hi, guys,
I am tasked to build an edge service pop for our business, I am struggling to decide which platform to use, Cisco ASR 1K or Juniper data center SRX (SRX-5400 or lower model), here are essential requirements:
1. Full routing protocol support (BGP primarily), potentially Internet feed
2. 10+ Gbps zone based stateful firewalling throughput
3. up to 10Gbps IPsec (AES256 encryption) throughput
4. Flexible NAT configuration (static NAT, PAT, double NAT etc with policies)
5. 2x10GE interfaces
6. Hardware redundancy, which means I may need two boxes -- ideally I want a single control plane, proprietary clustering is acceptable
7. most importantly, automation, which means to us for now is NETCONF, device configuration will be dynamically changing by Ansible during normal operation
Juniper SRX-5400 clustering totally meets my requirements, I think ASR 1K can also meet those requirements but I am not sure about clustering part, the only problem with SRX-5400 clustering? COST.
Would ASR-1000 series have much lower pricing tag compared to SRX-5400 with similar configuration?
Thanks! I appreciate your thoughts.