Category Archives: White Papers

24 Sep

What’s in an SD-WAN?

What’s in an SD-WAN?

By R. Scott Raynovich, Principal Analyst Futuriom

Software-defined wide-area networking (SD-WAN) technology combines many desired enterprise networking features – including security, bandwidth optimization, and application acceleration – and delivers them with a cloud-managed networking architecture.

One of the primary benefits of SD-WAN technology is that it implements new network services and features in software, without requiring hardware upgrades. Enterprise and service-provider buyers are interested in the multiple benefits of SD-WAN, including improving and managing broadband Internet, reducing network costs for both connectivity and operating expense (opex), and improved management and automation. Service providers are aware of this trend and are scrambling to put together managed services offerings, as their MPLS offerings will clearly be replaced by SD-WAN services in the long term.

The Network’s Cloud Evolution

One of the big trends with information technology is the move to the cloud. Enterprises now expect to buy IT services, on-demand, from the cloud. The network is moving to the cloud as well. Enterprise network managers seek the agility and flexibility of managing their network from the cloud, while at the same time getting locked into proprietary equipment on expensive private lines. Gains in Internet availability and bandwidth optimization technology, such as WAN optimization, de-duplication, load-balancing, and link balancing, have become more sophisticated, enabling enterprises to leverage Internet broadband for business applications. This is driving the rapid expansion of the SD-WAN market, which provides all of this functionality in a cloud-delivered model

The Network’s Cloud Evolution

Futuriom’s ongoing interviews with enterprise end users as well as service providers delivering SD-WAN reveals the following goals in connecting the WAN in these new cloud environments:

  • Optimize and accelerate WAN traffic to the cloud
  • Improve overall network security
  • Reduce costs related to WAN bandwidth
  • Leverage multiple access technologies such as fiber, DSL, and wireless
  • Increased flexibility in CPE so that management can be outsourced or updated with software-only upgrades
  • Improve capability to purchase, provision, and manage network services via the cloud, using software

Customers can solve all of these problems with a single SD-WAN offering that addresses these challenges with specific features. Take a look at the features that can now be typically included in an SD-WAN package:

Let’s highlight why all of these SD-WAN features are important.

Router replacement and Open CPE: Managing proprietary hardware and customer premises equipment (CPE), including branch-office routers, can be expensive and time consuming. SD-WAN can be used to simplify the deployment and management of CPE – especially if you are a retail company that has to manage hundreds or thousands of branches. SD-WAN functionality can be delivered on open, commercial off-the-shelf (COTS) hardware and managed from the cloud, helping to streamline and automate management.

Enhanced Security and Cloud VPN: One of the allures of SD-WAN technology is that it can be used to deploy a virtual private network (VPN) as a software overlay using end-to-end encryption. This helps meet security requirements for businesses that may want to connect branch offices or retail outlets but also have high security requirements. But SD-WAN platforms can also be used to deliver value-added security services such as stronger encryption, malware detection, and intrusion detection services (IDS). Security is becoming an important checklist item for SD-WAN.

WAN Optimization: SD-WAN can be used to improve the performance of applications on the network. WAN optimization, once a discrete function delivered with a hardware or software appliances, is being integrated into SD-WAN functionality. Many SD-WAN technologies include WAN optimization functionality and we expect this to be a checklist item in SD-WAN deployments.

Application Performance Enhancement: Cloud WAN solutions can be built that optimize access to cloud applications by monitoring traffic and routing higher-priority business applications ahead of leisure services such as Netflix and YouTube. Additionally, many WAN services can peer directly with cloud services to offer a “fast lane” to the business applications. These techniques can be used to “offload” enterprise WAN backhaul, routing cloud traffic directly to the source using a combination of broadband technologies. This will also have the effect of challenging the traditional ADC model of providing these services as part of a discrete hardware device. In addition, some SD-WAN vendors are working with cloud vendors to set up specialized cloud gateways and POPs in cloud datacenters to provide more direct access to cloud applications.

Cloud Management: As we have outlined, SD-WAN functionality can be deployed using COTS hardware and then managed from the cloud. This means that new network features, functionality, and updates can be managed with software over the network, rather than forklift upgrades, yielding a network-as-a-service model.

The SD-WAN market is now rapidly moving to customer deployments and accelerating because it delivers a more flexible, agile, and feature-rich platform to manage the enterprise WAN. Futuriom believes that in 2019 the market will continue to accelerate and drive into the billions of dollars, as it replaces some legacy technologies for VPN, ADC, edge routers, and firewalls. The market is consolidating around software-delivered and adaptive WAN services that can connect either through thin customer clients or industry-standard CPE.

FatPipe Networks have been selling software defined networking solutions for over 20 years and have specialized in providing customers with best of breed security, (one of the only SD-WAN providers with FIPS 140-2 government certification) reliability, flexibility (can support up to 15 interfaces in one device) and is easy to manage, providing a single pane interface view of the entire network.

FatPipe Networks www.fatpipeinc.com

26 Jul

12 Attributes of a Best of Breed SD-WAN

12 Attributes of a Best of Breed SD-WAN Solution & Why You Need One for Secure Traffic Management

SD-WAN is really about traffic management.   Sure, zero touch deployment is not necessarily a traffic management solution, but the reason software is driving WAN deployments and configurations is simply that it is capable of managing your data links and traffic across these links.

Network Security

Extensive research has established that security is the number one issue faced by WAN administrators.  Hosting your data in the cloud, hybrid cloud or on premise has created the need for highly secure traffic management between users and your data.   There are a lot of SD-WAN solutions out there that claim to have the capabilities to manage this traffic securely, but not all SD-WAN is the same.

If you think security, firewalls are part of the conversation.   Firewalls are designed to detect and prevent intrusion, but are not WAN traffic management devices.   Traditional Routers are designed to route traffic over multiple links, but have been complicated to install and definitely complicated to manage.

SD-WAN has certainly disrupted the traditional networking industry and today, software managing your data traffic is becoming much more commonplace.   For SD-WAN to be successful in today’s complicated networks, it must be simple to install and, above all, simple to use and administrate.   It must be able to run on popular hypervisors, be compatible with cloud infrastructures and understand multiple link types, including legacy systems, such as BGP networks, as well as the less expensive and ubiquitous broadband networks.

So how does the WAN administrator find the best SD-WAN solution when there is so much choice and marketing hype?   Understanding the features and functions of pure SD-WAN is important, especially when it comes to security of your data.

Best of breed SD-WAN solutions will come with the following features:

  1. Easy to install
  2. Support ALL link types (existing legacy systems (BGP) as well as Internet, satellite, 3G,4G,5G, LTE, cable)
  3. Support multiple links in one device (up to 12 interfaces is not uncommon)
  4. Support bandwidth ranges from 10Mb up to 40 Gig.
  5. Provide secure management of BOTH inbound and outbound traffic.
  6. Allow customization and assignment of application traffic on certain links with instant failover
  7. Ability to determine healthy links instantly, which allows for instant failover, of BOTH inbound and outbound traffic. This usually means the methodology used to test the links is very important.  Ask what algorithms the software uses to test the links.
  8. Cloud support with emphasis on secure traffic transmission and instant failover capabilities to multiple link types.
  9. Zero touch branch deployment
  10. Options to host or outsource to MSP
  11. Opex or Capex offerings
  12. Most important! Easy to use management tool!   It must provide a simple to use traffic management tool that allows for quick, easy and intuitive changes to any link or application traffic not matter where that application or link is located on the WAN.   You should NOT have to retrain your IT staff or pay for certified staff to manage your SD-WAN implementation.

Of course, this is not a comprehensive list, but if you are looking for an SD-WAN solution to sustain your systems for some time to come, you need to consider each of the features above and map them to your long-term plan.  Remember, security is the number one issue, so do not look at any SD-WAN solution that cannot provide selective encrypted data flow across the network, and preferably choose solutions that incorporate stateful firewall IDS/IPS features.    SD-WAN will definitely benefit the efficiency of your network, but do not settle for limited capabilities, knowing that your user count will increase and your network will expand.

FatPipe Networks has been developing and selling SD-WAN solutions for over 17 years, and are widely known as the “inventors” of SD-WAN.   The software suite is extremely comprehensive, but what is most talked about is the easy to use interface, EnterpriseView™ – which is a single pane view of the network allowing administrators easy access and with simple to understand menus, administrators can make changes to traffic management, no matter the destination, starting point or route taken.

FatPipe Networks encryption is FIPS 140-2 certified, making it the only SD-WAN vendor with an encryption module approved by government agencies.  To add to the security capabilities, FatPipe recently announced firewall support next generation firewall IPS/IDS features allowing users the luxury of having a highly secure traffic management solution with integrated firewalling.

FatPipe’s comprehensive SD-WAN suite is unique in the industry especially its patented SmartDNS™ which provides customers with INBOUND fail-over capabilities, not seen in other SD-WAN offerings.   FatPipe also provides industry leading policy-based routing, giving administrators the ability to set thresholds based on common network issues, such as latency, jitter, and packet loss that will trigger if certain user defined conditions are met, ensuring data is not lost or compromised due to congestion or other link issues.

FatPipe is certainly a top contender if you are seriously considering SD-WAN or are upgrading your current network solution.  Call FatPipe today at 1-801-683-5656 x 1224.

www.fatpipeinc.com

[et_social_follow icon_style=”slide” icon_shape=”rounded” icons_location=”top” col_number=”auto” counts=”true” counts_num=”0″ total=”true” outer_color=”dark” network_names=”true”]

29 Mar

The Intelligent Edge-where are we today?

What is it, and where is it going?

Most WANs of today still use routers and technology that, at the time, served a purpose and provided a mechanism to expand the network to remote branches and locations across the world using MPLS or similar protocols.

But times have changed.  Traffic on WANs has increased by almost 10 fold in the last 15 years.   T1 was “revolutionary” many years ago, providing speeds of a blistering 1.5Mb/s.    Today, this throughput is not going to make the grade in 99% of WANs.   Fiber, or optical networks can reach speeds of over 100Gbps.   It is like buying a new car every 5 years.   You see the features and you want them, as do network administrators.  

So what is the “Intelligent Edge?”  

First, what really is “the edge”?  A definition from Wikipedia is “an edge device provides an entry point into enterprise or service provider core networks.  It can be thought of as a router that provides authenticated access to faster more efficient backbone and core networks.”     Essentially, “the edge” of any network is thought of to be a place where you generate, collect, and analyze data on the edge of the network where the data is generated rather than in centralized servers and systems.   Computation is largely or completely performed on a distributed device node known as smart device or edge device.  

OK – so now we understand “what” the edge is, so what is the “intelligent edge?   As Wide Area Networks grew and became more complicated with more and more devices being attached, both hard wired, wireless and remote, the need for bandwidth increased, dramatically. 

Today – there are almost 24 Billion devices connected to the internet with the expectation of 50 billion by 2020.    Think of the “intelligent Edge” as a place where computing occurs.   It is “intelligent” because there is technology there that has ability to control, analyze and compute.   This can be a manufacturing floor, a farm crop field, a city, your home, power plant, sports arena, your car, in the air, or under the sea.  These interrelated computing devices or objects are referred to as the Internet of Things (IoT) and these devices are driving how and why the “intelligent edge” is becoming a key focus for network managers.   This intelligent edge connects these devices, performs analytics, computes, and can control actions that were formerly confined to the central or cloud based data centers. 

The usage and access demand is what is driving “edge” technologies and solutions.   It is much better to access the information and data as close to the connection point as possible.  

On average, users have 5 different devices to attach to the network.    Of course they expect to attach to a network and access the applications and data they need, instantly.   But this requires a network with agility, flexibility and “intelligence” to understand where the requests are coming from, how to manage the requests in the most efficient and effective manner possible and to provide reliable connectivity which, after all, is why sensors and monitors are being installed in machines such as wind turbines, to monitor vibration, wear and operating effectiveness, and help prevent brownouts or blackouts.    However, without constant and reliable connectivity, the data provided by these sensors would be “lost”.

The un-intelligent router in all its forms is struggling to find relevance in this scenario. The availability of ethernet handoff is killing the router business. They are trying hard to find relevance in this scenario.

So where next for the “intelligent edge”?  

As stated earlier, more and more devices are being connected and more and more data being collected on a multitude of things to help streamline decision making to prevent downtime or in the worst cases, failure.    

Networks of the future are going to be driven by the need for instant information, instant decisions, and instant remediation.   All of which is why the “intelligent edge” will become a mainstream “product” in the design and implementation of ANY network.      Having said that, what does this mean for networks of today, and what should the administrators plan for to embrace these changes?

Let’s look at the current most important issues faced by network administrators and how embracing intelligent edge devices will affect how these issues might be dealt with.

Firstly – Security:

Many recent surveys suggest the number one issue faced by network administrators worldwide is, security.  Security of data, whether in transmission or stored somewhere is critical.    We just have to look at the problems faced with social media company data breaches, credit card company breaches and others to know that data security is by far and away the number one issue.  Can the “intelligent edge” help?  Yes and no.   It is not the “edge’ that can prevent hacking, it is the underlying software that transmits the data that is key.    The transmission of data across the network, from edge device or user to data center to other devices, needs to be secure.   Administrators need to deploy software solutions that provide highly secure data transmission, and that includes data from the edge.    The intelligent edge, does however, compute locally and provides a more local management issue, rather than a broad network security issue.

Second:- Ease of Management:

Believe it or not, the costs of recruiting, training, certifying and managing skilled IT staff is becoming a major issue for any business.   The days of paying for continuing education and propriety certification are waning.   Today, administrators are looking for solutions that are easy to manage, especially when devices and or offices are remote.   The Intelligent Edge should be simple, easy to install and manage remotely, and for the most part, this is true once the devices are installed.

Third: – Compatibility with existing networks:

Organizations are reluctant to rip and replace their networks.   If a solution can augment existing installations, administrators will look favorably at these recommendations.  So, does the intelligent edge help with these decisions?    Certainly, as they can use existing infrastructure provided there is an underlying software that can manage data transmission and device access securely and reliably.  

Fourth: – Network performance:

Latency, bandwidth, reliability, duplication and overall cost of the network are all top of mind.  Intelligent edge devices cannot perform or provide the benefits they claim to bring to a business if the underlying network is slow, unreliable or using legacy systems that are slow and difficult to manage or update.    The Intelligent Edge is only going to be as good as the network infrastructure it is connected to.  The bottom line here is to make sure the network is configured to take advantage of intelligent edge device data.    

So now what?

The Intelligent Edge is certainly something that can help network administrators predict the future more accurately.  The more data these devices provide, the better the decision will be on how to use this information, and with the advent of AI, this information can be acted on immediately, providing “instant” remediation or feedback that helps businesses learn what we like, when equipment may malfunction, where to route data to avoid a line failure, how to prepare for the best solution, and even where we might choose to travel to next.

So just install intelligent edge devices and move on?   Stop!    Read this first!

Earlier in this article, we mentioned the need for the underlying network infrastructure to be “intelligent edge” ready.    Remember, you can have all the sensors and monitoring services available, but if the data they produce is not getting to the right places at the right time, you are back to square one.    Adding more devices or “edge services” does not make network administration easier unless you have the right network solution to take advantage of these benefits.

Without installing software solutions to monitor and manage your edge devices, the “intelligent edge” becomes another user on the network.   In order to take advantage of the many benefits the “intelligent edge” provides, you need to make sure your network is ready.   

It must be ready to:

  • Transmit data from all devices, including the intelligent edge devices, securely and effectively, without user intervention.
  • Proactively route data on the best available link in times of congestion
  • Automatically failover in a sub second if a connection should fail
  • Use all and available bandwidth proactively and intelligently, without having to reconfigure the network
  • Automatically detect and remediate attempts to breach the security of the network
  • Be managed easily and simply from a single point, with zero touch provisioning for remote branches.

FatPipe Networks has been providing network solutions for over 15 years and is the only company with a patented security module that is FIPS 140-2 certified, providing military grade security for traffic across the WAN or across broadband networks.   FatPipe solutions give administrators the comfort of the highest SD-WAN security available.

Fatpipe patented technologies have eliminated the need for BGP routing, and with it all the delays in inefficiencies of route propagation. Fatpipe brought intelligence to the edge.

Using FatPipe’s single pane GUI management tools, administrators can not only see exactly what their network looks like, but with FatPipe’s QoS, they can prioritize application access no matter where the application resides, in the cloud or locally.   In addition, FatPipe’s solutions allow for load balancing over multiple links, including Cable, DSL, MPLS, DIA, 3G, 4G, 5G LTE and satellite.  FatPipe’s management tools are easy to use, requiring basic IT skills saving companies’ significant time and IT staff educational costs.

FatPipe has always been a company serving network administrators.   FatPipe was providing WAN SD-WAN solutions long before SD-WAN became a buzz word.  The solutions are built to work with existing LAN and WAN infrastructures and protocols.  In fact, FatPipe is the only SD-WAN vendor to support up to 40Gbps bandwidth and up to 15 interfaces.  

FatPipe Networks:  801-683-5656 x1224.

28 Aug

Answers for Today’s K-12 Network

Summer time fun is over and kids all over the country are going back to school or are already back in school.  The image of a small kid hauling a backpack filled with books is fast fading in favor of computer savvy kids with laptop, smart phones, tablets, and ipad’s!  Juxtaposed with the rapid movement of teaching, homework assignments, student records on line, etc. are bound to increase the workload and stress of most network administrators.

The Internet plays a vital part of daily activity in today’s K-12 network.  Students, teachers and administrators are using this tool as a means of expanding the classroom experience.  Network administrators are facing increasing pressure from federal, state, and local regulators to ensure it can meet ever growing demands.

Limitations in access to the Internet and other wide area network resources can affect an institutions ability to meet these directives.  Slow speeds and unresponsive systems are sure to raise the heckles of students, teachers and parents alike (not to mention school administrators).  Unfortunately, the network admin staff is the first ones blamed.  But fear not, planning and the use of technology can assist in overcoming and resolving many network related problems.  BYOD, PARCC and other requirements can be met along with a marked reduction in stress.  You can learn more from this informative paper.

Click HERE to download the white paper

21 Aug

Key WAN Design Considerations for Cloud Connectivity & Business Continuity

It is hard to believe the Internet is over 25 years old.  During this time the world witnessed exponential growth in the Internet and with it Wide Area Networks (WANs).  Today business life would be unimaginable without WANs.  Commerce, emails, data transfer, information searched all depends on WANs.  Thus WANs are not only ubiquitous, they are vital.

All of us have experiences WAN outages (if you have not you are lucky!).  the moment this happens every employee is up in arms, productivity plunges, use of cuss words increase and in general the mood turns sour – and who gets blamed? – the network administration group.  The only other thing that is bound to get people even more upset is if the paycheck is not deposited on time!

Unfortunately, if a WAN is only connected by one data-line, and the line is cut or goes down, chaos results.  Even though the ISP has an SLA with you, it is only a promise that the network with be up a certain percent of the time. If not they pay a penalty while you incur the wrath of employees.  To avoid this, many network administrators introduce redundancy to WANs.  Redundancy can be achieved in many ways.  Multiple lines aggregated using BGP or FatPipe technology solves the problem.  BGP is arcane and requires a great deal of expertise while FatPipe technology is “set it and forget it”.  This paper will discuss discusses WAN redundancy and reliability and is a good starting point in ensuring you have a “high availability WAN”

Click HERE to download the white paper