what is sd-wan?
SD-WAN is a software-defined approach to managing the WAN.
Key advantages include:
- Reducing costs with transport independence across MPLS, 4G/5G LTE, and other connection types.
- Improving application performance and increasing agility.
- Optimizing user experience and efficiency for software-as-a-service (SaaS) and public-cloud applications.
- Simplifying operations with automation and cloud-based management.
The traditional WAN (wide-area network) function was to connect users at the branch or campus to applications hosted on servers in the data center. Typically, dedicated MPLS circuits were used to help ensure security and reliable connectivity. This doesn’t work in a cloud-centric world.
Today’s IT challenges
Times have changed. As businesses adopt the use of SaaS and infrastructure-as-a-service (IaaS) applications in multiple clouds, IT is realizing that the user application experience is poor. That is because WANs designed for a different era are not ready for the unprecedented explosion of WAN traffic that cloud adoption brings. That traffic causes management complexity, application-performance unpredictability, and data vulnerability.
Further, opening the enterprise to the Internet and the cloud exposes major threat and compliance issues. It is extremely challenging to protect the critical assets of an enterprise when applications are accessed by a diverse workforce, including employees, partners, contractors, vendors, and guests. Enabling broadband on the WAN makes the security requirements more acute, creating challenges for IT in balancing user experience, security, and complexity.
The new WAN
New business models drive the need for a new network model.
SD-WAN addresses the current IT challenges. This new approach to network connectivity can lower operational costs and improve resource usage for multisite deployments. Network administrators can use bandwidth more efficiently and can help ensure high levels of performance for critical applications without sacrificing security or data privacy.
The traditional WAN architecture was limited to enterprise, branch, and data center. Once an organization adopts cloud-based applications in the form of SaaS and IaaS, its WAN architecture experiences an explosion of traffic accessing applications distributed across the globe.
These changes have multiple implications for IT. Employee productivity may be compromised by SaaS-application performance problems. WAN expenses can rise with inefficient use of dedicated and backup circuits. IT fights a daily, complex battle of connecting multiple types of users with multiple types of devices to multiple cloud environments.
With SD-WAN, IT can deliver routing, threat protection, efficient offloading of expensive circuits, and simplification of WAN network management. Business benefits can include the following:
Better application experience
- High availability, with predictable service, for all critical enterprise applications
- Multiple hybrid active-active links for all network scenarios
- Dynamically routed application traffic with application-aware routing, for efficient delivery and improved user experience
- Improved OpEx, replacing expensive Multiprotocol Label Switching (MPLS) services with more economical and flexible broadband (including secure VPN connections)
More security
- Application-aware policies with end-to-end segmentation and real-time access control
- Integrated threat protection enforced at the right place
- Secure traffic across broadband Internet and into the cloud
- Distribute security to the branch and remote endpoints with NGFW, DNS security, and NGAV
Optimized cloud connectivity
- Seamless extension of the WAN to multiple public clouds
- Real-time optimized performance for Microsoft Office 365, Salesforce, and other major SaaS applications
- Optimized workflows for cloud platforms such as Amazon Web Services (AWS) and Microsoft Azure
Simplified management
- A single, centralized, cloud-delivered management dashboard for configuration and management of WAN, cloud, and security
- Template-based, zero-touch provisioning for all locations: branch, campus, and cloud
- Detailed reporting of application and WAN performance for business analytics and bandwidth forcasting
SD-WAN evolved from MPLS technology, which has powered private connectivity for more than two decades. In many ways, SD-WAN can be seen as a software abstraction of MPLS technology that’s applicable to wider scenarios: It brings secure, private connectivity that’s agnostic to all kinds of links and providers and is cloud-aware. While MPLS handled failure scenarios with backup links, SD-WAN handles them with real-time traffic steering based on centralized policy. Also, since SD-WAN unifies the entire WAN backbone, it delivers comprehensive analytics across the network globally. This wasn’t possible before, because of disparate pieces of infrastructure and policy.
SD-WAN can be seen as SDN for the WAN. It represents, arguably, the most popular and widely deployed use case in SDN. The SDN model became popular for abstracting network infrastructure in the data center and other sections within the enterprise perimeter. SD-WAN played a similar role but needed to abstract infrastructure elements that were diverse in terms of link types, providers, and geographies. Since it crossed the enterprise perimeter, it needed a robust security component as well.
Palo Alto prism Next gen
Next-gen SD-WAN powered by ML and automation
SASE Converges Networking & Security
How Prisma SD-WAN differ
Application defined
Gain deep application visibility with Layer 7 intelligence to simplify network policy creation and traffic engineering.
Autonomous
Simplify networking operations and automate problem avoidance with AIOps and machine learning.
Cloud-delivered branch
Enable branch services, like networking and security, to be delivered from the cloud, increasing and simplifying WAN bandwidth.
MOVING FROM MPLS TO SD-WAN?
The Forrester Total Economic Impact (TEI) Spotlight demonstrates how Prisma SD-WAN can provide an average Return on Investment of 243%.
prisma by Palo Alto Networks
Palo Alto Networks Prisma offers the industry’s broadest security and compliance coverage – for applications, data and the entire cloud-native technology stack – throughout the development lifecycle and across multi- and hybrid cloud environments.
94%
of businesses use the cloud
42.5%
of the global workforce will be mobile by 2022
57%
of businesses feel vulnerable to an unauthorised remote access breach
30%
of known malware was delivered via Google Drive
Strata by Palo Alto Networks
Prevent attacks with industry-defining enterprise security platforms. Tightly integrated innovations, cloud delivered and easy to deploy and operate.
85%
of Fortune 100 rely on Palo Alto Networks
#1
in enterprise security (highest market share)
66,000+
customers in 150+ countries
9x
Gartner MQ Firewall Leader