Choose one of the topics below for SD-WAN Resources to help you on your journey with SD-WAN
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC!
We will not comment or assist with your TAC case in these forums.
Im looking for more details on viptela Hybrid WAN offerings, need to understand the below points
3. How viptela can be used to design a cloud ready WAN arch
appreciate if someone can give headsup
Solved! Go to Solution.
1. The architecture in the simplest terms is a VPN based overlay WAN that is vendor agnostic. It is a privatized WAN solution that can leverage any transport such as MPLS, broadband, DSL, Satellite, and LTE technologies to name a few.
2. Benefit include but are not limited to reduction on reliance on cost prohibitive commercially available private network transport solutions such as MPLS, increased bandwidth at a lower price point for cloud based services such as Microsoft Azure, AWS, etc., and granular application level traffic prioritization strategies.
3. Cloud ready depends on your use case, if your cloud environment is privatized the SD-WAN can deliver access securely and privately over public internet. This reduces dependencies on direct connect, NetBond, and other costly transports with greater redundancy. SD-WAN solutions partner and integrate with cloud public cloud service solutions such as Cisco Spark, Zscaler, and other cloud service offerings. These have substantial benefits from a performance perspective due to peering relationships and global reach. However, buyer beware on the costs associated costs. There are multiple providers of these services vying for your business so make the choice that is right for your business needs.
There are good presentations about SD-WAN on Cisco live.
But you need to have a valid login to watch these videos, I'll try how I can get the PDF version of I can share with you.
Does Viptela has fireballing capability.Question is can we terminate internet link directly to Viptela bo without a firewall.
Please also note that Viptela never claim to be a proper security box to serve as firewall service inside your network hence it has L3 & L4 firewall capabilities.
You can apply traffic limitation * monitoring using:
As a result, you can block traffic using ACL up to L4 or using DPI feature at application level.
If you need more extensive security like IPS/IDS or malware detection or email protection, you might need to go down the service chaining path.
Yes, you can terminate a Internet circuit directly on the vEdges. I wouldn't call it a firewall capability, by default the vEdges don't respond to traffic unless the service is enabled on the interface.
Do you already have Viptela deployed in your environment? I'm looking for others that have deployed the Cisco Viptela SDWAN solution.