Hi
Its proprietarty so Cisco are the leaders as they own it , no one has else can yet anyway i dont think there going open source either
Were using it , were about 15 months in now 70 % through global rollout of all sites and core regions
Were using ASR 1001xs at the Core each region 2 border and 1 CSR100V as policy pusher , then all our remotre offices each region dual ISR4331s with dual symmetric internet/MPLS connections from same providors but completly diverse in path
Using LiveAction as the tool to monitor as its way more ahead of Cisco APIC-EM for visibility in terms of packet diving and qos , APIC-EM has some good features but there only catching up
We have RBs integrated too cores and most remotes , hit major issues in MTU with them during one phase but fixed them eventually and there working fine now too with design
If your going that route make sure you plan it well and i wont get statretd on bugs , but we have hit a few major ones but Cisco are on the ball with IWAN and are releasing fixes as quick as there coming but there is a few definite choice images you want to be aiming for and staying away from
I hear from meetings we have direct with Cisco that about 15k customer so far globally but expanding rapidly because its all active actiave and the ability to dump certain dscps down down backup lines an the ability of it to moniro for free bandwidth etc
One thing that has saved is is we kept our legacy design under the overlay dmvpn and pfr , so even if IWAN logically collapes in a bug the BGP will all still work on legacy design , this has obviously made it a very compliacted setup but its been worth it as we hit some bugs that crippled the CA servers for authenticaion in RSA leaving IWAN DMVPN all IKE certs could not authitciate even though they were reaching teh servert but BGP legacy kept the sites going
