Why we need a new WAN model?
The need to evolve a new WAN model arises from the following problems associated with the traditional WAN model:
- Traditional WAN offerings have been unable to fulfill modern application service level agreements (SLAs) and bandwidth requirements.
- There are increased access costs for MPLS-based bandwidth to support application performance.
- There is growing complexity in branch and remote deployments such as routing configuration and security management.
- There are architectural issues with traditional WAN designs that are both static and private, inhibiting migration to dynamic and public cloud environments.
- That traditional WAN needs to evolve due to superior business agility, improving application performance, adequate support for data and applications on the public cloud, and simplifying the WAN.
The need for SD-WAN:
While working from home, remote workers need to access cloud-based services such as Microsoft Office 365 and Zoom; at the same time, home traffic such as YouTube and Netflix share the internet bandwidth, that increasing demand for working from home requires prioritizing work traffic over home traffic to save business apps from degrading due to surge internet usage. The next diagram indicates how SD-WAN Edge by VeloCloud divides network Traffic:
VMware SD-WAN Edge prioritizes work traffic compared to predefined cloud-based applications (VMware now recognizes 3000 applications which are still growing quarterly). It satisfies the acceptable quality of service for business apps such as Microsoft Office 365 and Zoom video conferencing to maintain continuous business service stability while still effortless to configure and maintain by the employee at home without IT.
The company or organization will centrally configure VMware SD-WAN Edges to set up business-driven policies to determine website access and applications for the remote worker to satisfy business needs. The next video indicates how it is easy to install SD-WAN Edge by VeloCloud in two minutes:
VMware SD-WAN Ensures enhanced network connection for the remote employees to better access cloud apps known as Software as a Service (SaaS) such as Microsoft Office 365. It satisfies the network performance (latency, jitter, and loss) required for audio and video Unified Communication as a Service (UCaaS), such as the Zoom UCaaS platform. The below picture indicates the improvement in a video conference with VMware SD-WAN:
What is Software as a Services (SaaS)?
Software as a service (SaaS) allows users to connect to and use cloud-based apps over the Internet. Typical examples Microsoft Office 365, Google Workspace, Dropbox, Salesforce, Cisco WebEx, Concur, GoToMeeting.
What is Unified Communication as a Service (UCaaS)?
Unified communications (UCaaS) is a cloud-delivered unified communications model; the service provider owns, operates, maintains, and delivers the infrastructure. UCaaS supports six communications functions: Enterprise telephony, Meetings (audio/video/web conferencing), Unified Messaging, Instant messaging and presence (personal and team), Mobility, and Communications-enabled business processes. Examples of prominent UCaaS providers include Cisco, RingCentral, Twilio, Voxbone, 8×8, and Zoom Video Communications.
VMWare SD-WAN and Cloud Computing (IaaS):
VMware SD-WAN satisfies the networking infrastructure required to move to the Public Cloud computing resources, known as Infrastructure as a Service (IaaS). VMware SD-WAN network adapts between Private Cloud and Public Cloud networking, and networking performance required for Multi-Cloud operations.
What is a Private cloud?
Physical computing resources are exclusively used internally and located in your organization’s on-site Datacenter. Your company’s internal IT staff is responsible for management and operations.
What is a Public cloud?
Public clouds are the most common type of cloud computing deployment. The cloud resources (like servers and storage) are owned and operated by a third-party cloud service provider and delivered over the Internet. With a public cloud, all hardware, software, and other supporting infrastructure are owned and managed by the cloud provider. Microsoft Azure is an example of a public cloud.
What is a Multi-Cloud?
Multi-cloud is a strategy where an organization leverages two or more cloud computing platforms to perform various tasks. Organizations that do not want to depend on a single cloud provider may choose to use several providers’ resources to get the best benefits from each unique service.
How VMware SD-WAN works?
The organization can install the SD-WAN Edge in the employee home, branch site, or the Datacenter as a hub. The VMware SD-WAN Gateways are deployed and managed by VMware and its partners in the top service providers DataCenters worldwide. When a remote worker wants to access a cloud app like Microsoft Office 365, the SD-WAN Edge recognizes the app traffic then redirects the traffic to the SD-WAN Gateway closest to the service provider through a VMware Dynamic Multipath Optimization (DPMO) overlay tunnel. Using SD-WAN will better access to cloud-based apps.
VMware SD-WAN Dynamic Multipath Optimization (DMPO) is used between all VMware SD-WAN components that process and forward data traffic. The VMware SD-WAN Edge and VMware SD-WAN Gateway are the DMPO endpoints.
The VMware SD-WAN platform offers multiple layers of security with a host of options depending on business needs. One suitable option involves using a firewall as a virtualized network function (VNF) running on a VMware SD-WAN Edge device on a home network.
VMware SD-WAN Orchestrator provides network centralized URL-based management and monitoring functionality. The orchestrator creates policies to keep employees out of the non-work site and separate work from home traffic. Orchestrator enables 360-degree visibility of the entire enterprise network, including the home networks of remote employees.
VMWARE SD-WAN COMPONENTS:
VMware SD-WAN Edge by VeloCloud:
The VMware SD-WAN Edges are available as easy-to-install appliances for remote branches and data centres with a range of throughput, interfaces, integrate wireless and LTE connectivity options.
There are three types of SD-WAN Edges:
Physical VMware SD-WAN Edge
Many physical appliances are presented. They are different in bandwidth/throughput performance, the number of tunnels, and the number and types of interfaces. They support home workers, branch sites up to Datacenter requirements.
Virtual VMware SD-WAN Edge
VMware SD-WAN Edges can be deployed as VNFs on a uCPE or any x86 hardware. This flexibility allows virtualization for network functions such as firewalls with either VMware vSphere or KVM (KVM is an Open-Source virtualization technology built into Linux®).
Cloud-based VMware SD-WAN Edge
VMware SD-WAN also provides virtual images for VMware SD-WAN Edges through AWS and Azure marketplaces. This option allows for the termination of customer networks in virtual infrastructures hosted on the public cloud infrastructure to extend their networks into the cloud.
What is VNF?
Virtual Network Function provides the compute, storage, networking, management, and operations capabilities to enable operators to provide virtualized network services.
Supported Third-party firewall
The VMware SD-WAN by VeloCloud solution supports the following third-party firewalls, Palo Alto Networks VM-series, Fortinet FortiGate VNF, and Check Point CloudGuard Edge VNF.
What is uCPE?
uCPE (or Universal Customer Premise Equipment) is a general-purpose platform that integrates compute, storage and networking on a commodity, off-the-shelf server, allowing it to provide network services (such as SD-WAN, firewall, etc.) as virtual functions to any site on a network. uCPE is the equivalent of a “Cloud for network services”, but at the customer premise.
VMware SD-WAN Gateway by VeloCloud:
The VMware SD-WAN Gateways are deployed by VMware and its partners at top-tier network points of presence and cloud data centers worldwide, facilitating the full range of VMware SD-WAN benefits.
VMware SD-WAN Orchestrator by VeloCloud:
The VMware SD-WAN Orchestrator is a cloud-delivered URL-based providing centralized management, configuration, and monitoring. The orchestrator can deliver business-driven policy abstraction, enabling rapid deployments and zero-touch operations additionally have API for management and troubleshooting.