Software-defined WAN is one of those technologies that, despite it being relatively complicated, is more secure...
when compared with legacy MPLS or site-to-site VPN tunnels. Because of SD-WAN's end-to-end visibility, centralized configuration and encryption requirements, vendors tout security as one of its primary benefits.
That said, it's important to consider a couple of SD-WAN security concerns when evaluating your options.
The first SD-WAN security concern to address is whether you want to design, deploy and manage the SD-WAN yourself or let one of the many SD-WAN service providers do it for you. If you opt for the latter, you place the responsibility for your WAN in the hands of a third party.
On the other hand, if you don't have the right in-house SD-WAN expertise, you may introduce holes in your WAN that can be exploited.
To address some customer SD-WAN security concerns, different SD-WAN technology vendors offer varying degrees of added security beyond simple encryption. This includes Layer 7 firewalls, intrusion prevention and unified threat management. Integrating these security tools at the WAN edge ensures data flowing between the corporate network and branch locations isn't compromised.
Keep in mind, however, that most enterprise LANs already have these security tools in place. It's up to the SD-WAN architect to determine if add-on SD-WAN security features offered by some platforms are worth the extra investment to license, configure and support.
Dig Deeper on SD-WAN
Related Q&A from Andrew Froehlich
Similar to the DevOps framework, a NetOps approach provides networking teams with a way to use automation and virtualization to create more agile ... Continue Reading
When gearing up for SD-WAN upgrades, enterprises should take their time with network infrastructure planning. These three steps can help get them ... Continue Reading
Network overlays and software-defined networking architecture share a history. But while overlays offer flexibility, they also bring extra overhead ... Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.