The ultimate guide to SD-WAN
Introduction
Today people work all over the place, at all different times, on multiple devices. They need to instantly access data whenever and wherever they want. And increasingly that data is in the cloud.
The networks that were fit for purpose back in the nineties, which many organisations still rely on today, can no longer cope.
Unlike the networks of old, SD-WAN was created with modern working style in mind, connecting your people to the cloud from any location without having to pass through all the usual traditional infrastructure.
In this guide we’ll go into all the detail, helping you better understand SD-WAN, how it can help your people and whether it’s the right choice for your organisation.
We’ll cover:
- What SD-WAN is, how it works and the benefits it can bring to your organisation
- The essential things to look out for when choosing an SD-WAN solution and how to make the right choice for your business
- The kind of questions you should ask any potential SD-WAN provider before you agree to partner with them and much more
What is SD-WAN?
An SD-WAN, or software-defined wide area network, is an approach to wide area networking that uses software to manage and optimise the connections between enterprise locations, data centres and cloud environments.
Unlike traditional WANs, which rely on rigid, hardware-centric models, SD-WAN brings the network hardware into a virtualised service layer. This allows you to use a mix of transport services, such as MPLS, LTE and broadband internet, giving you flexibility and cost savings without compromising on performance or security.
Here are some of the key features of SD-WAN you need to be aware of.
Virtual WAN
architecture
SD-WAN creates a virtual overlay network, allowing you to combine different transport services into a unified network. This abstraction layer decouples the network management from the underlying hardware, making it easier to deploy, manage and scale.
Centralised
management
With a centralised control interface, SD-WAN simplifies network operations by providing a single point of management for all WAN connections and policies. This centralisation helps IT teams quickly configure, monitor and optimise the network from anywhere.
Enhanced
connectivity
SD-WAN intelligently routes traffic over multiple connections, ensuring optimal performance and reliability. By dynamically selecting the best path for each application based on real-time conditions, it minimises latency and improves user experiences.
Cost-
effectiveness
By using cheaper broadband and LTE connections alongside or in place of costly MPLS circuits, SD-WAN can reduce overall network costs. This cost efficiency is achieved without sacrificing the quality of service or security, making it a financially attractive option for businesses of all sizes.
How does SD-WAN work?
SD-WAN operates by bringing the network hardware into a software-defined service layer, giving you advanced control and management capabilities.
It uses intelligent software to direct traffic over the most efficient routes based on predefined policies and real-time network conditions. This approach not only enhances performance but also improves the flexibility and agility of the network.
Policy-based
routing
SD-WAN allows IT administrators to define routing policies based on business needs. These policies determine how traffic is directed across the network, prioritising critical applications and ensuring they receive the necessary bandwidth and low latency.
Real-time
analytics
The system continuously monitors network performance, using real-time analytics to make dynamic routing decisions. This ensures that the network can adapt to changing conditions, such as congestion or link failures, in real time.
Application
prioritisation
SD-WAN can recognise different types of traffic and prioritise them accordingly. For example, VoIP and video conferencing traffic can be given higher priority over less critical data, reducing latency and improving the user experience for these applications.
Failover and
load balancing
In the event of a connection failure, SD-WAN automatically reroutes traffic to a backup link, maintaining connectivity and minimising downtime. It also balances traffic loads across multiple links to prevent any single connection from becoming a bottleneck.
What are the benefits of SD-WAN?
In today's digital landscape, businesses need agile, reliable and cost-effective networking solutions to support their diverse and dynamic needs.
SD-WAN addresses these requirements by providing a flexible and scalable network architecture that enhances performance, reduces costs and simplifies management.
This makes it an ideal solution for businesses looking to modernise their IT infrastructure and support growing demands for cloud applications, remote work and digital transformation.
What should you be aware of when adopting SD-WAN?
While SD-WAN offers many benefits, there are a number of potential challenges you need to be aware of too.
A good connectivity partner should be able to help you navigate and mitigate all of these.
- Requires investment in new hardware, software and potentially professional services for deployment and integration
- May necessitate training for IT staff to manage and maintain the SD-WAN environment effectively
- Can be complex to configure and manage, especially in large or highly distributed networks
- Requires skilled personnel to handle advanced features and troubleshoot issues that may arise
- Dependent on the quality and reliability of the underlying internet connections, which can vary
- Broadband and LTE connections can be less reliable than dedicated MPLS circuits, potentially affecting performance
- Potential challenges when integrating with existing network infrastructure, legacy systems and applications
- Compatibility issues may arise with older devices or software that were not designed for SD-WAN environments
How is SD-WAN different from other
types of connectivity?
Traditional WAN
- Dedicated MPLS circuits: Traditional WANs often rely on private, dedicated MPLS circuits, which are known for their reliability and performance but come at a high cost
- Less flexibility: Traditional WANs have limited ability to use other connection types like broadband or LTE, making them less adaptable to changing business needs
- Higher costs: The reliance on MPLS circuits makes traditional WANs more expensive to deploy and maintain compared to SD-WAN
Hybrid WAN
- Combination of MPLS and broadband: Hybrid WANs use a mix of MPLS and internet connections to balance cost and performance, but they lack the intelligent routing and management capabilities of SD-WAN
- Lacks intelligent routing: Hybrid WANs do not offer the same level of dynamic path selection and application prioritisation as SD-WAN
- Manual configuration: Managing a hybrid WAN often requires more manual intervention and configuration compared to the automated management provided by SD-WAN
MPLS
- High performance: MPLS circuits are known for their low latency, high reliability and QoS (quality of service) capabilities, making them suitable for mission-critical applications
- Higher costs: TMPLS is more expensive than broadband or LTE connections, leading to higher overall WAN costs
- Limited flexibility: MPLS is tied to specific service providers and offers less adaptability to changing network demands compared to SD-WAN
VPN
- Secure remote access: VPNs provide encrypted connections for secure remote access to the network but may not offer the same performance levels as SD-WAN
- Lower performance: VPNs can suffer from higher latency and lower performance compared to SD-WAN, especially for real-time applications
- Complex management: Managing multiple VPN connections and configurations can be complex and time-consuming, whereas SD-WAN centralises and simplifies these tasks
On-premises SD-WAN
⌵
Pros:
- Complete control over network management and security policies, allowing for tailored configurations to meet specific business needs
- Data remains on-site, providing additional security and compliance benefits
Cons:
- Higher initial costs for hardware, software and potential professional services
- Requires skilled IT staff for setup, configuration and ongoing maintenance, which can increase operational costs
Cloud-delivered SD-WAN
⌵
Pros:
- Easier to deploy and manage, often with a subscription-based model that reduces upfront costs
- Scalable, allowing you to quickly add new sites or increase bandwidth as needed without significant infrastructure changes
- Often includes built-in security features such as firewalls and encryption, simplifying security management
Cons:
- Dependence on third-party providers for performance and security, which may introduce risks related to service reliability and data privacy
- Less control over the underlying infrastructure compared to on-premises solutions, which may be a concern for some businesses
Managed SD-WAN
⌵
Pros:
- Outsourced management reduces the need for in-house IT resources, allowing you to focus on core activities
- Service providers handle deployment, configuration and ongoing maintenance, ensuring professional and reliable network management
- Often includes 24/7 support and monitoring, providing peace of mind and rapid issue resolution
Cons:
- Potentially higher ongoing costs due to service provider fees
- Less control over network management and configurations, which may not meet the specific needs or preferences of all businesses
How do you choose the right SD-WAN solution?
There are a number of things to consider when choosing an SD-WAN solution, depending on what your teams and organisation need
We’ve laid out some of the main things you might want to consider below, from vendor evaluation to security features and more.
Assess business needs
Identify the specific needs of your business, including application performance, bandwidth requirements and security needs. Consider the scale of your network, including the number of sites and the geographical distribution of your offices.
Evaluate vendors
Research and compare different SD-WAN vendors, focusing on their reputation, experience and customer reviews. Assess the features and capabilities of each vendor’s solution, ensuring they meet your business needs.
Consider costs
Calculate the total cost of ownership, including initial deployment costs, ongoing subscription fees and potential savings from reduced MPLS usage. Evaluate the return on investment by comparing the costs against the expected benefits, such as improved performance and reduced downtime.
Check security features
Ensure the SD-WAN solution includes robust security features, such as encryption, firewalls and intrusion prevention systems. Check for compliance with industry standards and regulations to ensure the solution meets your business’s security requirements.
Look for scalability and flexibility
Choose a solution that can scale with your business as it grows, allowing for easy addition of new sites and increased bandwidth. Look for flexible deployment options, such as on-premises, cloud-delivered or managed services, to match your business preferences and resources.
How difficult is SD-WAN to implement and what is involved?
Implementing SD-WAN can vary in complexity depending on the size of the network, the specific solution chosen and the existing infrastructure. But the process generally involves several key steps.
Assessment and planning
Conduct a thorough assessment of your current network infrastructure, identifying any potential challenges or requirements for the SD-WAN deployment. Develop a detailed implementation plan, outlining the steps, timeline and resources needed for the deployment.
Vendor selection
Choose an SD-WAN vendor that aligns with your business needs and goals, considering factors such as features, cost and support. Engage with the vendor to discuss your specific requirements and develop a tailored deployment plan.
Network design and configuration
Design the SD-WAN architecture, including the placement of SD-WAN appliances and the configuration of routing policies and security settings. Configure the SD-WAN solution according to your business’s requirements, ensuring optimal performance and security.
Deployment and testing
Deploy the SD-WAN appliances at each site, connecting them to the existing network infrastructure. Conduct thorough testing to ensure the SD-WAN solution is working as expected, identifying and resolving any issues that arise.
Training and support
Provide training for your IT staff to ensure they are familiar with the SD-WAN solution and can manage it effectively. Establish ongoing support and maintenance processes to ensure the continued performance and reliability of the SD-WAN solution.
How secure is SD-WAN?
SD-WAN offers robust security features to protect data and network integrity. By integrating advanced security measures into the network architecture, SD-WAN ensures that data is protected both in transit and at rest, providing a secure and reliable solution for modern enterprises.
Encryption
Secures data in transit with strong encryption protocols, preventing unauthorised access and ensuring data confidentiality. It uses industry-standard encryption methods, such as IPsec and SSL/TLS, to protect data across all connections.
Firewalls
Integrates firewall capabilities to block unauthorised access and threats, giving you an additional layer of security. It offers granular control over traffic, allowing administrators to define and enforce security policies based on business needs.
Intrusion Detection and Prevention
Includes intrusion detection and prevention systems (IDS/IPS) to monitor and block malicious activities. It detects and responds to potential threats in real-time, enhancing network security and resilience.
Segmentation
Splits your network into different zones, or segments, isolating critical applications and data from less secure areas. It reduces the risk of lateral movement by attackers, limiting the potential impact of a security breach.
Consistent Policy Enforcement
Ensures consistent enforcement of security policies across the entire network, regardless of the underlying transport method. Centralised management allows for easy updates and adjustments to security policies, maintaining compliance and security standards.
Compliance
Meets industry-specific security standards and regulations, ensuring compliance with data protection and privacy requirements. It provides detailed reporting and auditing capabilities to support regulatory compliance efforts.
What should you look for in an SD-WAN provider?
Experience and reputation
- Look for providers with a proven track record and positive customer reviews, indicating their reliability and expertise in SD-WAN deployments
- Assess their experience in your specific industry as this can provide valuable insights and tailored solutions
Comprehensive features
- Ensure the provider offers a robust set of features, including intelligent traffic management, application prioritisation and advanced security capabilities
- Evaluate the scalability and flexibility of their solution, ensuring it can grow with your business and adapt to changing needs
Security measures
- Consider the level of support and service the provider offers, including 24/7 technical support and proactive monitoring and maintenance services
- Assess their ability to provide timely and effective assistance, minimising potential disruptions and ensuring the smooth operation of your SD-WAN solution
Cost and ROI
- Evaluate the total cost of ownership, including initial deployment costs, ongoing subscription fees and potential savings from reduced MPLS usage
- Assess the expected return on investment, comparing the costs against the anticipated benefits, such as improved performance and reduced downtime
Security and compliance
- Ensure the provider’s solution includes robust security features, such as encryption, firewalls and intrusion prevention systems, to protect your network and data
- Check for compliance with industry standards and regulations, ensuring the solution meets your business’s security and compliance requirements
What should you watch out for in an SD-WAN provider?
Hidden costs
- Be aware of hidden costs that may not be apparent during the initial assessment, such as additional fees for support, maintenance or advanced features
- Clarify the total cost of ownership and ensure there are no unexpected expenses that could impact your budget
Over-promising
- Be cautious of providers that make unrealistic promises or guarantees about their solution’s performance, reliability or capabilities
- Look for evidence of their ability to deliver on their promises, such as customer testimonials, case studies and performance metrics
Limited support
- Assess the level of support the provider offers, ensuring they provide comprehensive and responsive assistance when needed
- Be wary of providers that offer limited or inadequate support as this can lead to potential issues and disruptions
Lack of flexibility
- Ensure the provider’s solution is flexible and adaptable to your business’s specific needs and requirements
- Avoid providers that offer rigid or one-size-fits-all solutions as these may not meet your business’s unique needs
Security concerns
- Evaluate the provider’s security measures and ensure they meet your business’s requirements for data protection and compliance
- Be cautious of providers with a history of security breaches or inadequate security practices
Why choose Virgin Media O2 Business?
Our expert team can help you make the right choice for your organisation
Combining expert advice with commercial flexibility, we use connectivity to solve our customers’ biggest challenges and help them meet and exceed their goals, with the budget they’ve got, in a sustainable way.
Where other SD-WAN providers focus on either the software (overlay) or the network (underlay), we partner with leading SD-WAN suppliers Versa and Cisco to provide both, with the option of a fully managed package where we do all the heavy lifting for you.
From initial consultation to implementation and beyond, we’ll work closely with your team to make sure you’re investing in connectivity where it counts, ensuring a good return on investment while helping you reduce the risk of change.
Want to know more? Talk to our team today.