Top SD-WAN vendors and manufacturers in 2021

Software-defined WAN (SD-WAN), as the name implies, implements the concept of software definition into the network. By doing so, the management and operation of the WAN is simplified by decoupling the underlying network hardware.

SD-WAN is also a great way for enterprises to save money. Deploying fiber between sites can provide greater bandwidth, but this approach is expensive and complex, and can be cumbersome when it comes to issues such as underground channel cabling permits. Because SD-WAN runs over the Internet, it is often the preferred method for connecting user sites through dedicated network links.

[[416645]]

Another benefit of SD-WAN is that it cuts out the complexity inherent in building a router-based WAN. This capability enables SD-WAN to operate seamlessly between on-premises enterprise resources and cloud resources. In SD-WAN, Internet traffic from the enterprise is directed through servers, appliances, or cloud services running WAN software. Encryption is often used to keep the network and its traffic secure.

Core features of SD-WAN

SD-WAN has evolved from a variety of technologies in many different ways, and the available tools reflect this. Some tools trace their genes to security, while others began in routing, WAN optimization, or other areas of communications networking. As a result, the feature sets of various products and services vary greatly.

In addition, there are different ways to deploy products and services. Some are provided through appliances, some through software on servers, and some through cloud-based SD-WAN services. No one way is the most effective, and it depends on the enterprise's architectural preferences, existing vendor portfolio and other factors.

Its core functions are as follows:

• Uninterrupted network performance
• Protect all types of users from network security threats through SASE architecture (SD-WAN + cloud security + zero-trust network access, encryption, encapsulation and general network protection)
• General Management
• Optimize the speed of different types of traffic between user sites
• Ability to easily add new user sites to the network
• Across any private backbone or live network, MPLS, Dedicated Internet Access (DIA), Enhanced Internet, 4G LTE and 5G
• Multi-cloud access across IaaS/PaaS/SaaS

Excellent SD-WAN Supplier

Enterprise Networking Planet, a US technology media, has evaluated various SD-WAN vendors. The following is in no particular order.

Aryaka

Aryaka provides a fully managed service through what it calls a "cloud-first" WAN approach. It uses a platform that integrates networking and security (i.e., a combination of SD-WAN and SASE) to provide services including network connectivity, optimization, and multi-cloud access as a software-defined cloud interconnect (SDCI).

Key Differentiators:

• The managed service combines all the capabilities enterprises need for wide area networking and digital transformation - connectivity, security, zone-based multi-cloud automated access, network and application optimization, and cloud-based visibility and co-management
• The service-based PoP architecture enables a rich set of capabilities at the cloud edge, including support for hybrid workplaces by consolidating branch/headquarter and remote user connectivity, SASE capabilities, and advanced optimization
• The middle layer is based on the second layer fiber architecture, avoiding the problem of connecting with ISP and providing high performance
• Single-vendor solution eliminates service and support issues associated with telcos or regular managed service providers (MSPs) relying on third-party technology
• Integrates NaaS and NSaaS (Network Security as a Service) management services, in line with the definition of SASE architecture

Citrix

Citrix SD-WAN provides a reliable, high-performance digital workplace experience that enables employees to access the resources they need. It optimizes application performance and automatically connects all users, no matter where they are. It is a core network function of the Citrix Secure Access Service Edge (SASE) architectural approach, which allows the flexibility to enable security functions on-premises or in the cloud.

Key Differentiators:

• Citrix SD-WAN can provide performance improvements when used in conjunction with Citrix Workspace
• It speeds up troubleshooting by providing visibility into Citrix Virtual Apps and Desktops traffic (HDX) using user site, session, and user reports
• Leveraging cloud-managed automated deployment and route learning, it enables enterprises to quickly move to multi-cloud architectures
• Integrate security, SD-WAN and centralized policy management
• Provides multi-tenant cloud-hosted, single-pane-of-glass management for networking and security
• Enable sub-second failover for cloud, SaaS and virtual applications over any type of connection (4G LTE, MPLS, Internet)

Versa

The Versa SD-WAN solution implements the capabilities of the SASE architecture (full-stack security, advanced routing, true multi-tenancy), including visibility into traffic traversing the network between users, applications and devices, regardless of their location. Capabilities such as networking, security, visibility, automation and performance are all built into the architecture.

Key Differentiators:

• Provides a single-channel architecture with security and application optimization through a single software image and a single management portal, without service chaining or API integration
• Helping enterprises overcome challenges in on-premises, hybrid or multi-cloud environments
• All network and security services are provided natively by the Versa platform
• Manage all network and security vulnerabilities, deviations and issues from a single screen
• Integrated security, scalable routing, multi-tenancy, and analytics running on a single software image
• Visualization and centralized configuration

Algoblu

Algoblu NEV (Network Element Virtualization) network resource virtualization solution provides bandwidth efficiency, network security, multi-cloud access, simplified network configuration and troubleshooting. NEV is located between the first and second layers in the OSI seven-layer model. It can virtualize the underlying network resources (such as fiber ports) into 100,000 independent atomic channels through FPGA-based chips. The scheduler and orchestrator allocate a certain number of atomic channels for each resource requirement to form a sIF (Service Interface) business interface. SIF can be assigned to any specified application and guarantee its SLA. The implementation of the entire NEV protocol is completed by self-developed chips, which ensures efficiency.

Key Differentiators:

• NEV provides a shortcut for operators to provide tiered network services with QoS guarantees to meet users' personalized needs without changing the existing network infrastructure.
• Supports hierarchical network environment
• The underlying operator network is segmented into multiple separate, secure slices
• The traffic of each network slice is physically isolated, with independent resources and QoS guarantees
• Network slicing services can help users build Layer 2 or Layer 3 private networks that serve specific applications, such as enterprise multi-branch private networks, private networks for supply chain partners, security monitoring networks, and video conferencing networks.
• It provides services with strict SLA and QoS guarantees at competitive prices

Silver Peak

Silver Peak Unity EdgeConnect is a unified SD-WAN platform that supports application performance, security, and routing determined by top-down business policies rather than bottom-up technical constraints. Its architectural model uses corresponding overlay virtual WANs (overlays) based on the business needs of each type of application (business intent overlays).

Key Differentiators:

• Once overlays and their associated policies are defined through Unity Orchestrator, the configuration is pushed to all sites across the network.
• Traffic handling is fully automated, routing applications based on pre-configured parameters
• Continuously learns any changes in network conditions and adapts traffic processing to maintain continuous compliance with application QoS and security requirements
• Maintain consistent, always-available application performance, including voice and video, across any mix of transport services, including personal broadband services
• Centralized orchestration simplifies implementation of business changes, minimizes human error, and enables faster troubleshooting
• Eliminate the impact of blackouts and outages thanks to continuous monitoring and analytics that detect changing conditions and trigger immediate adjustments, enabling automated real-time responses
• Adaptive Internet traffic diversion, automatically updating application definitions and IP addresses for thousands of SaaS applications and 300 million web domains every day
• Unify visibility and control of SD-WAN, firewall, segmentation, routing, WAN optimization and applications on one platform

Fortinet

Fortinet FortiGate provides a fast, scalable and flexible SD-WAN. With a security-driven networking approach, it combines SD-WAN, next-generation firewall (NGFW) and advanced routing in a single device.

Key Differentiators:

• Coordinated network and security strategy
• WAN and security provided by one operating system
• One management console covers SD-WAN, advanced routing and NGFW control
• Simplify branch office architecture with SD-WAN and integrated NAC, WLAN, LAN, and LTE/4G/5G
• Scalable to over 1,000 user sites
• Connect to, within, and between clouds
• Cloud ingress orchestration reduces footprint and simplifies management
• Centrally manage deployment, configuration, and ongoing operations with visibility, analytics, and reporting

VMware

VMware SD-WAN was developed after the acquisition of VeloCloud. It uses cloud hosting to simplify the deployment and management of network equipment and uses traffic steering to send applications to data centers and clouds. It combines broadband with existing WAN connections to enable users to connect to data centers and cloud-based applications from anywhere on the network.

Key Differentiators:

• Optimizes traffic flow across multiple available connections (MPLS, broadband, LTE)
• Dynamically steers traffic to the best available link, and if an available link exhibits any transmission issues, it applies jitter and packet loss remediation based on policy to ensure performance for high priority applications
• Cloud-based management allows ubiquitous access across all device types for easy management
• Allows for rapid adaptation to changing needs, including increasing access to cloud-based services, establishing new branch offices or remote offices
• Dynamically direct all traffic to optimize application and data delivery
• These components connect to the central orchestrator when they go online, and the configuration is pushed from the central orchestrator to the edge devices

Cisco Meraki SD-WAN

Cisco Meraki provides network security and SD-WAN in one device. These MX devices create a network framework for Cisco SD-WAN powered by Meraki by securely and automatically configuring IPsec VPN tunnels between user sites. The Meraki dashboard automatically negotiates VPN routing, authentication and encryption protocols, and exchanges keys for all Meraki MX devices in the organization to create a hub and spoke or mesh VPN topology.

Key Differentiators:

• The Meraki MX security and SD-WAN appliance includes a next-generation Layer 7 firewall, Cisco Advanced Malware Protection (AMP), intrusion prevention, SSL decryption/inspection, data leak prevention (DLP), cloud access security broker (CASB), SaaS tenant restrictions, granular application control and file type control
• Virtual MX (vMX) is a virtual instance of the Meraki Security and SD-WAN appliance that provides the benefits of simple site-to-site automated VPN configuration for users
• With automated VPN provisioning, user branch sites with physical MX appliances can be securely connected to resources in public cloud environments in just two clicks.
• Extend SD-WAN to public cloud environments to optimize access to critical business resources
• For traffic destined for regular servers in a data center behind a physical MX or for virtual servers behind a virtual MX, dynamic path selection can be used to maintain the best path.

Original link: https://www.enterprisenetworkingplanet.com/data-center/sd-wan-vendors/