Cisco has further broadened the cloud-integration options available to its SD-WAN customers with new connectivity options to AWS and Microsoft Azure cloud services.
With these additions, Cisco’s goal is to ensure cloud-destined traffic gets into the cloud network faster, improving management, performance, security and reducing the latency that can impact cloud workloads.
Hybrid cloud is the norm and Cisco’s plan is bringing the networking support to improve app performance and add security without adding pain—it’s the right direction,” said Lee Doyle, principal analyst at Doyle Research.
In this case, the enhancements center around Cisco’s SD-WAN Cloud OnRamp feature that lets customers tie distributed cloud applications back to a branch office or private data center. The idea is that a cloud-to-branch link would be shorter, faster and possibly more secure that tying cloud-based applications directly to the data center. SD-WAN Cloud OnRamp is part of Cisco’s overarching SD-WAN software package, and the new features are found in a new release of that software–version 17.3.
With the Cloud OnRamp package each branch office or private data center is equipped with a network interface that provides a secure tunnel to a regional colocation facility. In turn, the Cloud onRamp for CoLocation establishes secure tunnels to SaaS application platforms, multi-cloud platform services, and enterprise data centers.
The package includes security features such as application-aware firewalls, URL-filtering, intrusion detection/prevention, DNS-layer security, and Advanced Malware Protection (AMP) Threat Grid, as well as other network services such as load-balancing and Wide Area Application Services, according to Cisco.
The integration of Cloud OnRamp and AWS lets customers securely link to AWS cloud resources with a few clicks, Cisco stated. The package also lets customers utilize the AWS Transit Gateway which lets customers connect their Amazon Virtual Private Clouds (VPCs) and their on-premises networks to a single gateway.
With Transit Gateway integration, customers can apply network segmentation and security policies to cloud traffic flows, and the package will also enable policy exchange between Cisco SD-WAN Controller and AWS Transit Gateway, which will let IT teams implement consistent network and data-security rules, Cisco stated.