ITMall,Your IT Global Procurement Service Expert
SSR120-AA
Brand Juniper
4.9Verified

SSR120-AA

Model (MPN)
SSR120-AA
Condition
Factory Sealed
Original Packaging (NIB)
Out of Stock

Volume & Framework Pricing

B2B Only
QuantityUnit PriceEst. Savings
1 Unit$272.20-
2 - 9 UnitsRequest Quote5 - 10%
10+ / ProjectFramework Match Tier-1 Access
Global Framework Support AvailableGet Global Discount

Key Specifications

ApplianceSSR120
Suggested LocationSmall branch
Max Throughput (Unencrypted)1.5 Gbps
SNAT/DNATSupported
destination NAPTSupported
shared NAT poolSupported
Your Price
Call for Pricing
Volume discounts available
Availability Out of Stock

Need configuration help?

Our CCIE certified engineers can help you verify compatibility.

Secure Payment
VISA
Pay
WIRE

Fast Dispatch

Global logistics network aiming for same-day handover.

48hrs
Avg. Shipping
99%
On-Time

Guaranteed Quality

Every unit undergoes rigorous 38-point inspection test.

3Year
Warranty
0.1%
RMA Rate

Global Reach

Trusted by enterprise clients across 6 continents.

85+
Countries
20k+
Clients

Expert Support

Certified network engineers ready to assist with configuration.

24/7
Assistance
CCIE
Certified

Overview

Product Overview

The Juniper Networks SSR120-AA Session Smart Router powers Juniper’s AI-native SD-WAN solution for small branch deployments. Built on a tunnel-free architecture with Secure Vector Routing (SVR), it delivers exceptional application performance, Zero Trust security, and scalability. The SSR120-AA supports up to 1.5 Gbps unencrypted throughput and can be deployed on premises, in the data center, or cloud.

Architecture & Performance

The SSR features a service-centric control plane and session-aware data plane, enabling IP routing, policy management, visibility, and analytics. Key capabilities include multipoint SVR, IPv6 SVR, Ethernet over SVR, BGP, OSPF, traffic engineering, distributed stateful firewall, and session encryption (AES-256/128, FIPS 140-2 validated). It provides path selection based on SLA, MoS, latency, load balancing, and session migration for optimal performance.

Zero Trust security is inherent with deny-by-default policies, hypersegmentation, integrated NGFW (L3/L4), and optional Advanced Security Pack for IDS/IPS and URL filtering. Management via Session Smart Conductor or Mist WAN Assurance with Marvis AI for AIOps, ZTP, and proactive analytics.

Key Features

  • Tunnel-free routing for efficiency and fast deployments
  • Application identification: HTTP/S, O365, DNS-based
  • Analytics: Session, network, LTE metrics, MOS scores, IPFIX
  • Platforms: Bare metal x86, KVM, VMware ESXi, OpenStack, AWS, Azure, Google Cloud
  • Interfaces: Ethernet, LTE (Dual/Dual SIM), T1

Ordering Information

Main unit: SSR120-AA

For detailed hardware specifications, refer to the SSR100 Line of Routers datasheet.

Specifications

Deployment and Performance
ApplianceSSR120
Suggested LocationSmall branch
Max Throughput (Unencrypted)1.5 Gbps
System and network services
SNAT/DNATSupported
destination NAPTSupported
shared NAT poolSupported
IPv4/IPv6Supported
DHCP clientSupported
DHCP relaySupported
DHCP serverSupported
DHCP server extensionsSupported
DHCPv6 PDSupported
DNS clientSupported
PPPoESupported
Proxy ARPSupported
NAT traversalSupported
BFDSupported
inline flow performance monitoringSupported
extended firewall pinholeSupported
path MTU discoverySupported
MSS auto adjustSupported
DSCP based service identification for IPsecSupported
Advanced services
Secure Vector Routing (SVR)Supported
Multipoint SVRSupported
IPv6 SVRSupported
overlapping IP service segmentationSupported
Ethernet over SVRSupported
application identificationSupported
Routing
Service based routingSupported
static routingSupported
BGPv4Supported
BGP route reflectorSupported
BGP graceful restartSupported
BGP over SVRSupported
BGP route mapSupported
BGP prefix listSupported
OSPFv2Supported
BGP VRFSupported
OSPF VRFSupported
Services and Topology Exchange Protocol (STEP)Supported
Traffic engineering
Traffic scheduling and shapingSupported
flow policing and shapingSupported
packet marking (DiffServ)Supported
service rate limitingSupported
Network firewall
Distributed stateful firewallSupported
distributed and automated access controlSupported
fine-grained segmentation/tenancySupported
ICSA network firewall certifiedSupported
ICMP blackholeSupported
IDS/IPS and URL filtering
Intrusion Detection System/ Intrusion Prevention System (IDS/IPS) and URL filtering capabilitiesAvailable through the Advanced Security Pack
Secure edge connectors
Seamless connections to Juniper Secure Edge or third-party SSESupported
Application identification
HTTP/S domain-based identificationSupported
O365 identificationSupported
DNS based identificationSupported
application categorizationSupported
Analytics
Session metricsSupported
network metricsSupported
LTE metricsSupported
peer path SLASupported
MOS scoreSupported
session analyticsSupported
SSL/TLS metricsSupported
session IPFIX recordsSupported
Session encryption
Session Payload Encryption (AES-256, AES-128)Supported
session/route authentication (HMAC-SHA1, HMAC-SHA256, HMAC-SHA-256-128)Supported
adaptive encryptionSupported
rekeyingSupported
FIPS 140-2 validatedSupported
enhanced replay attack protectionSupported
transport-based encryptionSupported
Session management
Path selection (SLA, MoS, average latency)Supported
load balancing using proportional and huntSupported
session migrationSupported
session duplicationSupported
session duplication for non-SVRSupported
session duplication for inter-node linksSupported
MOS for VoIPSupported
Path of last resortSupported
session optimizationSupported
session reliabilitySupported
service health learningSupported
service route redundancySupported
Monitoring
Monitoring agentSupported
SNMPv2Supported
SyslogSupported
audit logsSupported
Management and remote access
GUISupported
CLISupported
RESTSupported
remote access over SVR (LTE)Supported
upgrade rollbackSupported
Zero Touch ProvisioningSupported
remote service packet captureSupported
user-defined configuration templatesSupported
role-based access controlSupported
AAA
Local registrySupported
LDAPSupported
Interface options
EthernetSupported
LTE support including Dual LTE and Dual SIMSupported
T1Supported
Platforms
Bare metal x86 serverSupported
KVMSupported
VMWare ESXiSupported
OpenStackSupported
AWSSupported
AzureSupported
Google CloudSupported
Security Architecture
Service-centric, tenant-based security architectureSupported
Zero Trust security (deny-by-default)Supported
Integrated next-generation firewall (NGFW) Layer 3/Layer 4Supported
Integrated security (IDS/IPS, URL filtering, antivirus)Built-in with Advanced Security Pack for IDS/IPS
AI-native management with Marvis AISupported via WAN Assurance
Advanced Security Pack
Integrates IDS/IPS, URL filtering into routing fabricAvailable standalone or with SRX Series; supports SASE journey

Reviews

No reviews yet

Be the first to review this enterprise product.

Warranty

Standard Warranty Policy

All hardware sold by ITMall includes our 3-Year Free Maintenance and 1-Year RMA Replacement Service. Please refer to our Warranty Policy for details.

  • 1-Year Advance Replacement (RMA)
  • 3-Year Free Repair Service
  • Full coverage for functionality defects
Hassle-Free RMA Process

We streamlined the return process to minimize your network downtime. Our engineering team provides pre-return diagnostics to ensure hardware is truly defective.

  • 30-Day satisfaction guarantee return window
  • Automated RMA portal access for instant tracking
  • Restocking fee waived for functionality issues
Certified Engineering Support

Our products are backed by CCIE-certified engineers who provide expert guidance on compatibility, configuration, and troubleshooting at no extra cost.

  • Free pre-sales topology consultation
  • Remote troubleshooting & firmware advice
  • Simulation lab testing before dispatch
Global Logistics & Packaging

We ship to 85+ countries using premium anti-static packaging to ensure safety. Orders placed before 14:00 (GMT+8) are typically dispatched the same day.

  • Double-walled boxes with customer molded foam
  • Blind shipping support for channel partners
  • Real-time tracking via FedEx / DHL / UPS

Resources

No downloads available for this product.

Common Questions

What is the maximum throughput of SSR120-AA?
1.5 Gbps unencrypted throughput for small branch deployments.
Does SSR120-AA support Zero Trust security?
Yes, with inherent Zero Trust using deny-by-default policies, hypersegmentation, service-centric architecture, and integrated NGFW.
What routing protocols does SSR120-AA support?
Secure Vector Routing (SVR), multipoint SVR, BGPv4, OSPFv2, static routing, BGP/OSPF VRF, STEP.
What management platforms are available for SSR120-AA?
Session Smart Conductor for orchestration/ZTP or Juniper Mist WAN Assurance with Marvis AI for AI-native operations.
Does SSR120-AA support cloud deployments?
Yes, supports AWS, Azure, Google Cloud, in addition to bare metal and virtualization platforms.
Is this product Brand New?
Yes, unless clearly marked as "Refurbished", all our products are Factory Sealed (Original New) sourced directly from authorized channels.
What is the warranty period?
We provide a comprehensive 3-Year Warranty on this item. This covers hardware defects and includes advanced replacement.
Do you offer volume discounts?
Yes! For bulk orders or project bids, please click "Quote | Help" to get a custom price proposal from our sales team.
How fast can you ship?
In-stock items ordered before 3 PM EST ship the same day. We offer overnight and 2-day shipping options via FedEx/DHL.

Still have questions?