35
NOKIA— PROPRIETARY AND CONFIDENTIAL — RESTRICTED — SOLELY FOR AUTHORIZED PERSONS HAVING A NEED TO KNOW. COPYRIGHT © 2016 NOKIA. ALL RIGHTS RESERVED. Enterprise WAN Evolution with SD-WAN Toshal Dudhwala 20-Oct-2016

Enterprise WAN Evolution with SD-WAN

Embed Size (px)

Citation preview

Page 1: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

EnterpriseWANEvolutionwithSD-WANToshalDudhwala

20-Oct-2016

Page 2: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

Agenda

• StateofEnterpriseWAN

• EnterpriseSD-WANUseCases

• VNSDeploymentExample

Page 3: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

Agenda

• StateofEnterpriseWAN

• EnterpriseSD-WANUseCases

• VNSDeploymentExample

Page 4: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

AdoptionofOff-PremiseCloudservices

• Cloudhaschangedthewayapplicationsarebeingconsumed- From“orderandwait”To“orderandget”->WANbecomesmorestrategic

• EnterpriseWANsarecostlyandcomplextomanage,15%ofITbudgets

• 40-60%ofenterprisedatatrafficismigratingfromWANstotheinternet

• ClouddrivesrequirementforincreasedWANagilityandflexibility:access,automation,app-control,visibility

Multiplepersonas

Singleuser

Source: www.idc.com

Page 5: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

HowanEnterpriseNETWORKshouldlooklike…

PublicCloud

Automatedoperations

PrivateCloud

Internet

On-Net

ANYNetwork

Branchoffices

EnterpriseWAN

SEAMLESSon-boarding

ANYaccessCOTS

hardware&newfulfillmentmodels

CloudtoBranchPolicy-basedAutomation

ü Automatedü Instantaneous policy-drivenmodifications

ü Simplified fulfillmentandmanagement

ü Freedom ofchoice

Page 6: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

SDNevolution– thejourney

� �

Networkautomationfor

physical/virtualworkloads

SD- DC

Applications

Networkautomationfor

NetworkServices

SD-WAN

WAN

NetworkautomationforUser

networking

SD-LAN

Users

Page 7: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

WhatisSD-WAN?

SD-WAN (Software Defined Wide Area Networking) is a new model for the delivery of enterprise services over the WAN based on SDN principles

IT-approach to network service

delivery

SD-WAN promises to shift incremental control to enterprise IT

Page 8: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

HQ

Private Cloud

RO Branch

Branch

Branch

Any Network

ü Anyapplication

ü Anynetwork

ü Anycloud

MPLS VPN

Customer Portal

FW Wi-Fi LB QoS L3

SD-WAN:AnewtypeofVPNfortheCloudEra

InternetSD-WAN

Policy Engine

AnyCloud

AnyNetwork

OpenCPE

Public /SaaS Cloud

Page 9: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

VirtualizedServicesDirectory(VSD)• NetworkPolicyEngine– abstractscomplexity• Servicetemplatesandanalytics

VirtualizedServicesController(VSC)• SDNController,programsthenetwork• Richroutingfeatureset

VirtualRouting&Switching(VRS)• Distributedswitch/router– L2-4rules• Supportsleadinghypervisorsandbasemetalassets• Virtual(VRS)andPhysical(VSG)form-factors

NetworkServicesGateway(NSG)• Networkserviceplatformforbranches• L2-L4Switchingandroutingwithadvancednetworkfunctions• PhysicalorVirtualform-factors

NuageNetworksVirtualizedServicesPlatform(VSP)

VirtualizedCloudServices:DataCenterFeatureSet VirtualizedNetworkServices:SD-WANFeatureSet

NuageNetworkSolution

Single policy-driven SDN layer across all IT environments

Page 10: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

VirtualizedServicesDirectory(VSD)• NetworkPolicyEngine– abstractscomplexity• Servicetemplatesandanalytics

VirtualizedServicesController(VSC)• SDNController,programsthenetwork• Richroutingfeatureset

NuageNetworksVirtualizedServicesPlatform(VSP)

VirtualizedNetworkServices- VNS

. . . . Layer 4 SecurityTraffic

SteeringQoSLayer 3

NSG (Physical) NSG (Virtual)

Layer 2

✔✔

Bootstrap

• Unifiedpolicyplaneformanagementofdistributedendpoints

– Business/ITserviceengine,multi-tenanttemplatesandanalytics

• Federatedcontrolplanemanager

• Generalpurposecomputeplatform

– Virtual/physical

Page 11: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

Agenda

• StateofEnterpriseWAN

• EnterpriseSD-WANUseCases

• VNSDeploymentExample

Page 12: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

SD-WANConsiderations

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 13: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

OnboardingaNewBranchConnectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency VSD

VSC

MPLSWAN(ProviderNetworks)

Internet(3G/LTE,BB)

Site1

Site2

Enterpriseadmin

NSG

NSG• ZeroFactor– USBor• OneFactor– Emailor• TwoFactor– Email,SMS

• Onboardanewbranchindependentoftransportconnection

• Utilizeallavailablelinks,maximizeyourWANinvestment.

Page 14: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

Any-to-AnyConnectivity

PrivateDataCenter(orHQ)

VSD

VSC

Site1

Site2

Enterpriseadmin

NSG

MPLSWAN(ProviderNetworks)

Internet(3G/LTE,BB)

PublicCloud,SaaS

NSG

• UnifiedScalableVPN• UseofAllavailableBW• ConnectivitytoInternet

vialocalbreakout

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 15: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

EaseofMigration

VSD

VSC

IPVPNsite

RemoteInternetSite

Enterpriseadmin

NSG

IPVPNNetwork

Internet(3G/LTE,BB)

• Connectivitybetweenoff-netandon-netsiteduringmigration

• Backhaultrafficfromremote(off-net)site

NSG

PE

VID

CO

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

IPSec

IP VPN

MP-BGP

Page 16: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

AutonomousNetworkConnectivity

VSD

VSC

IPVPNsite

InternetSite

Enterpriseadmin

NSG

IPVPNNetwork

Internet(3G/LTE,BB)

• Connectdis-joinednetworkandprovideconnectivitybetweenbranchondifferentnetworkdomain

NSG

CO

NSG

VXLAN

IPSec

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 17: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

DC Fabric

SeamlessconnectivitytoBusinessApplications

VSD

VSC

IPVPNsite

InternetSite

Enterpriseadmin

NSG

IPVPNNetwork

Internet(3G/LTE,BB)

• Dis-joinednetworkconnectivity

• UnifiedNetworkpolicyfromyourBranchandDC

NSGNSG

VXLAN

IPSec

PrivateDataCenter

VXLAN

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 18: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

IntelligentTrafficSteeringConnectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

PrivateDataCenter(orHQ)

VSD

VSC

Site1

Enterpriseadmin

Voice

Video

NSG

MPLSWAN(ProviderNetworks)

Internet(3G/LTE,BB)

NSG

• Classifythetrafficandselectbesttransporttomeetbusinessobjective

• UseofallavailableBW,maximizeyourWANinvestment

Page 19: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

ApplicationAwareRouting

PrivateDataCenter(orHQ)

VSD

VSC

Site1

Enterpriseadmin

Voice

NSG

MPLSWAN(ProviderNetworks)

Internet(3G/LTE,BB)

NSG

Voice

• ContinuouslyMeasurelinkperformance

• MatchtheperformancewithBusinessSLA

• Choosebestoptimalpathtosendapplicationflow

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 20: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

SaaS(Cloud)ServiceAccessConnectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

PrivateDataCenter(orHQ)

VSD

VSC

Site1

Site2

Enterpriseadmin

NSG

NSG

MPLSWAN(ProviderNetworks)

Internet(3G/LTE,BB)

PublicCloud,SaaS

SaaSDirect Access

• AccesstoSaaSorIaaSapplicationinthecloud

• SecurelytransportbranchtrafficdirecttoSaaSvendors

Page 21: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

SecureHybridCloudInterconnect

CloudVPCPrivateCloud

NSGappliance

NSGAMI

IPsec

VPC

CloudVPCPrivate Cloud

NSGappliance

NSGAMI

VPC

• Domaintopologystretchesacrossprivateandpublicclouds

• Encryptstrafficbetweenprivateandpublicclouds• Privateinterconnections(DirectConnect,

ExpressRoute)• Internetgateway(IGW)

• Cross-connectlogicalnetworks/VPCsacross• Regions,differentCloudProviders,

corporatenetworks

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 22: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

SeamlessaccesstoHybridCloud

PrivateDataCenter(orHQ)

AWSVPC

VSD

VSC

Site1

Site2

Enterpriseadmin

NSG

NSG

NSG

MPLSWAN(ProviderNetworks)

Internet(3G/LTE,BB)

Direct Access

• BringvPC intotheSD-WANOverlayandtreatitlikeanyotherBranchLocation

• Sameuserpolicesforprivateandvirtualprivatecloud(VPC)

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 23: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

ResiliencyatEachLayerConnectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Fullresiliencyateverylayer• Policy– 3xVSD• Controller- 2xVSC• WANLinks– 2xuplinksoneachNSG• Node/CPEProtection– 2xNSGin

redundancypair• AccessPortResiliency- 2xNSGin

redundancypair

LAN Switch

Transport 1 Transport 2

VSD

VSC

Branch

RG

Page 24: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

LinkProtection

PrivateDataCenter(orHQ)

VSD

VSC

Site1

Site2

Enterpriseadmin

NSG

XApp

MPLSWAN(ProviderNetworks)

Internet(3G/LTE,BB)

PublicCloud,SaaS

NSG

• LinkProtection• ProtectagainstLinkdownor

communicationdroptothecontroller

• Trafficisswitchedtosecondarylink

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 25: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

ApplicationVisibility&AnalyticsConnectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency VSD

VSC

MPLSWAN(ProviderNetworks)

Internet(3G/LTE,BB)

Site1

Site2

Enterpriseadmin

NSG

NSG

• ContextualTrafficVisibility• Real-timeActionableAlerts,ACL

andTrafficAnalytics• CollectDPIstatsfromallNSGonthe

networkandstoreitinacentralElasticSearchTool

Page 26: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

NetworkFunctionsConsolidation

• Centralizedpolicyenforcement

• E.g.Firewall,loadbalancer,DPI,Analytics

DC

FireWall

Internet

NSG

NSGAPPS

Branch

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 27: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

NetworkFunctionsConsolidation

Branch

DC

Firewall

Internet

NSG

NSGAPPS

RHQ/PoP

NSG

• Distributednetworkfunctions

• E.g.Firewall

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

• Centralizedpolicyenforcement

• E.g.Firewall,loadbalancer,DPI,Analytics

Savinginoperatingcostbyconsolidatingandhencereducingthenumberofnetworkfunctions

Page 28: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

ResourceConsolidation

Multi-Org EntOverlapping IPs

EntBNSG

EntCNSG

EntANSG

Common Resources DC

NSG

Multiple WAN

• ProvideaccesstocommonsresourcesincaselikeM&Aorprovide(e.g.financial)servicestoexternalclient

• SaveCAPEX/OPEXbyremovingduplicatefunctions/resourcesfromthenetworkandprovidingcommonpoolofresourcese.g.ITservices

Connectivity

Application Driven Network

Cloud Service Access

Resiliency

Operational Efficiency

Page 29: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

Agenda

• StateofEnterpriseWAN

• EnterpriseSD-WANUseCases

• VNSDeploymentExample

Page 30: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

INTERNET

INTERNET

IP/MPLS

3G/LTE*

VNSDeploymentModels

NSGVM

PhysicalAppliance

x86Server

NUAGEhardware

TRANSPORTFLEXIBILITYFORM-FACTORFLEXIBILITY CLOUDFLEXIBILITY

TraditionalDatacenter

VirtualizedDatacenter

VirtualPrivateorPublicCloud

NSGVM

x86Server

VNF APP

Page 31: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

CaseStudy#1:GlobalOilandGasExplorationandProductionCompany

• DramaticallyreducedWANnetworkingcostsacrossgeographicallydispersedremotesites

- MurphyisexpectedtoreduceWANnetworkingcostsby$1Million(30%saving)acrossthefirst40sitesinfirstyear.

• Shortenthetimetogetnewsitesconnectedtocorporateapplicationsanddatafromweekstoamatterofhours.

• Policy-basednetworkingandaccesscontrolsimprovesecurityandoptimizequalityofservice,fromDCtoremotesites.

Page 32: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

CaseStudy#2:LargeFinancialandBankingServicesCompany

• Acceleratedservicedeliverytosupportnewsites,branchesandprojectswithminimaltonooperationaloverhead

• Improvednetworksecuritypolicyenforcement,centralizedcontrols,reducedrisk.

- PCIDSS-compliantsolution,withIPSec providessecureVPNcommunicationsbetweensites.

• OndemandconnectivitytotheirprivatecloudfinancialservicesapplicationtoremotebranchlocationsprovidingEnd-to-endautomation,policyandcontrolfromDC-to-branch.

Page 33: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

SD-WANbusinesscaseforEnterprise

• Largeenterprisewith200branchlocationsworldwide

- UsesmultipletransportmediumforVPNconnectivity

- Over80%savinginrolloutcost- Usingautomatedbootstrappingwithpolicybasedorchestration

- Over40%savinginTCO(TotalCostofOwnership)

- Templatebasedpolicyallowseasilyandautomatedmanagementofbranchnetworkpolicies

1 2 3 4

TCO

YEAR

Savings 14% 34% 41% 65%

IP-VPN SD-WAN (VNS)

Page 34: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

StepstothefutureofEnterpriseWAN

• Connectingusersanddevices,acrossenterprise,tothecloudandback

• Constantlyadaptingtoreal-timedemands,userlocationandcontext

• Virtualization• Automated,bestvaluenetworkpath• Aligningconsumptiontodemand

• Scaleup/down• Secureatalpoints,intelligentthreat

prevention

On-demandNetwork

ReducingCost

BusinessAgility

$

NetworkAuditsandApplicationDiscovery

Identify CloudandDigitalStrategyimplications

KnowyourTopologies,TrafficFlowsandVNFneeds

FinalizeSelf-servandControlPlans

DetermineNetworkProviderandCommercialrequrements

1

5

2

4

3

Page 35: Enterprise WAN Evolution with SD-WAN

NOKIA— PROPRIETARYANDCONFIDENTIAL— RESTRICTED— SOLELYFORAUTHORIZEDPERSONSHAVINGANEEDTOKNOW.COPYRIGHT©2016NOKIA.ALLRIGHTSRESERVED.

Thankyou!http://www.nuagenetworks.net/sd-wan

@nuagenetworks


Unified Monitoring for Cisco SD-WAN - LiveAction Monitoring for Cisco SD-WAN SD-WAN Visibility and Assurance SUMMARY As more organizations look to software- defined WAN (SD-WAN) for

Unified Monitoring for Cisco SD-WAN - LiveAction Monitoring for Cisco SD-WAN SD-WAN Visibility and Assurance SUMMARY As more organizations look to software- defined WAN (SD-WAN) for

Documents
SD-WAN TRANSFORMS TO SD- BRANCH - MENA ISC Transforms.pdf · SD-WAN with 3 rd Party FW. SD-WAN with Cloud Security. FW with . Embedded SD-WAN “SD-WAN systems do not offer advanced

SD-WAN TRANSFORMS TO SD- BRANCH - MENA ISC Transforms.pdf · SD-WAN with 3 rd Party FW. SD-WAN with Cloud Security. FW with . Embedded SD-WAN “SD-WAN systems do not offer advanced

Documents
SD-WAN Explain ed: The Ultimate Guide to SD-WAN Architecture

SD-WAN Explain ed: The Ultimate Guide to SD-WAN Architecture

Documents
Secure SD-WAN · Secure SD-WAN service description 2.4 by Open Systems, proprietary open-systems.com 1 Secure SD-WAN . by Open Systems provides all the benefits of SD-WAN while reducing

Secure SD-WAN · Secure SD-WAN service description 2.4 by Open Systems, proprietary open-systems.com 1 Secure SD-WAN . by Open Systems provides all the benefits of SD-WAN while reducing

Documents
Fortinet Secure SD-WAN: Best-of-Breed NGFW and SD-WAN in a ... · Fortinet Secure SD-WAN Fortinet is the first NGFW vendor to provide native SD-WAN capabilities, which include an

Fortinet Secure SD-WAN: Best-of-Breed NGFW and SD-WAN in a ... · Fortinet Secure SD-WAN Fortinet is the first NGFW vendor to provide native SD-WAN capabilities, which include an

Documents
2019 02 Avantec Webinar SD-WAN FINAL · 13 SD-WAN! 14 Enterprise Branch Going Through Evolution 70% Of customers mentioned existing WAN is brittle, slow, expensive and not effective

2019 02 Avantec Webinar SD-WAN FINAL · 13 SD-WAN! 14 Enterprise Branch Going Through Evolution 70% Of customers mentioned existing WAN is brittle, slow, expensive and not effective

Documents
SD-WAN The SD-WAN Checklist - Sprint Business€¦ · SD-WAN The SD-WAN Checklist Find out if SD-WAN will work for your business today. You can’t tackle today’s challenges with

SD-WAN The SD-WAN Checklist - Sprint Business€¦ · SD-WAN The SD-WAN Checklist Find out if SD-WAN will work for your business today. You can’t tackle today’s challenges with

Documents
SD-Wan Presentation

SD-Wan Presentation

Documents
Guía del operador de VMware de SD-WAN - VMware SD-WAN 4

Guía del operador de VMware de SD-WAN - VMware SD-WAN 4

Documents
SD-WAN SD-WAN

SD-WAN SD-WAN

Documents
Executive Briefing for Enterprise Customers - VMware SD ... · VMware SD-WAN by VeloCloud Controllers VMware SD-WAN Edge by VeloCloud VMware SD-WAN Edge by VeloCloud VMware SD-WAN

Executive Briefing for Enterprise Customers - VMware SD ... · VMware SD-WAN by VeloCloud Controllers VMware SD-WAN Edge by VeloCloud VMware SD-WAN Edge by VeloCloud VMware SD-WAN

Documents
SD-WAN Topologies

SD-WAN Topologies

Documents
Speedcast SD-WAN

Speedcast SD-WAN

Documents
Dell EMC SD-WAN Edge Powered by VMWarejapancatalog.dell.com/c/wp-content/uploads/SD-WAN-Edge...SD-WAN Velocloudとワンストップサポート!Dell EMC SD-WAN Edge Powered by VMWare

Dell EMC SD-WAN Edge Powered by VMWarejapancatalog.dell.com/c/wp-content/uploads/SD-WAN-Edge...SD-WAN Velocloudとワンストップサポート!Dell EMC SD-WAN Edge Powered by VMWare

Documents
The SD-WAN (r)evolution!The SD-WAN (r)evolution! Triantafyllos Prokopidis Director Networking Solutions Classification ISO 27001: Public

The SD-WAN (r)evolution!The SD-WAN (r)evolution! Triantafyllos Prokopidis Director Networking Solutions Classification ISO 27001: Public

Documents
SD-WAN 2.0: Building a Better SD-WAN

SD-WAN 2.0: Building a Better SD-WAN

Technology
Unity EdgeConnect SD-WAN Edge Platform - SD-WAN Leader

Unity EdgeConnect SD-WAN Edge Platform - SD-WAN Leader

Documents
WAN Optimization with NetScaler SD-WAN - Citrix.com · WAN Optimization with NetScaler SD-WAN Learn more about the capabilities of the NetScaler SD-WAN solution and how they can accelerate

WAN Optimization with NetScaler SD-WAN - Citrix.com · WAN Optimization with NetScaler SD-WAN Learn more about the capabilities of the NetScaler SD-WAN solution and how they can accelerate

Documents
Meraki SD-WAN

Meraki SD-WAN

Documents
SD-WAN Growth 2019 v2.6 final - Secure SD-WAN Vendor · Key Findings • The SD-WAN market has reached mainstream adoption.Enterprises and service providers see SD-WAN as the edge

SD-WAN Growth 2019 v2.6 final - Secure SD-WAN Vendor · Key Findings • The SD-WAN market has reached mainstream adoption.Enterprises and service providers see SD-WAN as the edge

Documents
WebSecurityService Connectivity: SD-WAN/SD CloudConnector · SymantecWebSecurityService/Page4 Connectivity: AboutSD-WAN TheSoftware-DefinedWAN(SD-WAN) AccessMethodisanoptionforfixed-locationconnectionstotheWebSecurityService

WebSecurityService Connectivity: SD-WAN/SD CloudConnector · SymantecWebSecurityService/Page4 Connectivity: AboutSD-WAN TheSoftware-DefinedWAN(SD-WAN) AccessMethodisanoptionforfixed-locationconnectionstotheWebSecurityService

Documents
WHITE PAPER WAN Evolution Presents Opportunities to ...€¦ · WAN Evolution Presents Opportunities to Service Providers WHITE PAPER From Managed SD-WAN to Managed ... supports the

WHITE PAPER WAN Evolution Presents Opportunities to ...€¦ · WAN Evolution Presents Opportunities to Service Providers WHITE PAPER From Managed SD-WAN to Managed ... supports the

Documents
What is it and how does it work? SD-WAN · SD-WAN is an important step in the evolution of networking as it helps simplify WAN management. A WAN connects your office to your other

What is it and how does it work? SD-WAN · SD-WAN is an important step in the evolution of networking as it helps simplify WAN management. A WAN connects your office to your other

Documents
EarthLink SD-WAN

EarthLink SD-WAN

Documents
2018 SD-WAN Brochure 20180930 Rev1 - Sangfor Brochure.pdf · SANGFOR SD-WAN 01 Boost Your Branch Business with Sangfor SD-WAN Solution Overview Sangfor SD-WAN is the next generation

2018 SD-WAN Brochure 20180930 Rev1 - Sangfor Brochure.pdf · SANGFOR SD-WAN 01 Boost Your Branch Business with Sangfor SD-WAN Solution Overview Sangfor SD-WAN is the next generation

Documents
Zscaler and SD-WAN · 2019-02-15 · ZSCALER SD-WAN SOLUTION BRIEF 21 Zscaler, Inc. All rits reserved. ZSCALER AND SD-WAN Reduce cost and complexity Zscaler and SD-WAN enable the

Zscaler and SD-WAN · 2019-02-15 · ZSCALER SD-WAN SOLUTION BRIEF 21 Zscaler, Inc. All rits reserved. ZSCALER AND SD-WAN Reduce cost and complexity Zscaler and SD-WAN enable the

Documents
SD-WAN 2.0: Building a Better SD-WAN, October 2016

SD-WAN 2.0: Building a Better SD-WAN, October 2016

Technology
Cisco SD-WANソリューションの ビジネス価値:Cisco SD-WAN … · IDC White Paper Cisco SD-WANソリューションのビジネス価値:Cisco SD-WAN導入結果の調査|

Cisco SD-WANソリューションの ビジネス価値:Cisco SD-WAN … · IDC White Paper Cisco SD-WANソリューションのビジネス価値:Cisco SD-WAN導入結果の調査|

Documents
Introduction to SD-WAN - sccug.net · SD-WAN Definitions What is SD-WAN: SD-WAN is the approach to building and designing a WAN utilizing SDN techniques to optimize and automate,

Introduction to SD-WAN - sccug.net · SD-WAN Definitions What is SD-WAN: SD-WAN is the approach to building and designing a WAN utilizing SDN techniques to optimize and automate,

Documents
Guía del operador de VMware de SD-WAN - VMware SD-WAN 3

Guía del operador de VMware de SD-WAN - VMware SD-WAN 3

Documents