Search
Close this search box.

SD-WAN Architecture vs Traditional WAN: What’s the Difference?

Jump to...
    Add a header to begin generating the table of contents

    As major buzz continues to surround software-defined wide area networking (SD-WAN), those who are interested in the technology but not yet fully on board may wonder what makes it particularly different from traditional WAN architecture — and if it’s truly worth the investment of its adoption.

    Our latest techtorials will explore the principal difference between the two - namely, their relationship to and compatibility with the cloud - as well as the additional contrasts of these networking options. We'll also take a closer look at use cases in which SD-WAN is clearly the better option than its traditional WAN counterpart.

    The WAN Lowdown

    WANs, in all their iterations, exist to distribute traffic between sites, internet destinations and the cloud. They collaborate with the local area networks (LANs) that handle telecom on individual organizations' premises to ensure everyone stays connected as needed: remote workers to their company headquarters, business branches to one another and so on.

    Despite having been an effective enterprise telecom solution for about two decades, traditional WAN is hamstrung by one particular attribute: its near-total reliance on hardware performance for its success. Everything from the hundreds of feet of cable and dozens of routers in branch offices to the massive servers at data centers is necessary to support a WAN in any form it takes — be it cable or DSL broadband, cellular LTE/5G or multiprotocol label switching (MPLS). This major issue, combined with the number of devices connected to the WAN and the sheer bulk of the traffic traveling back and forth can make things cumbersome for enterprises in most WAN iterations. (MPLS is an exception, but it can be prohibitively costly for some businesses to implement and maintain.)

    Beyond all that, WANs are also not truly compatible with the cloud. They’re capable of connecting to it, but doing so requires the backhauling of considerable traffic to data centers, causing significant delays in packet transmission and application performance. The larger number of software as a service (SaaS) and infrastructure as a service (IaaS) tools that modern businesses use also exacerbates latency, packet loss and other service issues.

    How is SD-WAN Architecture Different from Traditional WAN?

    Much like classic WAN systems depend on their hardware, SD-WAN solutions are based in their software. They're virtualized, serving as virtual private network (VPN) overlays atop the same network circuits that would be in any other WAN - broadband, cellular, MPLS and so on. (The SD-WAN solution itself may be either entirely virtualized and software-controlled or deployed in conjunction with specific devices capable of handling the traffic demands. These look like routers, but are typically more powerful than the average router.)

    Although SD-WAN is leveraging the same nuts-and-bolts hardware of its non-virtualized counterparts, it surpasses them by aggregating multiple links from different service providers under the same banner and harmonizing the traffic. This eliminates most of the potential for sprawl that can slow down WAN architecture.

    What problems does SD-WAN solve?

    SD-WAN addresses — and significantly alleviates — problems often experienced by users of traditional WAN systems in the following areas:

    • Cloud connectivity: SD-WAN offers a more streamlined and clear path to optimal use of the cloud than traditional WAN by leveraging multiple network circuits. It also allows for more reliable connection to the many Software-as-a-Service and Infrastructure-as-a-Service applications that are critical to modern enterprises.
    • Application performance: Through a process commonly called “application steering,” SD-WAN identifies the applications an enterprise is using at a given time, classifies them by priority and routes traffic accordingly. High-priority app traffic might go to the best-performing circuit (an MPLS or high-end broadband connection) whereas lower-priority apps may be temporarily diverted to a lower-performing circuit (such as a 5G or LTE backup). Because this happens continuously in real-time, the end-user of the lower-priority app wouldn’t notice a significant quality dip, while those using the most important app experience the quality of service (QoS) they need. (Steering also adjusts to compensate for network congestions, brownouts, circuit downtime and other disruptions.)
    • Traffic control: SD-WAN offers full oversight and control over traffic in a way that traditional WAN can’t match. As such, bandwidth is distributed and used more efficiently. Also, real-time traffic shaping improves operations across the board without infringing on any compliance requirements.

    There’s also the bottom line to consider: Overlaying SD-WAN atop multiple broadband circuits offers QoS equivalent to MPLS (the highest-quality traditional WAN) at significantly lower cost.

    What Types of SD-WAN Deployments Are On the Market?

    Currently, the three most common ways in which enterprises deploy SD-WAN are: via the public internet through a broadband connection, as a joint MPLS/internet deployment or through a cloud-native, entirely private but globe-spanning network.

    Theoretically, the third of those may offer the best possible performance - but it also undoubtedly comes at the highest cost and least flexible. On the other end of the spectrum, solely internet-based SD-WAN is the most cost-efficient option but can be limited in its global connectivity, which is not ideal for most organizations at the enterprise level. An SD-WAN provider that offers customers the MPLS/internet hybrid, or a similar diversity of access options, may ultimately be the "best of all possible worlds" option.

    Enterprises also must choose between a do-it-yourself (DIY) SD-WAN setup and one that’s overseen by a managed services provider (MSP). The former will afford the most direct control of the network and initially cost less. However, that edge of affordability and control may diminish over time: Personnel with significant SD-WAN experience must be brought on if an enterprise doesn’t already have them (to ensure optimal upfront network design) and right now, IT hiring is very much a seller’s market. Additionally, the network infrastructure paid for out of pocket in a DIY SD-WAN will likely need to be expanded upon with time, which can put strain on organizations with OPEX business models.

    By contrast, choosing a globally connected MSP for SD-WAN takes a lot of guesswork out of the equation: Enterprises can have all of the bandwidth efficiency, connectivity and application performance advantages they need, while the MSP carefully oversees the SD-WAN solution’s implementation and provides support and troubleshooting whenever needed.

    Learn more about what GTT can offer to ensure peak SD-WAN connectivity and performance.

    JUMP TO
      Add a header to begin generating the table of contents

      FAQs ABOUT SD-WAN

      Unable to find the answers you’re seeking? Contact our customer support team for assistance.

      Below are some common mistakes organisations make when deciding whether SD-WAN is for them and when choosing a provider:

       

      Overestimating cost savings It is common to compare SD-WAN to what they perceive to be alternative options, particularly MPLS, and look at this from a purecost perspective. While there are potential cost savings that can result from SD-WAN deployment, the main benefit is that it improves the performance of networks. There is of course an advantage to using MPLS as an underlay for SD-WAN, as this gives both the performance advantages of SD-WAN and the isolation from Internet-based threats offered by MPLS. 

       

      Forgetting about security SD-WAN may result in data being carried across the public internet, meaning security is imperative. While there are data security features included, such as strong encryption, it is important that SD-WAN is deployed in tandem with a robust security solution to meet your business needs and mitigate potential threats.

       

      Not giving enough thought to the integration of SD-WAN with legacy systems SD-WAN needs to be able to work with your existing network and systems. It is important that your implementation strategy takes into consideration any difficulties that may be caused by legacy systems to avoid a integration challenges.

       

      Choosing between DIY options and managed service providers It can be tempting for organisations to opt for the cost savings that come with a DIY service. While this might work for some, particularly large enterprises with an experienced and highly skilled IT team, this may not be the right choice for the majority. A managed service provider will be able to help develop an SD-WAN strategy and deploy the solution to meet your requirements. There are also options that fall between DIY and fully managed solutions where certain aspects of management may be opened up to you.

       

      Choosing between the range of choices Many new SD-WAN providers have come into the market in recent years. It is therefore important to consider exactly what your requirements are before you start engaging with providers.

      With an SD-WAN solution, data can travel across a range of network connections, some of which will be more secure than others. As this will include the use of public internet connections, organisations naturally have questions about the security implications.

       

      With SD-WAN there is a perceived security concern compared to legacy private networks due to the introduction of Internet as transport. In reality this risk is neither more nor less with SD-WAN, and as has always been the case the assessed risk to data in transit should be determined by the underlying access type used. SD-WAN offers a level of built-in security, including strong encryption, but it is important that an SD-WAN solution is complemented by a robust security solution.

       

      For those with security concerns, a managed service provider, with a security product portfolio, might be the best option. These providers can assist in designing a full solution that incorporates SD-WAN and security.

       

      Examples of security products that may be used in conjunction with SD-WAN are:

      –  Next Generation Firewall (NGFW) –  Advanced Detection and Response (ADR) –  Managed Detection and Response (MDR) –  Security Information and Event Management (SIEM) –  Cyber Security Risk Assessment (SRA) –  SOC Services –  Web Application Firewall (WAF) –  Endpoint Protection –  Proxy Servers

      The primary goal of an SD-WAN deployment shouldn't be to save money, but to provide an enhanced user experience across your network. Whether costs are (or should be) reduced depends on a wide range of factors.

       

      SD-WAN does not replace wide area networks, meaning budget is still required for MPLS, for example. However, there are potential cost savings, as well as productivity improvements, that can be achieved with an SD-WAN deployment. These include the following examples:

       

      Network costs While SD-WAN won’t replace MPLS, it can result in less reliance on it, therefore reducing outlay

       

      Network management As SD-WAN uses software to make intelligent decisions on traffic routing, it can lead to savings on the physical time it takes to manage networks

       

      Faster network speeds Via fuller use of what were previously backup connections – leading to increased employee productivity

       

      Downtime avoidance SD-WAN can optimise networks to reduce downtime, again increasing employee productivity

      Latency reduction With SD-WAN making decisions on the best way of routing data, it can lead to data travelling an alternative route to reduce latency where possible

       

      Flexibility The flexibility on offer means updates can be made quicker

      There are various steps that should be taken when deploying your SD-WAN solution. Obviously if you're planning to go down the 'Managed Service Provider' route, you should opt for a provider with multiple technology options and they will help you to navigate their different offerings to determine the most appropriate technology. The below is an example of a deployment process:

       

      Planning –  Think about integration with legacy systems –  Assess your current setup and your expectations of the improvements SD-WAN will provide –  Put together a clear statement of your requirements before you start talking to providers

       

      Initial search for providers –  Consider at least three providers based on your requirements –  With each provider discuss the problems you are looking to solve and the enhancements you expect to achieve. This will provide them with an opportunity to explain how they can help you meet these objectives –  Ensure you choose a provider with access to multiple technology vendors who can talk you through the different options and help you to choose a vendor solution that is right for your specific needs

       

      Design phase –  Once you have decided on a provider, involve them in the design of your SD-WAN solution. They are experts in their field so you can benefit from their experience –  Discuss security concerns and required security solutions with your chosen provider –  Discuss your plan with internal stakeholders and consider feedback

       

      Deployment –  Consider deploying your SD-WAN solution on some parts of your network first so you can test it and become familiar with it before full deployment –  Ensure thorough training is provided to anyone who will be hands-on with the SD-WAN solution –  Roll out further only once you are ready

      People often ask what the differences are between SD-WAN and MPLS. However, SD-WAN is not an alternative to MPLS, but it may use MPLS, as well as other connections such as the public internet, as a way of delivering traffic over the most efficient route. To a degree, therefore, SD-WAN and MPLS should be seen as complementary technologies.

       

      An SD-WAN solution will make decisions on the most appropriate connection for data transfer in any particular scenario. In some instances, for example for sensitive data, MPLS will be the preferred route, but in other instances a public internet connection will be suitable. As opposed to exclusively routing data across MPLS connections, this can result in less reliance, and therefore lower spend, on MPLS.

      With an increasing number of providers having entered the SD-WAN market in recent years, choosing the right one for you is not an easy task. Things to consider include:

       

      Geographic reach For multinational organisations it is important that the solution you choose is able to cope with your international reach, as well as the range of connections (e.g. leased lines, ethernet, broadband/xdsl, 4G/LTE/5G, etc…) you use to carry your data

       

      DIY vs. managed service offerings Do you wish to implement and manage your SD-WAN solution in-house or do you need the support of a managed service provider? If the former, you need to be confident you have the required expertise and resources (proactive monitoring, troubleshooting, 24/7 support, etc…) in-house. A managed service will be the preferred choice for many, but it is still important to make sure your provider is able to offer all the support you need

       

      Flexibility For some organisations, flexibility is important. For example, you might want the flexibility to re-configure your setup due to changing priorities or changes to your network in future

       

      SLA & performance Having a service level agreement in place can provide you with the confidence that you will receive the level of performance you require

       

      Price While making a choice simply based on cost is rarely the best strategy, it is important that you are getting good value for money. You need to get the right balance between a solution that meets all your business requirements, while avoiding paying for things you don’t need

      Talk to an Expert

      Interested in learning more about GTT products & services? Please complete this short form to schedule a call with one of our sales consultants.

      Thank you for your information. One of our sales consultants will be in touch with you.

      Everything you need to know
      ABOUT DDoS ATTACK:

      gtt-and-corero-solution-guide.png

      Related Services

      SD-WAN

      Transform your WAN with dynamic network traffic management.

      Firewall as a Service (FWaaS)

      Leverage anti-virus, firewall and anti-malware services all in one scalable solution.

      Secure Web Gateway (SWG)

      Defend against cyberthreats and block access to malicious sites.

      Cloud Access Security Broker (CASB)

      Monitor your cloud environment, enforce policies and mitigate shadow IT.

      related products

      SD-WAN

      Transform your WAN with dynamic network traffic management.

      Firewall as a Service (FWaaS)

      Leverage anti-virus, firewall and anti-malware services all in one scalable solution.

      Secure Web Gateway (SWG)

      Defend against cyberthreats and block access to malicious sites.

      Cloud Access Security Broker (CASB)

      Monitor your cloud environment, enforce policies and mitigate shadow IT.

      OUR GARTNER RATING

      Gartner Peer Insights Reviews
       
       
      As of 18 September, 2024
      Scroll to Top