violetkaipa - Fotolia
In most cases, conversations surrounding the topic of software-defined WAN deal with connectivity from corporate headquarters to one or more remote offices. This is because the technology behind SD-WAN requires two or more WAN connections between the two sites. These are typically either private MPLS links or IPsec tunnels over commodity broadband.
That said, two trends are causing network architects to take a closer look at how mobile users connect to and access company resources using modern technologies. The first is the fact that most workforces are becoming increasingly mobile in nature. Employees often have the need to work from home or on the go. These employees want to be able to seamlessly access business apps whether they're at home, at a coffee shop or in a taxi driving across town.
The second trend is a movement toward the use of public cloud, as opposed the company's private data center. Common remote access network designs force users to connect to the corporate office network before accessing company resources. This is typically achieved by using remote access VPN client software. If the apps and data no longer reside on the corporate network, however, it's inefficient for users to connect to the corporate office first, only to be redirected back through the internet to public cloud resources.
SD-WAN as a service centrally manages mobile users
The increasingly mobile and public cloud trends pose problems that make it less efficient for mobile employees to use current remote access designs. For one, having remote users connect to the corporate network first can cause significant performance issues to the end user. Instead, it makes more sense for the user to directly connect to internet-accessible resources in order to reduce latency and potential bottleneck issues.
Many businesses are looking at SD-WAN as a service to gain the performance improvement end users want, while eliminating security and administrative complications. As a managed service that several cloud service providers currently offer, SD-WAN as a service essentially moves remote access authentication and policy-enforcement responsibilities to the public cloud. By doing so, network managers gain the ability to centrally manage all mobile users.
Additionally, SD-WAN as a service builds similar load-balancing and prioritization policies found in private SD-WAN options. But with SD-WAN as a service, the WAN seamlessly extends to both private and public cloud resources. It's a win-win model that gives network managers the administrative and security controls they want, with the performance benefits end users want.
Dig Deeper on Software-defined WAN (SD-WAN)
Related Q&A from Andrew Froehlich
An IAM system introduces risks to the enterprise, but the consensus is the benefits of IAM outweigh the drawbacks. What are some of the issues that ... Continue Reading
The network edge is where an enterprise network connects to third-party network services. Edge computing is a distributed architecture that processes... Continue Reading
PAP uses a two-way handshake to authenticate client sessions, while CHAP uses a three-way handshake. Both authentication processes are common, but ... Continue Reading