only an authentic, unmodified Junos OS can launch at boot time, safeguarding system integrity from the factory to the branch site. The embedded Trusted Platform Module (TPM) ensures platform integrity and provides entropy for cryptographic operations. This functionality is a standard component of the NFX150, NFX250, and NFX350
