Call a Specialist Today! 888-785-4380

Juniper Networks STRM5000 NEBS Appliance
Security Threat Response Manager

Juniper Networks STRM5000 NEBS Appliance
Juniper Networks Products
STRM Serie Appliances
Juniper Networks STRM 5000 Appliance with NEBS Certification
#STRM5000-NEBS-A-BSE
List Price: $40,000.00
Our Price: $32,200.00

More pricing below, click here!

STRM5000 Overview:

Juniper Networks STRM500 Security Threat Response Manager combines all the features and functionality in a single, secure hardware offering. With its intuitive Web-based user interface, configuration is so simple that you can get an STRM500 up and monitoring the network in minutes. STRM500 is optimized hardware that does not require expensive external storage, third-party databases or ongoing database administration. STRM500 can also be deployed as dedicated QFlow collectors for collection of network flows to provide Layer 7 analysis.

Juniper Networks STRM Series Security Threat Response Managers combine, analyze and manage an incomparable set of surveillance data—network behavior, security events, vulnerability profiles and threat information—to empower companies to efficiently manage business operations on their networks from a single console. With pre-installed software, a hardened operating system and a Web-based setup, the STRM Series lets you get your network security up and running quickly and easily. The bottom line of the STRM Series is simple deployment, fast implementation and improved security, at a low total cost of ownership.

STRM Series dashboard

STRM Series dashboard
(Click enlarge)

The integrated approach of the STRM Series used in conjunction with unparalleled data collection, analysis, correlation and auditing capabilities, enables organizations to quickly and easily implement a corporate-wide security management program that delivers security best practices that include:

Log Management:STRM Series provides scalable log management by enabling distributed log collection across an organization and a centralized view of the information.

Threat Management:STRM Series provides an advanced network security management solution that bridges the gap between network and security operations to deliver real time surveillance and detect complex IT-based threats.

Compliance Management:STRM Series brings to enterprises, institutions and agencies the accountability, transparency and measurability that are critical factors to the success of any IT security program required to meet regulatory mandates.

Juniper Networks STRM5000 NEBS Appliance Left Angle

Features & Benefits:

Features Features Description Benefits
Embedded QFlow Allows users to tap into Layer 7 traffic by using existing ports or extended 4-port module (optional only on the STRM500). Provides visibility into the security controls, the business applications, and the assets that are being protected.
Distributed support Ability to scale to large distributed deployments from 500 to 10,000+ events from 15 K to 400 K flows per minute. Users have the flexibility to scale to large deployments as their business grows. STRM Series can be easily deployed in large distributed environments.
Hardened OS Juniper’s security team monitors and maintains the STRM Series that is optimized for performance and security. Users don’t need to worry about security vulnerabilities, support or patch management for the OS.
Redundant Arrays of Inexpensive Disks (RAID) Implementation STRM Series utilizes embedded RAID (1-5) implementation. RAID implementation provides high availability (HA) and redundancy.
All-in-one appliances Event collection, flow collection event processing, flow processing, correlation, analysis and reporting are all embedded within the Juniper Networks STRM Series Security Threat Response Managers. All core functions are available within the system and it is easy for users to deploy and manage in minutes. STRM Series architecture provides a streamlined solution for secure and efficient log management from a common interface.
Easy and quick install Easy out-of-the-box setup wizard. Users can install and manage STRM Series appliances in a couple of steps.
Centralized updates One place to get all updates. Users don’t need to worry about maintaining appliance and OS updates and patches.
One stop support Juniper Networks Technical Assistance Center (JTAC) supports all aspects of the STRM Series and multi-vendor support. Users don’t need to go to several places to get support even for multi-vendor issues.


Log Management and Reporting

STRM Series provides a comprehensive log management framework that includes scalable and secure log management capabilities integrated with real time event correlation, policy monitoring, threat detection and compliance reporting.

Features Features Description Benefits
Comprehensive log management Scalable and secure log management with storage capabilities from GB to TB of data storage. Provides long term collection, archival, search and reporting of event logs, flow logs and application data that enables logging taxonomy from a centralized view.
Comprehensive reporting STRM Series comes with 500+ canned reports. Report Wizard allows users to customize and schedule daily, weekly and monthly reports. These reports could be exported in PDF, HTML, RTF, Word, Excel and XML formats. Provides users not only the convenience of canned reports but also the flexibility to create and customize their own reports according to their business needs.
Log management and reporting only option Provides a comprehensive log management and reporting solution for organizations that are looking to implement a distributed log management only solution to collect, archive, customize and analyze network security event logs. Allows users to start with log management and reporting only option and then upgrade to full blown STRM Series functionality as their business need grows without upgrading their existing hardware.
Log retention and storage STRM Series can easily archive logs and integrate into an existing storage infrastructure for long-term log retention and hands of storage. The STRM Series database enables organizations to archive event and flow logs for however long is specified by a specific regulation.
Tamper proof data
  • Event and flow logs are protected by SHA-x (1-256) hashing for tamper proof log archives.
  • Support of extensive log file integrity checks including National Institute of Standards and Technology (NIST) log management standards.
Provides secure storage based on industry regulations.
Real-time event viewing STRM Series allows users to monitor and investigate events in real-time or perform advanced searches. The event viewer indicates what events are being correlated to offenses and which are not.
  • Users have the ability to quickly and effectively view and filter real-time events.
  • Provides a flexible query engine that includes advanced aggregating capability and valuable and actionable IT forensics.
Data warehousing Purpose-built data warehouse for high speed insertion and retrieval of data archive of all security logs, event logs and network activity logs (flow logs). Full audit of all original events and flow content without modification.


Threat Management

Juniper Networks STRM Series Security Threat Response Managers’ network security management solution takes an innovative approach to managing computer-based threats in the enterprise. Recognizing that discrete analysis of security events is not enough to properly detect threats, the STRM Series was developed to provide an integrated approach to threat management that combines the use of traditionally silo’d information to more effectively detect and manage today’s complex threats. Specific information that is collected includes:

Network Events:
Events generated from networked resources including switches, routers, servers and desktops.

Security Logs:
Includes log data generated from security devices like firewalls, VPNs, intrusion detection/prevention, antivirus, identity management and vulnerability scanners.

Host and Application Logs:
Includes log data from industry leading host operating systems (Microsoft Windows, UNIX and Linux) and from critical business applications (authentication, database, mail and Web).

Network and Flow Logs:
Includes flow data generated by networking devices from vendors and provides the ability to build a context of network and protocol activity.

User and Asset Identity Information:
Includes information from commonly used directories including active directory and Lightweight Directory Access Protocol (LDAP). By incorporating patent pending “offense” management technology, this integrated information is normalized and correlated by the STRM Series, resulting in automated intelligence that quickly detects, notifies and responds to threats missed by other security solutions with isolated visibility.

Features Features Description Benefits
Out-of-the-box correlation rules STRM Series correlation rules allow users to detect specific or sequential events or offenses. A rule consists of tests and functions that perform a response when events match. Provides hundreds of out-of-the-box correlation rules that provide immediate value. Users can create their own rules by using the STRM Series rule wizard to generate automated alerts to security response teams and enable real time policy enforcement.
Offense management The offense manager allows you to investigate offenses, behaviors, anomalies, targets and attackers on your network. The STRM Series can correlate events and network activity with targets located across multiple networks in the same offense and ultimately the same network incident. This allows users to effectively investigate each offense in their network. Users can navigate the common interface to investigate the event details to determine the unique events that caused the offense.
QID mappings STRM Series associates or maps a normalized or raw event to a high-level and low-level category. Allows users to see real-time events mapped to appropriate categories, which allows the STRM Series to map unknown device events to known STRM Series events in order to be categorized and correlated appropriately.
Historical profiling Extensive use of historical profiling for improved accuracy of results. STRM Series collects and stores entire event data for later use. Allows users to view historical data at any given point as well as views into incident management and the tracking of events.
STRM Series magistrate STRM Series magistrate component prioritizes the offenses and assigns a magnitude value based on several factors that include the number of events, severity, relevance and credibility.
  • Allows users to see prioritized security events rather than looking through thousands of log events.
  • Allows users to see what events have the most impact on their business and respond quickly to threats.
Offense Manager API STRM Series provides a set of open API’s to modify and configure incident management parameters like “create, close and open” offenses. Allows users to integrate third-party customer care applications like Remedy and other ticketing solutions.


Compliance Management

Organizations of all sizes across almost every vertical market face a growing set of requirements from IT security regulatory mandates.

Compliance Management

Recognizing that compliance with a policy or regulation will evolve over time, many industry experts recommend a compliance program that can demonstrate and build upon these key factors:

Accountability:Providing surveillance that reports on who did what and when.

Transparency:Providing visibility into the security controls, business applications and assets that are being protected.

Measurability:Metrics and reporting around IT risks within a company.

Features Features Description Benefits
Built-in compliance reports Out-of-the-box compliance reports are included with the STRM Series. Provides 500+ out-of-the-box compliance reports.
Reporting and alerting capabilities for control framework
  • Control Objectives for Information and related Technology (CobiT)
  • International Organization for Standardization (ISO) ISO/IEC 27002 (17799)
  • Common Criteria (CC) (ISO/IEC 15408) NIST special publication 800-53 revision 1 and Federal Information Processing
  • Standard (FIPS) 200
Enables repeatable compliance monitoring, reporting and auditing processes.
Compliance-focused regulation workflow
  • Payment Card Industry Data Security Standard (PCI DSS)
  • Health Insurance Portability and Accountability Act (HIPAA)
  • Sarbanes-Oxley Act (SOX)
  • Graham-Leach-Bliley Act (GLBA)
  • Federal Information Security Management Act (FISMA)
  • Supports multiple regulations and security best practices.
  • Compliance-driven report templates to meet specific regulatory reporting and auditing requirements.
Management-level reports on overall security state The STRM Series reports interface allows you to create, distribute and manage reports. These reports can be generated in PDF, HTML, RTF, XML and XLS formats. Users can use the report wizard to create executive and operational level reports that combine any network traffic and security event data in a single report.

Network Deployments:

Depicts two scenarios with STRM500 and STRM2500 in a typical deployment, and an STRM5000 deployed in a distributed environment with the STRM500 configured as a QFlow Collector

STRM Series Diagram

Architecture:

STRM Series Architecture

Technical Specifications:

STRM5000 NEBS Front View

Front View

STRM5000 NEBS Rear View

Rear View

Model: STRM500 STRM2500 STRM5000 STRM5000 NEBS
  STRM500 STRM2500 STRM5000 STRM5000 NEBS
Hardware Specifications
HDD 2 x 500 GB RAID 1 6 x 250 GB RAID 5 6 x 500 GB RAID 10 16 x 146 GB SAS Drives RAID 10
Memory 8 GB 8 GB 16 GB 12 GB
Events per second Up to 500 Up to 2500 Up to 10,000 Up to 10,000
Flows per second Max 15 K Max 100 K Max 600 K Max 600 K
Devices (out of the box) 250 750 750 750
Dimensions and Power
Size (W x H x D) 17.26 x 3.5 x 17.72 in
(43.84 x 8.8 x 45 cm)
17.26 x 3.5 x 17.72 in
(43.84 x 8.8 x 45 cm)
17.26 x 3.5 x 23.52 in
(43.84 x 8.8 x 59.75 cm)
24 x 3.5 x 17.26 in
(60.95 x 8.8 x 43.84 cm)
Weight 27 Ib 8 oz 28 Ib 41 lb 5 oz 53 lb 11 oz
Rack mountable 2U 2U 2U 2U
A/C power supply 90V to 264V 250W AC power module, dual redundant option.
• Efficiency 80Plus certified (ships with one)
• Peak inrush current is:
- 40A max. at 115VAC and 25C
- 80A max. at 240VAC
and 25C
90V to 264V 250W AC power module, dual redundant option.
• Efficiency 80Plus certified (ships with one)
• Peak inrush current is:
- 40A max. at 115VAC and 25C
- 80A max. at 240VAC
and 25C
90V to 264V hot swap dual redundant 560W AC power module, 90V to 264V hot swap dual redundant 560W DC power module -48V DC power supply (option)
• Peak inrush: <60A
- Max efficiency:
- 80Plus 560W AC
(ships with two)
90V to 264V, hot swap dual redundant 700W AC power module, 90V to 264V hot swap dual redundant 710 W DC power module -48V (shipped with two)
D/C power supply 560W DC power module -38V to -72V DC power supply 560W DC power module -38V to -72V DC power supply 560W DC power module -38V to -72V DC power supply 560W DC power module -38V to -72V DC power supply
Simultaneous AC and DC modules support Yes Yes Yes Yes
Chassis Material 18 gauge cold rolled steel 18 gauge cold rolled steel 18 gauge cold rolled steel 18 gauge cold rolled steel
Fans 2 x 80 mm hot swap redundant fans
(2nd optional)
2 x 80 mm hot swap redundant fans
(2nd optional)
3 x 80 mm hot swap redundant fans
(2nd optional)
6 x 80 mm redundant hot swap
Traffic ports 4 x RJ45 10/100/1000 4 x RJ45 10/100/1000 1 console, 2x RJ45 10/100/1000
Intel 82574, 2x RJ45 10/100/1000 Intel 82576
1 console, 2x RJ45 10/100/1000 Intel 82574, 2x RJ45 10/100/1000 Intel 82576
Console port 1x RJ45 serial console 1x RJ45 serial console 1x RJ45 serial console 1x RJ45 serial console
Environment
Operating Temperature 41° to 104° F
(5° to 40° C)
41° to 104° F
(5° to 40° C)
41° to 104° F
(5° to 40° C)
Normal: 41° to 104° F
(5° to 40° C),
Short-term: 23° to 131° F
(-5° to 55° C )
Storage Temperature -40° to 158° F
(-40° to 70° C)
-40° to 158° F
(-40° to 70° C)
-40° to 158° F
(-40° to 70° C)
-40° to 158° F
(-40° to 70°C)
Relative Humidity (Operating) 8% to 90% noncondensing 8% to 90% noncondensing 8% to 90% noncondensing 8% to 90% noncondensing
Relative Humidity (Storage) 5% to 95% noncondensing 5% to 95% noncondensing 5% to 95% noncondensing 5% to 95% noncondensing
Altitude (Operating) 10,000 ft maximum 10,000 ft maximum 10,000 ft maximum 10,000 ft maximum
Altitude (Storage) 40,000 ft maximum 40,000 ft maximum 40,000 ft maximum 40,000 ft maximum
Compliance and Safety
Safety Certifications CSA 60950-1 (2003)
Safety of Information
Technology Equipment
• UL 60950-1 (2003)
• EN 60950-1 (2001)
• IEC 60950-1 (2001)
• EN 60825-1 +A1+A2 (1994) Safety of Laser Products - Part 1: Equipment Classification
• EN 60825-2 (2000) Safety of Laser Safety of Optical Fiber Comm. Systems
CSA 60950-1 (2003)
Safety of Information
Technology Equipment
• UL 60950-1 (2003)
• EN 60950-1 (2001)
• IEC 60950-1 (2001)
• EN 60825-1 +A1+A2 (1994) Safety of Laser Products - Part 1: Equipment Classification
• EN 60825-2 (2000) Safety of Laser Safety of Optical Fiber Comm. Systems
CSA 60950-1 (2003) Safety of Information Technology Equipment
• UL 60950-1 (2003)
• EN 60950-1 (2001)
• IEC 60950-1 (2001)
• EN 60825-1 +A1+A2 (1994) Safety of Laser Products - Part 1: Equipment Classification
• EN 60825-2 (2000) Safety of LaserSafety of Optical Fiber Comm. Systems
CAN/CSA-C22.2
• No. 60950-1-03
• UL60950-1:2003
• EN60950-1:2001+A11
• IEC 60950-1:2001
Emissions Certifications FCC Class A,
EN 55022 Class A,
EN 55024 Immunity,
EN 61000-3-2,
VCCI Class A
FCC Class A,
EN 55022 Class A,
EN 55024 Immunity,
EN 61000-3-2,
VCCI Class A
FCC Class A,
EN 55022 Class A,
EN 55024 Immunity,
EN 61000-3-2,
VCCI Class A
FCC Class A,
EN 55022 Class A,
EN 55024 Immunity,
EN 61000-3-2,
VCCI Class A
Warranty Hardware one year and software 90 days Hardware one year and software 90 days Hardware one year and software 90 days Hardware one year and software 90 days
NEBS No No No NEBS Level 3/Verizon NEBS certified by METLABS


Performance-Enabling Services and Support

Juniper Networks is the leader in performance-enabling services and support, which are designed to accelerate, extend, and optimize your high-performance network. Our services allow you to bring revenue-generating capabilities online faster so you can realize bigger productivity gains, faster rollouts of new business models and ventures, and greater market reach, while generating higher levels of customer satisfaction. At the same time, Juniper Networks ensures operational excellence by optimizing your network to maintain required levels of performance, reliability, and availability.

Pricing Notes:

STRM Serie Appliances
Juniper Networks STRM 5000 Appliance with NEBS Certification
#STRM5000-NEBS-A-BSE
List Price: $40,000.00
Our Price: $32,200.00
Juniper Care
Juniper Care Core Support for STRM5000-NEBS-A-BSE
#SVC-COR-S5K-NEBS-BSE
List Price: $1,630.00
Our Price: $1,556.00
Juniper Care CorePlus Support for STRM5000-NEBS-A-BSE
#SVC-CP-S5K-NEBS-BSE
List Price: $1,790.00
Our Price: $1,708.00
Juniper Care NextDay Onsite Support for STRM5000-NEBS-A-BSE
#SVC-NDCE-S5K-NEBS-BSE
List Price: $2,560.00
Our Price: $2,443.00
Juniper Care NextDay Support for STRM5000-NEBS-A-BSE
#SVC-ND-S5K-NEBS-BSE
List Price: $1,970.00
Our Price: $1,880.00
Juniper Care SameDay Onsite Support for STRM5000-NEBS-A-BSE
#SVC-SDCE-S5K-NEBS-BSE
List Price: $4,310.00
Our Price: $4,114.00
Juniper Care SameDay Support for STRM5000-NEBS-A-BSE
#SVC-SD-S5K-NEBS-BSE
List Price: $3,450.00
Our Price: $3,293.00
STRM Mandatory Licenses
Threat Management License to Add EPS=2500, Flows=100K Qflows/SFlows (200K J/NetFlows); Devices=750
STRM in a All in One architecture
#STRM5K-ADD-2500E-100KF
List Price: $122,850.00
Our Price: $98,894.00
License to configure STRM 5000 as Console for Distributed Architecture
STRM in a Distributed architecture
#STRM5K-ADD-CON
List Price: $38,500.00
Our Price: $30,992.00
Threat Management License to Add STRM 5000 as Event Processor up to EPS=2500
STRM in a Distributed architecture
#STRM5K-ADD-EP-2500E
List Price: $57,200.00
Our Price: $46,046.00
Threat Management License to Add STRM 5000 as Flow Processor up to Flows=100K Qflows/SFlows (200K J/NetFlows)
STRM in a Distributed architecture
#STRM5K-ADD-FP-100KF
List Price: $57,200.00
Our Price: $46,046.00
STRM Log Management Only, License to Add EPS=2500; Devices=750
STRM in a All in One architecture
#STRM5K-LM-ADD-2500E
List Price: $33,000.00
Our Price: $26,565.00
STRM Log Management Only, License to Add STRM 5000 Log Management Console for Distributed Architecture
STRM in a Distributed architecture
#STRM5K-LM-ADD-CON
List Price: $27,500.00
Our Price: $22,137.00
Log Management Only license to add STRM 5000 as Event processor with EPS=2500
STRM in a Distributed architecture
#STRM5K-LM-ADD-EP-2500E
List Price: $24,200.00
Our Price: $19,481.00
High Availability Licenses
STRM5000 Console High Availability license
#STRM5K-CON-HA
List Price: $21,200.00
Our Price: $17,066.00
STRM5000 Event Processor High Availability license
#STRM5K-EP-HA
List Price: $31,500.00
Our Price: $25,357.00
STRM5000 Flow Processor High Availability license
#STRM5K-FP-HA
List Price: $31,500.00
Our Price: $25,357.00
STRM 5000 Log Managmenet Consolse High Availability license
#STRM5K-LM-CON-HA
List Price: $15,200.00
Our Price: $12,236.00
STRM 5000 Log Management Event Processor High Availability license
#STRM5K-LM-EP-HA
List Price: $13,500.00
Our Price: $10,867.00
STRM5000 Log Management High Availability license
#STRM5K-LM-HA
List Price: $18,200.00
Our Price: $14,651.00
STRM5000 All-in-one High Availability license
#STRM5K-TM-HA
List Price: $58,200.00
Our Price: $46,851.00
STRM License To Upgrade
License to upgrade additional Flows=100K Qflows/SFlows (200K J/NetFlows) only.
STRM in a All in One architecture
Note: Requires STRM5K-ADD-2500E-100KF
#STRM5K-ADD-100KF
List Price: $52,000.00
Our Price: $41,860.00
License to upgrade additional EPS=2500 only.
STRM in a All in One architecture
Note: Requires STRM5K-ADD-2500E-100KF
#STRM5K-ADD-2500E
List Price: $52,000.00
Our Price: $41,860.00
License to upgrade STRM Log Management to Full STRM with Threat Management. Upgrade to EPS=2500, Flows=25K
STRM in a All in One architecture
#STRM5K-LM-2500E-TM
List Price: $89,850.00
Our Price: $72,329.00
License to Upgrade STRM 5000 Log Management Console to Full STRM 5000 Console with Threat Management
STRM in a Distributed architecture
#STRM5K-LM-CON-TM
List Price: $16,500.00
Our Price: $13,282.00
Log Management Only license to add STRM 5000 as Event processor EPS=2500
STRM in a Distributed architecture
#STRM5K-LM-EP-2500E-TM
List Price: $33,000.00
Our Price: $26565.00
STRM Software
Additional Log Source Provides capacity for 50 additional log source
#STRM-ADD-DEV-50
List Price: $3,750.00
Our Price: $3,018.00
Additional Log Source Provides capacity for 500 additional log source
#STRM-ADD-DEV-500
List Price: $25,000.00
Our Price: $20,125.00
Additional Log Source Provides capacity for 1000 additional log source
#STRM-ADD-DEV-1K
List Price: $37,500.00
Our Price: $30,187.00
For more than 1000 additional log source, please use our Quote Request Form!