Product

Image of red smoke flowing through a black room to represent the cSRX Container Firewall.

cSRX Container Firewall

The cSRX Container Firewall protects containerized applications and environments with advanced security services, including content security and intrusion prevention system (IPS). Purpose-built for containers, the cSRX next-generation firewall can be spun up or down in less than a second for the agility needed to manage transitory container environments like Kubernetes.

Whether you’re using a physical, virtual, or containerized firewall, Juniper delivers comprehensive visibility from edge to cloud; the cSRX adds visibility into securing applications that run in your containers. You can deploy security policies that limit access to specific applications, while intrusion prevention protects applications not easily patched. To safeguard applications from east-west traffic, the cSRX limits traffic between container segments using Layer 4–7 security policies.

Key Features

Virtual CPU

2

Memory

4 GB

Firewall performance (max)

11.9 Gbps

Maximum concurrent sessions

512,000

cSRX Container Firewall Datasheet
Contact Sales

Features + Benefits

Full-Featured Firewall

Provides comprehensive next-generation firewall capabilities in a compact footprint. 

Small Footprint

Lightweight and portable, the cSRX software image size is just a few hundred megabytes, making it easy to port across cloud-native hosts. 

Container-Speed Security

Supports quick boot time; once container resources are available, the cSRX is able to instantiate in less than a minute to secure workloads.

Next-Generation Firewall

Detect and mitigate threats through software-enabled next-generation firewall (NGFW) features, including intrusion prevention system (IPS), application security (AppSecure), user ID and role-based access controls, and content security (network anti-virus, anti-spam, and enhanced Web filtering).

SDN Support

Integrates with the Juniper Contrail software-defined networking (SDN) management platform, OpenStack cloud computing platform, and third-party SDN solutions.

Cloud-Native Security

Delivers microsegmentation, encryption, and security at Layers 4–7 for cloud-native applications when paired with Juniper Contrail Enterprise Multicloud.

99.9% Security Effectiveness

Juniper received an “AAA” rating in CyberRatings’ 2023 Enterprise Network Firewall Report, demonstrating a 99.9% exploit block rate with zero false positives.

Read report

Resource Center

Practical Resources

Technical Documentation

CSRX Documentation

Day One Books

Building Containers with cSRX, 2nd Edition (PDF)

Trials

cSRX
cSRX on AWS

Support

Support cSRX

Training and Community

Training

Security Learning Path
All-Access Training Pass
On-Demand Training

Community

Training and Certification Forum

Background Information

Industry Recognition

CyberRatings Enterprise Firewall Test: Juniper Receives Highest Security Effectiveness Rating

Learn More

Blogs

Security Blogs

White Papers

Extending Juniper Connected Security to Containers (PDF)
The Rise of Zero Trust (PDF)

Videos

cSRX Videos

Datasheets and Specifications

cSRX Container Firewall Datasheet

CUSTOMER SUCCESS

Banca di San Marino Safeguards Financial Assets with Unified Cybersecurity

Perimeter security alone is no longer enough to keep sophisticated cybercriminals at bay. To comply with new banking and data privacy regulations while maintaining the security of more than €200 million in total assets, Banca di San Marino turned to unified, adaptive cybersecurity.

See other stories

banca-di-san-marino Image

Discover 283% ROI with Juniper Connected Security

Check out the recent Forrester Total Economic Impact™ of Juniper Connected Security report to learn more.

Live Events and On-Demand Demos

Explore the journey to a transformed network.

Find cSRX in these solutions

Security

Make your network threat aware. The Juniper Connected Security portfolio safeguards users, data, and infrastructure by extending security to every point of connection, from client to cloud, across the entire network.

Next-Generation Firewall

Juniper next-generation firewalls reduce the risk of attack and provide granular control of data, users, and devices through identity-based policies, microsegmentation, VPN connectivity, and validated threat prevention.

SD-WAN

AI-based insights and automation simplify deployments and reduce troubleshooting time while a tunnel-free architecture eliminates inefficiencies, scaling limitations, and cost constraints of legacy solutions.

Public Cloud Security

Accelerate public cloud adoption securely with simple deployment, consistent security, and unified management experience at every level: within workloads, between applications and instances, and across environments.

Zero Trust Data Center Security

Juniper Zero Trust Data Center Security protects your distributed centers of data by operationalizing security and extending zero trust across networks to prevent threats with proven efficacy. With unified management, context-driven network-wide visibility, and a single policy framework, Juniper safeguards users, data, and infrastructure across hybrid environments.