Businesses increasingly rely on container technology for developing applications. Using Docker containers substantially reduces overhead, because each container shares the host’s OS. Regardless of how many containers a server hosts, only one OS instance is in use. And because of containers’ lightweight quality, a server can host many more container instances than virtual machines (VMs) can, yielding tremendous improvements in utilization.

The cSRX container firewall, like other containers, differs from VMs in several important ways. It runs with no guest OS overhead, has a notably smaller footprint, and is easier to migrate or download. It uses less memory, and its spinup time measures in subseconds—all leading to higher density at a lower cost.

Junos Space Security Director improves policy configuration, management, and visibility for both physical and virtual assets through a common, centralized platform. Security Director provides a single pane of glass for managing firewall policies consistently across vSRX, cSRX, and SRX Series platforms.

For service providers and organizations that deploy service-oriented applications, the cSRX presents a portfolio of containerized security services. Included among these are: intrusion prevention system (IPS), AppSecure, and unified threat management (UTM). These cSRX capabilities support a variety of Network Functions Virtualization (NFV) use cases.

The cSRX is integrated with Juniper Contrail and OpenStack. Integration with third-party software-defined network (SDN) solutions is enabled through common management interfaces across the SRX family.