1w w w . m e n a i s c . c o m

SD-WAN TRANSFORMS TO SD-BRANCH

PATRICK GRILLOSENIOR DIRECTOR, SECURITY STRATEGY

2

Internet

MPLS

Networking with MPLS

3

Internet

MPLS

But All Was Not Well… Cloud

Increasing B/W

Demands

Increasing WAN costsProvisioning

Delays

Increased Voice/Video applications

4

The Universal Answer

5

But What is SD-WAN?

“Software-defined WAN (SD-WAN) is a technology that distributes network traffic across wide area networks that uses software-defined networking concepts to automatically determine the most effective way to route traffic to and from branch offices and data centersites”

Whatis.com

“The main goal of SD-WAN (SDWAN) technology is to deliver a business-

class, secure, and simple cloud-enabled WAN connection with as much open and software-based

technology as possible.”

sdx central

“SD-WAN simplifies the management and operation of a WAN by decoupling

the networking hardware from its control mechanism.”

Wikipedia

6

Internet

SD-WAN – Solving a Networking Problem

MPLS

SD-WAN

7

Omnipresent

A Strategic Imperative

Major Impact on All Customers

8

MPLS

DX Pivot’s SD-WAN’s Priorities

SD-WAN

Internet

9

Microsoft Azure

MPLS

Getting to the Cloud

Remote Sites

SD-WAN

Internet

10

Microsoft Azure

MPLS

Exposes the Weak Link

Centralized Security Architecture

Remote Sites

SD-WAN

Internet

11

Possible Options for Securing SD-WAN

SD-WAN with Embedded Firewall

SD-WAN with 3rd Party Firewall

SD-WAN with Cloud Security

Firewall with Embedded SD-WAN

12

Narrowing Down the Options

Simplification

Functionality

SD-WAN with 3rd Party FW

SD-WAN with Cloud Security

FW with Embedded SD-WAN

SD-WAN with Embedded FW

13

Highlighting a Security First Approach

Simplification

Functionality

SD-WAN with 3rd Party FW

SD-WAN with Cloud Security

FW with Embedded SD-WAN

“SD-WAN systems do not offeradvanced security features.”

“…SD-WAN embedded securityis similar to capabilities supportedby current routers…”

14

Microsoft Azure

MPLS

Convergence of Two Issues

SD-WAN

SD-WAN

SD-WAN

NGFW

NGFW

NGFW

Internet

15

Microsoft Azure

MPLS

Introducing Secure SD-WAN

Internet

Reduce WAN Cost

Business Application Centric

Improves Security Posture

SecureSD-WAN

SecureSD-WAN

SecureSD-WAN

16w w w . m e n a i s c . c o m

THERE’S MORE TO THE BRANCH THAN JUST THE WAN

17

Outwards Looking SD-WAN

SD-WANEnabled NGFW

MPLS

Internet

• Securing Against Today’s Threats• Application Prioritization• Intelligent WAN utilization

18

Looking Back Into the Branch

SD-WANEnabled NGFW

MPLS

Internet

Switch

WirelessAccess Point

EPP

19

Introducing SD Branch

FortiGateSD-WANEnabled NGFW

MPLS

Internet

• Simplification - Consolidated networking and security

• Anti-virus• URL filtering• Application Control• Segmentation

FortiSwitch

FortiAPWirelessAccess Point

• Securing Against Today’s Threats• Application Prioritization• Intelligent WAN utilization

20

Microsoft Azure

Internet

MPLS

Securing the Data Journey

SD-WANNGFW

SD-WANNGFW

SD-WANNGFW

21

Microsoft Azure

Internet

MPLS

Connectivity, Protection and Visibility

SD-WANNGFW

SD-WANNGFW

SD-WANNGFW

22

Internet

MPLS

Go Beyond the Branch

SD-WANNGFW

SD-WANNGFW

SD-WANNGFW

Microsoft Azure

23

Introducing the Fortinet Security Fabric

INTEGRATEDProtection across all devices, networks, and applications

AUTOMATEDOperations and response driven by Machine Learning

BROADVisibility of the entire digital attack surface

NetworkSecurity

NetworkOperations

Multi-CloudSecurity

Endpoint/DeviceProtection

SecureAccess

ApplicationSecurity

The picture can't be displayed.

The picture can't be displayed.

The picture can't be displayed.

FabricAPIs

FabricConnectors

The picture can't be displayed.

SecurityOperations

The picture can't be displayed.

24