Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
NexTech WAN Options for Distributed Networks
1. NexTech- WAN Options
WANs provide connectivity between multiple LANs that are spread across a geographical broad area.
Designing a WAN Solution and its operations traditionally added complexity for the Tier support team
because of variety of transport methods involved, choices and physical deployment costs of each WAN
technology.
Primarily offered from Service Providers there are few options: Dedicated circuits, Internet and MPLS
VPNs (L2VPN, L3VPN).
WAN architectures providing organizations with more usable WAN Bandwidth, performance, security and
reliability. These enhanced NexTech WAN Options provide transport independence, path control,
application optimization and secure connectivity.
With distributed Internet Access to branch and centralized sites, could benefit with re-architecture, adopting
newer & enhanced technology solutions for transport independent via overlay routing. One may choose to
deploy DMVPN over existing transport giving flexibility to move between providers and mix of multiple
physical underlay transport.
Deploying technologies and solutions for Application Optimization and Intelligent path control over the
WAN for better application responsiveness across global WAN.
Secure Connectivity. Web Security to ensure a consistent security policy for distributed Internet Access.
Providing consistent centrally managed security policy for content traffic, threat and malware protection.
HTTP/HTTPS traffic exiting a branch over WAN is redirected (proxied), optimized to nearest web secure
data center. Access Policy is checked for requesting user, location/ device verifying access to the Internet.
All traffic is scanned for potential security threats.
SDN and SD WAN for Cloud based services from Cloud-based providers like salesforce.com, Amazon,
Microsoft and Google etc. Cloud SPs assume responsibility for the cost of disaster recovery, licensing,
hardware while providing flexibility to end enterprises.
Connectivity to Cloud Providers is established with dedicated circuits or through Internet Portals.
Secure Cloud VPN Gateway: Provides secure connectivity between the private data center & it’s off-
premise data center in the cloud.
Public Cloud & virtual private Cloud Services also provide VPN as capability. Enterprises can use leverage
OVAs of Virtual Cloud Routers for secure connectivity with consistent WAN Architecture as on Premises.
Features available include VPN IPSEC, DMVPN etc. Routing protocols: BGP, OSPF etc. Security with
NAT, ACL, Zone Based Firewalling.
Network Extensions from Premise to the Public Cloud to provide IP Mobility and elasticity. There are well
defined issues with the overlay networks and the Implementer should address these appropriately.
Thank you.
Kapil Sabharwal