Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
735
Views
0
Helpful
1
Replies

MPLS to cloud Migration

juserwedra
Level 1
Level 1

‎03-15-2024 02:26 AM - last edited on ‎03-15-2024 02:46 AM by Cisco Employee

My company is going to be migrating from on prem to an all SaaS world. We currently have a DC that will be going away in the next year and about a 1/4 of our locations will be moving off MPLS to DIA circuits with Meraki equipment. For the sites that will remain at MPLS after the DC goes away my question is how do I get these sites to get to our internal network, I am thinking that SDWAN is an option but I am not familiar enough with it. I am looking for other possible solutions for this as well. I have already had the conversation about why the DC needs to stay in place until we get all sites migrated but have gone on deaf ears.

Thanks.

router login 192.168.l.l
Labels:
0 Helpful
1 Reply 1

AshSe
VIP
VIP

‎01-18-2025 11:56 PM

Hello @juserwedra 

Migrating from an on-premises data center to an all-SaaS environment while managing a mix of MPLS and DIA circuits can be challenging, but there are several solutions to ensure connectivity for your remaining MPLS sites after the data center is decommissioned. SD-WAN is indeed a strong option, but let’s break down the problem and explore potential solutions.

Key Challenges

  1. MPLS Sites Without a Central Data Center: Once the data center is gone, MPLS sites will lose their central hub for routing traffic to internal resources or SaaS applications.
  2. Hybrid Network Environment: You’ll have a mix of MPLS and DIA circuits, which need to work together seamlessly.
  3. Performance and Security: SaaS applications require low-latency, reliable connections, and secure access.

Solution Options

1. SD-WAN (Recommended)

SD-WAN is a modern solution that can address your hybrid network needs. It provides centralized management, dynamic path selection, and the ability to route traffic intelligently across MPLS and DIA circuits. Here’s how it can help:

  • MPLS Integration: SD-WAN can integrate with your existing MPLS circuits and provide a seamless transition as you migrate to DIA circuits.
  • Direct SaaS Access: SD-WAN can route traffic directly to SaaS providers (e.g., Microsoft 365, Salesforce) over DIA circuits, bypassing the need for a central data center.
  • Secure Connectivity: SD-WAN solutions often include built-in security features like encryption, firewalls, and secure tunnels.
  • Cloud Gateways: Many SD-WAN providers (e.g., Cisco Meraki, VMware, Palo Alto Prisma SD-WAN) offer cloud gateways that act as virtual hubs for MPLS sites to connect to SaaS applications or other internal resources.

How It Would Work:

  • Deploy SD-WAN appliances at all sites (both MPLS and DIA).
  • Configure SD-WAN to route traffic dynamically based on application type, performance requirements, and available paths.
  • Use cloud-hosted SD-WAN controllers to manage the network centrally.

Pros:

  • Simplifies management of hybrid networks.
  • Optimizes performance for SaaS applications.
  • Reduces dependency on MPLS over time.

Cons:

  • Requires investment in SD-WAN appliances and licenses.
  • May require expertise to configure and manage initially.

2. Cloud VPN or Virtual Private Network (VPN)

If SD-WAN is not an option, you can use a cloud-based VPN solution to connect MPLS sites to your SaaS environment or internal resources hosted in the cloud.

How It Would Work:

  • Deploy VPN appliances or software at MPLS sites.
  • Use a cloud VPN concentrator (e.g., AWS VPN Gateway, Azure VPN Gateway) to terminate VPN connections.
  • Route traffic from MPLS sites to the cloud VPN gateway, which can then connect to SaaS applications or other cloud-hosted resources.

Pros:

  • Lower cost compared to SD-WAN.
  • Simple to implement for smaller networks.

Cons:

  • May not provide the same level of performance optimization as SD-WAN.
  • Requires manual configuration and management of VPN tunnels.
  • Limited scalability for large or complex networks.

3. MPLS-to-Cloud Connectivity

Some MPLS providers offer direct connectivity to major cloud providers (e.g., AWS Direct Connect, Azure ExpressRoute, Google Cloud Interconnect). You can use this to bridge your MPLS sites to your SaaS environment.

How It Would Work:

  • Work with your MPLS provider to establish direct connections to your SaaS providers or cloud-hosted resources.
  • Configure routing to ensure MPLS sites can access these resources without needing a central data center.

Pros:

  • High performance and low latency for cloud access.
  • Leverages existing MPLS infrastructure.

Cons:

  • Can be expensive, depending on your provider.
  • Limited flexibility compared to SD-WAN.

4. Cloud-Native Networking Solutions

If your SaaS applications are hosted in public cloud environments (e.g., AWS, Azure, Google Cloud), you can use cloud-native networking solutions to connect MPLS sites.

How It Would Work:

  1. Deploy virtual network appliances in the cloud (e.g., Azure Virtual WAN, AWS Transit Gateway).
  2. Use these appliances to route traffic between MPLS sites and SaaS applications.

Pros:

  • Tight integration with cloud environments.
  • Scalable and flexible.

Cons:

  • Requires expertise in cloud networking.
  • May not be cost-effective for smaller networks.

5. Hybrid Approach

You can combine SD-WAN with other solutions to create a hybrid approach:

  • Use SD-WAN for sites with DIA circuits.
  • Use MPLS-to-cloud connectivity or VPN for MPLS sites.
  • Gradually transition MPLS sites to DIA circuits and SD-WAN as part of your long-term strategy.

Recommendation

Given your scenario, SD-WAN is the most future-proof and flexible solution. It will allow you to:

  1. Transition away from MPLS over time.
  2. Optimize performance for SaaS applications.
  3. Simplify network management.

If SD-WAN is not feasible due to budget or other constraints, a cloud VPN solution can serve as a temporary workaround.

Next Steps

  1. Evaluate SD-WAN Vendors: Look into solutions from Cisco Meraki, VMware, Palo Alto Networks, Fortinet, or others. Many vendors offer trial periods or proof-of-concept deployments.
  2. Assess MPLS Provider Options: Check if your MPLS provider offers direct cloud connectivity or other hybrid solutions.
  3. Plan the Transition: Develop a phased migration plan to move sites from MPLS to DIA and implement SD-WAN or other solutions.
  4. Engage Stakeholders: Revisit the conversation about keeping the data center until the migration is complete, emphasizing the risks and challenges of decommissioning it prematurely.

By taking a phased and strategic approach, you can ensure a smooth transition to an all-SaaS environment while maintaining connectivity for all sites.

 

Hope This Helps!!!

AshSe

Forum Tips: 

  1. Insert photos/images inline - don't attach.
  2. Always mark helpful and correct answers, it helps others find what they need.
  3. For a prompt reply, kindly tag @name. An email will be automatically sent to the member.
0 Helpful
Customers Also Viewed These Support Documents