Juniper Networks incorporates Juniper Networks’ security intelligence onto the MX Series routers. Security can be extended to routing infrastructure to turn connectivity layers into automated defense layers at scale. It allows customers to block malicious traffic — like command and control botnet servers — at the hardware level using threat feeds such as Juniper Sky ATP, Juniper Threat Labs, or even custom blacklists for discovery.
Available in JUNOS 19.3, it helps network operators provide another level of security. It involves a layered approach to security where threat detection and policy enforcement is built into each layer.
How Does Juniper Networks’ security intelligence (SecIntel) work?
Juniper Networks’ security intelligence (SecIntel) delivers real-time threat intelligence by enabling automatic and responsive traffic filtering. While SecIntel has traditionally required one or more Juniper Networks’ SRX Series Services Gateways, SecIntel functionality will now be made available on MX Series routers.
Extending security intelligence to MX routers offers another layer of network security by blocking command and control traffic discovered by Juniper Sky ATP and Juniper Threat Labs and custom blacklists at a network hardware level. This turns connectivity layers into automated defense layers. The router is turned into an information security enforcement point for thousands of customers, helping to secure the internet for everyone, one network at a time. Customers will not have to invest in additional hardware to take advantage of the new SecIntel capabilities; only a few lines of configuration and an update to the latest software version are required. In turn, this simplifies network integration and helps minimize administrative effort.
Juniper Connected Security safeguards users, applications and infrastructure by extending security intelligence and enforcement to all points of connection on the network. Customers can achieve end-to-end visibility and security while preserving their existing investments. Juniper Connected Security provides out-of-the-box, automated integration between Juniper’s own products, those provided by Juniper technology partners and even those of Juniper competitors. However, helping customers get the most out of their investments does not stop here. By bringing SecIntel capabilities to MX Series routers, Juniper is giving customers visibility into traffic right at the connection point.
Blocking known malicious IPs and URLs at the hardware/PFE level using MX Series routers will complement existing capabilities and integrations, such as DDoS protection. Delegating the blocking of known command and control communications to the MX Series routers prevents potential compromise directly at the network layer and frees up resources on SRX Firewall Series devices to focus on targeted unknown threats.
20 August 2019