The following is derived from the new book, Modern SD-WAN for SASE for Dummies, Netskope Special Edition. Click here to get your complimentary copy.
For decades, computer networking has powered our businesses, our communities, and our lives. As computing and the digital world have evolved, enterprise networking has struggled to keep up. Local area networks (LANs) gave way to MPLS WANs and MPLS WANs gave way to SD-WANs. Out with the old, in with the new.
Traditional SD-WAN has reached a breaking point!
We have already entered a new era of networking, driven by enterprises becoming borderless, in which users, devices, sites, and clouds are all connected in numerous ways. This is shaping a networking landscape characterized by extensive many-to-many connectivity. As the enterprise became borderless, the perimeter transformed and expanded beyond branches to include micro branches, users’ remote locations, internet of things (IoT) devices, and multiple cloud environments. The common requirement here is that all these things need to be secured and optimized—security can’t be sacrificed for network performance, or vice versa.
Network architects started deploying multiple point products for security and connectivity to address these newly emerged edges or perimeters. But this approach led to a network full of disparate and disjointed technologies that were forced to work together. A fragmented architecture can’t consistently apply security or quality of experience (QoE) policies across all users, devices, sites, and clouds. The result often proved overly complicated from both an end-user and IT Ops perspective. SD-WAN has, itself, reached a major turning point (some might even say breaking point) because it can’t handle a many-to-many world.
Borderless SD-WAN is the Modern SD-WAN for SASE
The goal of the Borderless SD-WAN is to allow any person, site, device or cloud to have secure, and optimized connectivity and accelerate the path to SASE adoption. Borderless SD-WAN provides the versatility to meet various enterprise deployment requirements. For instance, within the realms of computing, networking, and security, six distinct scenarios are currently challenging conventional SD-WAN and demanding a fresh approach. Borderless SD-WAN provides:
1. Secure SD-WAN: Traditional SD-WAN augmented expensive MPLS with high-bandwidth, low-cost internet links and delivered the same level of performance over commodity broadband links with application-aware visibility and control. The evolving enterprise now needs zero trust-enabled, context-aware SD-WAN to provide fast, reliable, and secure access to any application, and any device at any location, with full visibility, and the right set of controls. This is possible using contextual policies that include understanding applications, application risks, users, user risks, devices, and device risks, all of which make network operations more intelligent and more secure.
2. Micro branch: A micro branch may have only a few users or devices, but their needs for connectivity, QoS, and security equal those of a conventional branch office. Borderless SD-WAN provides lightweight software that resides on a compact secure access service edge (SASE) gateway, a hardware device that converges capabilities, such as cellular connectivity, SD-WAN, Wi-Fi, security, and edge compute in an all-in-one fashion, all operated from one console and governed by one policy. Moreover, organizations can effortlessly achieve comprehensive security seamlessly through one-click integration with Netskope Intelligent SSE.
3. Endpoint SD-WAN: Secure and high-performance remote access is often achieved through an SD-WAN device combined with virtual private network (VPN) software clients. The dual dependence on an SD-WAN device and VPN also means companies must juggle multiple vendors, devices, and cost centers, which is unscalable. Installing Endpoint SD-WAN on a laptop can significantly improve the user’s experience even in places where internet links are not reliable. Network operators gain full visibility into all applications and links being used, aiding in troubleshooting. Netskope’s ZTNA Next combines the award-winning Netskope Private Access ZTNA with software-only Netskope Endpoint SD-WAN, completely replacing remote access VPNs while enhancing security and optimizing application access.
4. Wireless WAN: To be able to work anywhere at any time in a many-to-many world, there is a need for more than what SD-WAN pro