Story image

SD-WAN enables a new cloud-first branch strategy

27 Apr 18

Article written by Silver Peak senior director of service provider marketing Nav Chander

As enterprises and government agencies continue to migrate applications to the cloud and embrace IaaS, growing numbers are turning to hyper-scale cloud providers such as Amazon Web Services (AWS), Microsoft Azure, Oracle Cloud Infrastructure (OCI) or Google Cloud to connect directly or host their applications and infrastructure.

But how do they connect their remote or branch office sites and users to these cloud services without compromising performance, security and the end user experience?

AWS prefers enterprises to use its Direct Connect service (a dedicated private connection to directly connect an enterprise’s data centre to one of AWS’s data centres). This works in theory provided you have a solid connection to the internet. It also requires a service provider to have a Direct Connect service as well.

Depending on where the offices are located, that option could be a far-off data centre, often creating latency and performance issues with cloud applications accessed from remote branch offices that may not have a dedicated private network connection or where data has to be backhauled to the data centre.

So, how can an SD-WAN play a role in enabling all enterprise branch offices to connect to any of these cloud providers and do so as part of a high-performance managed service?

One of most widely deployed enterprise SD-WAN solutions already optimises the performance of SaaS applications and IaaS instances. It optimises SaaS and IaaS performance through an application-aware direct connection to the internet via a broadband network.

This enables service providers to offer enterprises any combination of on-net and off-net cloud connections to the cloud providers at their data centres. Application awareness enables the SD-WAN solution to identify web-bound traffic at the application level and enforce a range of security policies on an app-by-app basis.

For example, trusted SaaS apps can be steered directly over the internet while recreational or unknown apps can be directed to more advanced security services in the cloud, regional hubs or headquarters data centres.

Today, a number of DIY enterprises have opted to use virtual SD-WAN software appliances, EC-V as a virtual private cloud (VPC) instance in either AWS marketplace or Azure marketplace. Enterprises should evaluate whether their managed SD-WAN service provider offers the flexibility for both on-net direct connect and off-net cloud connect services. An advanced managed SD-WAN solution supports this deployment.

Mike Sapien, vice president and chief analyst US, enterprise services at Ovum says, “Enterprise customers are using multiple cloud services and have multiple branches, and they need to make sure the performance for those services is acceptable.”

He adds that this also sees cloud enablement as a top-three use case.

“They also need reliable connections to the main cloud resources, be it Amazon Web Services, Microsoft Azure, etc. That means implementing QoS, but also the ability to make changes in a network on the fly to improve its performance or address increased usage, and using automatic traffic routing to create redundancy and diversity. SD-WAN fits that bill.”

For innovative service providers like KDDI Europe, service providers are able to offer high-performance, cloud-ready managed SD-WAN services powered by solutions that incorporate advanced capabilities that include: WAN optimisation, path conditioning, Internet with local breakout, and SaaS optimisation.

These SD-WAN capabilities enable enterprises to securely and confidently migrate their applications and infrastructure to the cloud without compromising performance for accessing applications from the individual branch offices.

Gartner names newcomer Exabeam a leader in SIEM
The vendor landscape for SIEM is evolving, with recent entrants bringing technologies optimised for analytics use cases.
52mil users affected by Google+’s second data breach
Google+ APIs will be shut down within the next 90 days, and the consumer platform will be disabled in April 2019 instead of August 2019 as originally planned.
Genesys PureCloud generates triple-digit revenue growth year on year
In Australia and New Zealand, the company boosted PureCloud revenue by nearly 100%.
Symantec releases neural network-integrated USB scanning station
Symantec Industrial Control System Protection Neural helps defend against USB-borne cyber attacks on operational technology.
IDC: Standalone VR headset shipments grow 428.6% in 3Q18
The VR headset market returned to growth in 3Q18 after four consecutive quarters of decline and now makes up 97% of the combined market.
Open source will be the next big thing for the channel
Channel firms should be on the lookout for opportunities across open source and more diverse software offerings like software-defined containers and storage.
Gartner names LogRhythm leader in SIEM solutions
Security teams increasingly need end-to-end SIEM solutions with native options for host- and network-level monitoring.
NBN Co rolls out 'optimised' wholesale business bundles for ISPs
“We recognise some businesses are on nbn powered plans that have not been optimised for their needs," says Paul Tyler.