top of page

Software Defined WAN


The traditional WAN function was connecting users at the branch or campus to applications hosted on servers in the data center. Typically, dedicated MPLS circuits were used to help ensure security and reliable connectivity. This no longer works in a cloud-centric world.

Times have changed. As businesses race to adopt the use of SaaS/IaaS applications in multiple clouds, IT is realizing that the user application experience is poor. That is because WAN networks designed for a different era are not ready for the unprecedented explosion of WAN traffic that cloud adoption brings. That traffic causes management  complexity, application performance unpredictability, and data vulnerability.


The new WAN
There is a new kind of WAN to address these challenges: SD-WAN. Software-defined WAN is a new approach to network connectivity that lowers operational costs and improves resource usage for multi-site deployments. Network administrators can use bandwidth more efficiently and can help ensure the highest level of performance for critical applications without sacrificing security or data privacy.


The benefits of SD-WAN

• Simplify management. As a centralized, cloud-delivered WAN architecture, SD-WAN makes it easy to scale across thousands of endpoints, whether they are in the branch, campus, or cloud. IT has the ability to automate zero-touch deployment globally, using a single management interface.

• Improve the user experience. WAN optimization delivers optimal cloud application performance from multiple clouds to users anywhere. In the event of link failure or link degradation, application-aware routing can dynamically route traffic between dedicated circuits and secure Internet connections to drive constant delivery of business-critical applications. Additionally, businesses realize OpEx improvements by offloading expensive MPLS services with more economical and flexible broadband (including secure VPN connections).

• Increase security. Threat prevention is enforced at the right place. SD-WAN architecture features distributed security at the branch level. Data does not have to travel back to the headquarters or data center for advanced security protection (such as a firewall, DNS enforcement, or intrusion prevention).

SDWAN on Cisco (Viptela) or Cisco Meraki

In our Cisco portfolio we have 2 SD-WAN solutions, Cisco Meraki or Cisco (Viptela). Both are top contenders in the SD-WAN market segment, but which solution fits your networking needs in the best way possible?


Meraki SDWAN

Selecting Meraki is choosing for out-of-the-box SD-WAN. Go for a quick and easy to manage solution that will cover solutions requiring:

  • Deployment of SD-WAN on MX.

  • Use L7 Firewalling to build policies and prioritize traffic flow.

  • Support up to 2 ISP/WAN connections.

  • LTE (4G) works as failover when primary WAN links fail.

  • Connecting all sites with 1 mesh/Hub-Spoke topology.

  • Deploy the solution in the same dashboard as where to manage your LAN network. In Cisco Meraki’s Cloud.

  • Track SaaS applications like O365 and analyse delays on Lan/Wan or server problems to quickly pinpoint where an issue might be.

  • Constant monitoring of all your WAN links across the organisation in 1 dashboard.

In addition to that, Meraki MX adds the option of being the UTM firewall in your network.


Cisco SDWAN : Custom-built & Advanced

Choose for Cisco SD-WAN if one or more of the following is a requirement:

  • Deploy SD-WAN on ISR or vEdge.

  • Use deep packet inspection to build policies and prioritize traffic flow.

  • Support for more than 2 ISP/WAN connections.

  • LTE (4G) should be a primary link used for load-balancing traffic.

  • Not 1, but many VPNs required between 2 sites. Segment your traffic not only on the LAN but keep it segmented over the WAN and create multiple topologies.

  • Insert a service, like an IDS firewall,  into an active VPN.

  • Choice of deploying the management servers in your own datacenter or hosted by Cisco.

  • WAN optimization with Cisco WaaS.

  • Optimize SaaS applications like O365. Provide a direct internet break-out & leverage the existing WAN connections to automatically calculate the best part to provide the O365 Break-out.

  • In depth analysis of applications crossing the WAN.

  • A strong support for inter-cloud (LTE|Internet|MPLS) is required.

Extra Modularity is achieved when deploying SD-WAN on ISR.
No Modularity is required? ISR111x or vEdge might do it.

bottom of page