software-defined wide area network (SDWAN)

    avatar
    Created by
    M

    Cards (11)

    • software-defined wide area network (SDWAN)

      Another emerging WAN technology
      View source
    • Centralized approach of bringing all network communications from branch offices back to the centralized corporate office
      • Fine when all resources were in a centralized location
      • Challenges with adoption of cloud-based services such as Microsoft 365, Salesforce, and Amazon Web Services
      View source
    • SDWAN
      Solves problems with how to police certain applications and assume bandwidth for other applications
      View source
    • Network communications use the layers of the OSI model
      • Data plane: where data is moved
      • Control plane: where data flow is controlled
      • Management plane: where the administrator manages the control plane
      View source
    • SDWAN
      • Decouples the control plane from branch routers and centralizes the control plane at the SDWAN controller
      • Control plane now decides based upon congestion or application response, not just path and getting packets routed fastest
      View source
    • Control protocols
      Allow an administrator to centrally control policies for branch office routers to prioritize and route traffic over an existing Internet connection or leased line
      View source
    • SDWAN
      • Application aware, can differentiate between application traffic and intelligently control the flow of information over an Internet connection
      • Can be combined with traditional technologies such as virtual private networks (VPNs) to maintain access to centralized resources
      View source
    • Generic Routing Encapsulation (GRE)

      A protocol used to create a virtual tunnel over the Internet or an internetwork<|>Only creates a tunnel between two routed points, does not provide encryption
      View source
    • GRE tunnels
      Difficult to manage as more routers are added
      View source
    • Multipoint Generic Routing Encapsulation (mGRE)

      Solves problems with scale and complication of configuration of GRE tunnels<|>Allows an administrator to configure multiple GRE paths throughout the enterprise and allows branch offices to create logical tunnels between each office
      View source
    • Traffic over mGRE tunnels still needs to be encrypted for privacy
      View source
    See similar decks