A. Scope of Document
The Juniper Networks NetScreen-5400 is an internet security device that
integrates firewall, virtual private networking (VPN) and traffic shaping
functionalities. The model number is NetScreen-5400 and includes interface
options listed in Table 1.
Part Number
NS-5400-P00A-S00
NS-5400-P00D-S00
NS-5400-P01A-S00
NS-5400-P01D-S00
NS-5000-8G
NS-2G24FE
Table 1 – List of 5400 part numbers
Through the VPN, the NetScreen-5400 provides the following:
The NetScreen-5400 also provides an interface for users to configure or set
policies through the console or network ports.
The general components of the NetScreen-5400 include firmware and hardware.
The main hardware components consist of a main processor, memory, flash,
ASICs (GigaScreen version 2 and GigaScreen II), 10/100 Mbps ethernet
interface, GBIC network interface, console interface, backplane, redundant
power supplies and fan tray. The entire case is defined as the cryptographic
boundary of the modules. The NetScreen-5400's physical configuration is defined
as a multi-chip standalone module.
Juniper NS-5400 Security Policy
Model
NS-5400
NS-5400
NS-5400
NS-5400
8G SPM
2G SPM
•
IPSec standard security
•
Data security using the Data Encryption Standard (DES), Triple-DES
and Advanced Encryption Standard (AES) algorithms
Note: DES – for legacy systems only; transitional phase only - valid until
May 19, 2007.
•
Manual and automated IKE (ISAKMP)
•
The use of RSA and DSA certificates
Interface Option
Power Supply
2G24FE SPM
AC
2G24FE SPM
DC
8G SPM
AC
8G SPM
DC
-CARD ONLY-
N\A
-CARD ONLY-
N\A
4