Today, let’s clarify what is SD-WAN. Sometimes I feel like we live in buzzworld. Most of (not all) social networking posts, marketing chats, videos talk buzzwords. I am mostly in the IT business, but I suppose the buzzword space is a rule in other businesses too. Here in IT we have AI, ML, SD-WAN, IoT, SDN, XaaS, DevOps, Serverless and many more. As a tech guy, I prefer to make sure I fully understand the buzzword, before I start to talk this and then explain, what the hell is that. In this post, I will stick with 3rd one from the list – SD-WAN.
As we have already posted on Viptela (now Cisco SD-WAN), we are familiar now with SD-WAN design, configuration, abstraction and pros. However, I feel like most of customers and IT people still have no clue, what exactly SD-WAN is. And why it is forced today, as the way to go for enterprises and service providers. Personally, I think there is no single and short definition. That is why I will elaborate on few important aspects of SDWAN below.
SD-WAN (SDWAN) is short for Software Defined-Wide Area Network (WAN). This explains something, but just a little. First, SD-WAN is in some sense the application of Software Defined Network (SDN, another buzz). Specifically, the paradigm called data, control and management plane dissagregation and network automation. Here, you can read about paradigms and characteristics that the SDN idea brings. Dissagregation approach simplifies the process of building & maintaining something called network overlay. Overlay is an abstraction that SDWAN idea relies on (you will read more on dissagregation and overlay concepts below). Despite the overlay is not a new idea for network engineers (examples here are: GRE tunnels, VTIs or DMVPN structures, to name a few), it is the main idea behind the SD-WAN that enables sophisticated routing of production traffic (for example: service chaining), network visibility and maintenance activities’ automation. Next is the idea called ZTP that stands for Zero Touch Provisioning (or Zero Touch Deployment, ZTD). ZTP makes SD-WAN edge routers really easy to be setup from scratch. Application-aware and performance-aware routing is the 3rd pillar of something called SD-WAN. It allows for custom WAN links utilization (multi-path) and application routing policy building. The 4th thing, is the software part that resides on on-prem cloud (private cloud) or public cloud. This allows for SD-WAN controllers and edge routers configuration, monitoring and maintenance using one dashboard with an admin-firendly GUI.
Disaggregation comes from separation of planes. Data plane – responsible for packets forwarding, control plane – responsible for routing control and management plane – responsible for management traffic and activities like pooling, or access to device. Based on Cisco Viptela SD-WAN example, those three are executed in a following scenario:
This is really new. Historicaly there were technologies used to decide, where to route, based on factors like packet loss, delay, or jitter. An example, was performance routing or PfR. But the real improvement, is with the app-aware routing that makes use of DPI engine, recognizes the appplication and based on this and performance metrics decide which link to push the traffic to. An example, can be facebook traffic, or SAP traffic. With app-aware routing and two active links: A and B , you can design a following configuration: SAP traffic should use link that has max. 15 ms RTT, while facebook is always using link B. In traditional routing mechanisms, routing decisions were made based on the destination IP of IP header that was compared with a routing table. Thus, such an app-aware scenario was not available. You could force to route packets only by setting the destination IP prefix, so that was not really scalable, consistent and managable.
The way you setup the WAN network, may be done with old approach, or the modern modern one. Zero Touch Provisioning is the latter. In traditional way, for example in DMVPN, network engineer had to prepare router config template, put on router via console, connect on site, and verify if it was connected to Hub with NHRP, IPSec SAs up. If there was an RSA type of ISAKMP phase authentication, certificate was manually loaded onto router or sometimes enrolled with SCEP. In ideal ZTP process, you unbox the SD-WAN, router connects to Ethernet, router gets an IP from DHCP, and it’s done – it is from now visible in ZTP portal and / or controllers.
Cute dashboard. This is the tactile sign of software definition 🙂 We might joke a little, but yes, in the SD-WAN case, the dashboard is a really “single pane of glass” to the WAN world. With a unified dashboard, you can configure, push, change, monitor, diagnose, backup and upgrade whole SD-WAN infrastructure. The software behind, takes care of API modules, config pushes, schema validation, or measurments like jitter, or delay interpretation. But this sophistication is, of course, behind the scene.
Real-life example: WAN tunnel, Octets Rx & Tx. Try to get such chart in legacy WAN implementations “out of the box”.
UPDATE: Troubleshooting and vizualization? (in SD-WAN out of the box). Here you are:
After setting up the fiber on ISP side and marking TLOC as a Gold. We see clearly TLOC setup at. 9:00
Because the above post was stripped from marketing slogans and talked technology and functions behind SD-WAN, now in summary, let’s capsulize what mentioned components of Software Defined WAN bring to business and why IT Managers could decide to go with SD-WAN:
If you want to know more about the SD-WAN approach in your particular case, how the transition process can look like, read our offering, setup free video call to talk with engineers. See you soon!