SD-WAN for enlightened

Sat May 6 14:46:00 UTC 2017

What I don't understand is how do all these newer, SD-WAN vendors, differ
from any of the managed FireWall companies that have nice pretty GUI's and
web management? For example, Sophos, Meraki, Fortinet, and the other large
firewall vendors that do dual wan, virus filtering, remote management, etc?

On Tue, May 2, 2017 at 1:19 PM, Stefan <netfortius at gmail.com> wrote:

> As of this announcement:
>
> http://investor.cisco.com/investor-relations/news-and-
> events/news/news-details/2017/Cisco-Announces-Intent-to-
> Acquire-Viptela/default.aspx
>
> there will be one less than before :-)
>
> Seriously - when I first learned about them, upon service inclusion of the
> Viptela products into the VzB SD-WAN offering, they (Viptela -
> http://blog.ipspace.net/2014/11/viptela-sen-hybrid-wan-connectivity.html)
> looked very nice, already, as standalone products. And that was a few years
> back.
>
> ***Stefan
>
> On Tue, May 2, 2017 at 12:44 PM, Doug Marschke <doug at sdnessentials.com>
> wrote:
>
>> Too many to list.  I don’t know who is “winning” in market share right
>> now, as I am sure each vendor tracks their wins differently.
>>
>> There are definitely a few making more noise than others.
>>
>> Doug Marschke
>>
>> CTO
>>
>>  <http://www.sdnessentials.com> www.sdnessentials.com
>>
>> JNCIE-SP #41, JNCIE-ENT #3
>>
>> 415-902-5702 (cell)
>>
>> 415-340-3112 (office)
>>
>>
>>
>> From: Colton Conor [mailto:colton.conor at gmail.com]
>> Sent: Thursday, April 27, 2017 6:26 PM
>> To: Doug Marschke <doug at sdnessentials.com>
>> Cc: Kasper Adel <karim.adel at gmail.com>; NANOG list <nanog at nanog.org>
>> Subject: Re: SD-WAN for enlightened
>>
>>
>>
>> So who are the big SD-WAN players out there?
>>
>>
>>
>> On Mon, Apr 17, 2017 at 10:31 AM, Doug Marschke <doug at sdnessentials.com
>> <mailto:doug at sdnessentials.com> > wrote:
>>
>> Hello Kasper,
>>
>> I will do my best to answer your SD-WAN question, but as you mentioned it
>> is a buzzword that has a bit of confusion in its definitions.  I would say
>> that a SD-WAN solution should have the following elements:
>>
>> 1.) Ability to manage multiple WAN connection and choose the path based
>> on user and machine criteria (The Hybrid WAN)
>> 2.) A controller to manage the polices and operations of the SD-WAN
>> devices
>> 3.) Analytics on the network and application level
>> 4.) A software overlay that abstracts and secures the underlying networks
>>
>> Currently there are a lot of solutions out there by many vendors.  Some
>> do all of these and some a subset, so it make the landscape a bit
>> confusing.   Lots of times vendors use SD-WAN when they are really just
>> talking about Hybrid WAN (multiple connections) or WAN optimization.
>>
>>
>>
>>
>>
>> Doug Marschke
>> CTO
>> www.sdnessentials.com <http://www.sdnessentials.com>
>> JNCIE-SP #41, JNCIE-ENT #3
>> 415-902-5702 <tel:415-902-5702>  (cell)
>> 415-340-3112 <tel:415-340-3112>  (office)
>>
>>
>> -----Original Message-----
>> From: NANOG [mailto:nanog-bounces at nanog.org <mailto:
>> nanog-bounces at nanog.org> ] On Behalf Of Kasper Adel
>> Sent: Sunday, April 16, 2017 1:14 PM
>> To: NANOG list <nanog at nanog.org <mailto:nanog at nanog.org> >
>> Subject: SD-WAN for enlightened
>>
>> Hi,
>>
>> I'm not sure if the buzzword SD-WAN is used to compensate for another
>> buzzword that got over-utilized (SDN) or it is a true 'new and improved'
>> way of doing things that has some innovation into it.
>>
>> I heard different explanation from different vendors:
>>
>> 1) appliances (+ controller) placed in-line to put traffic in tunnels
>> based on policy, with some DPI and traffic tagging...(to do
>> performance/policy based routing) over an expensive link (MPLS) and a cheap
>> one (broadband) with some 'firewall-like' filtering capabilities.
>> 2) same as above, with a flavor of 'machine learning' to find a pattern
>> for traffic to optimize utilization.
>> 3) a controller that instantiates and tears down tunnels from 'classic
>> routers' based on external policies and Network based features to do
>> performance based routing over an expensive link (MPLS) and a cheap one
>> (broadband) with encryption.
>>
>> Is the above a decent high-level summary?
>>
>> Has anyone tried any of these solutions, any general feedback ?
>>
>> Cheers,
>> Kim
>>
>>
>>
>>
>