Académique Documents
Professionnel Documents
Culture Documents
Overview Adopting distributed firewalls can be a challenge due to deployment complexity and
the difficulty of forwarding traffic to them. Today, cloud traffic is backhauled across a
• Robust application performance
private wide area network, or WAN, to a centralized firewall environment to simplify
with NSX SD-WAN Dynamic
configurations. However, this negatively affects latency and performance. Additionally,
Multipath Optimization
traditional WANs rely on costly private circuits to enhance application performance.
• Simplified WAN deployment Backhaul of cloud traffic, guest Wi-Fi and more bandwidth-intensive applications, such as
with NSX SD-WAN business video and virtual desktop integration, put further pressure on private WAN bandwidth.
policy automation
A software-defined wide area network, or SD-WAN, enables inexpensive internet to be the
• Consistent security across all transport mechanism for bandwidth-intensive applications. Public internet links are “best
locations with the Palo Alto efforts” and susceptible to attacks. A secure, cloud-delivered SD-WAN delivers ubiquitous
Networks Security Operating security and enterprise-grade application performance for cloud or on-premise applications.
Platform
• Simplified operations and reduced VMware NSX SD-WAN by VeloCloud
costs through zero-touch deploy- As more applications move to the cloud, the old approach of backhauling traffic through
ment and provisioning Multiprotocol Label Switching, or MPLS, to a centralized internet gateway via a hub-and-
spoke architecture is no longer relevant. It is expensive and introduces unnecessary latency.
To support a cloud transition and deliver a fast user experience, enterprise network archi-
tects are reevaluating their WAN architectures to find ways to route internet traffic locally
and take advantage of inexpensive broadband internet services, often turning to SD-WAN.
VMware® NSX® SD-WAN simplifies how traffic is routed and provides bandwidth expansion
for the branch. It also provides direct access to cloud applications through a distributed network
of NSX SD-WAN Gateways, a cloud-based NSX SD-WAN Orchestrator and a branch platform,
NSX SD-WAN Edge. Using broadband along with MPLS as the transport mechanism, Dynamic
Multipath Optimization™ steers traffic on a per-packet basis to the optimal path and remediates
transmission degradations. By defining policies in the cloud via a single interface, organizations
can easily deploy new applications and services as well as manage policies across a large number
of locations.
The following are the key benefits of NSX SD-WAN.
Palo Alto Networks | Palo Alto Networks and VMware NSX SD-WAN by VeloCloud | Brief 1
Peak Application Performance
NSX SD-WAN Dynamic Multipath Optimization, with application-aware, per-packet steering and on-demand remediation, assures
transport-independent performance for demanding, real-time applications, such as voice and video.
Internet
Logging Service
GlobalProtect
cloud service
PN
Headquarters
Figure 1: GlobalProtect cloud service for remote networks and mobile users
Palo Alto Networks | Palo Alto Networks and VMware NSX SD-WAN by VeloCloud | Brief 2
Customers do not need to backhaul traffic and can avoid deploying stacks of security appliances at each location. By routing traffic to
GlobalProtect cloud service, customers can immediately begin inspecting all traffic on all ports and protocols, including SSL. Organizations
can define and immediately enforce access and security policies across all locations from a single console. Moreover, GlobalProtect cloud
service scales so you can add capacity or deploy new services in just a few clicks.
GlobalProtect Cloud
Servers
IPsec
tunnel
Internet
SD-WAN
NSX SD-WAN Edge overlay NSX SD-WAN Edge
tunnels
Client 1 Client 2
About VMware
VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright
© 2018 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property
laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered
trademark or trademark of VMware, Inc. and its subsidiaries in the United States and other jurisdictions. All other marks and names
mentioned herein may be trademarks of their respective companies.
3000 Tannery Way © 2018 Palo Alto Networks, Inc. Palo Alto Networks is a registered
Santa Clara, CA 95054 trademark of Palo Alto Networks. A list of our trademarks can be found at
Main: +1.408.753.4000 https://www.paloaltonetworks.com/company/trademarks.html. All other
Sales: +1.866.320.4788 marks mentioned herein may be trademarks of their respective companies.
Support: +1.866.898.9087 palo-alto-networks-and-vmware-nsx-sd-wan-by-velocloud-b-070618
www.paloaltonetworks.com