Secure, End-to-End Network Virtualization

Providing SD-WAN connectivity across the enterprise is becoming increasingly complex. Organizations must manage multiple disparate transport networks, embed policy control at every hop in the network, address security vulnerabilities, rectify application performance issues, and contend with long provisioning times to roll out new applications and make simple change requests. Enterprises need a WAN solution for building large-scale networks that doesn’t increase costs, compromise security, or create delays in rolling out new services.

Enter the Viptela Secure Extensible Network (SEN) solution. The Viptela SEN provides secure, end-to-end network virtualization and helps enterprises cut their WAN operating costs by more than 50 percent, increase bandwidth tenfold, and improve their security and uptime.

Four major components make up the Viptela SEN: the vSmart Controller, vEdge Routers, the vBond Orchestrator, and the vManage Network Configuration & Monitoring System.

The vSmart Controller

As the brains of the overlay network, the vSmart Controller establishes a secure DTLS connection to each vEdge router in the network and runs an Overlay Management Protocol (OMP) to share routes, security, and policy information. The centralized policy engine in the vSmart controller provides rich inbound and outbound policy constructs to manipulate routing information, access control, segmentation, extranets, and service chaining.

vEdge Routers

vEdge routers are full-featured IP routers that perform standard functions, such as OSPF, BGP, ACLs, QoS, and routing policies, in addition to the overlay control and data plane. Each vEdge router automatically establishes secure DTLS sessions with the vSmart controller and standard IPsec sessions with other vEdge routers in the SEN.

The vBond Orchestrator

The vBond Orchestrator is modular software that runs on the vEdge router. It automatically facilitates the control plane bring-up process, performs initial authentication, and orchestrates connectivity between vSmart controllers and vEdge routers. The vBond Orchestrator plays an important role in enabling the Viptela devices that sit behind NAT to communicate with the broader network.

The vManage Network Configuration & Monitoring System

vManage is a centralized system that enables configuration management and monitoring of the Viptela SEN solution. It is a virtual appliance that runs on a VMware vSphere ESXi Hypervisor with a minimum of two vCPUs and 8 GB of memory.