sd-wan simplified · 2020. 5. 5. · why juniper: differentiation with sd-enterprise stop threats...
TRANSCRIPT
© 2018 Juniper Networks
SD-WAN SIMPLIFIEDMEASURING USER EXPERIENCE WITH AI
Leigh Gardiner
Systems Engineering Tech Lead
© 2018 Juniper Networks
AGENDA
SD-WAN Evolution
SD-Enterprise Overview
Demos
Measuring User Experience
© 2018 Juniper Networks
SD-WAN EVOLUTION
© 2018 Juniper Networks
ENTERPRISE NETWORKING CHALLENGES
https://stlpartners.com/research/enterprise-networking-challenges-how-can-sd-wan-help/
© 2018 Juniper Networks
ARCHITECTURE OF ENTERPRISE NETWORKS
Image from blog.thousandeyes.com
Whatever, Whenever, Wherever,
© 2018 Juniper Networks
WHAT COULD POSSIBLY GO WRONG END-TO-END?
Image from www.netrounds.com
How Do We Detect and Fix These Issues Automatically?
© 2018 Juniper Networks
AT THE END OF THE DAY, IT’S ALL ABOUT USER EXPERIENCE
© 2018 Juniper Networks
Challenges with traditional networks:
⚠ “Up” is not the same as “good”
⚠ Difficult to troubleshoot, configure
⚠ Limited insight
⚠ IT wait until a user complains, then fixes
ENDING MEDIOCRE EXPERIENCES
© 2018 Juniper Networks
SD-WAN SOLUTION
9
Branch Site
1. Upgrade managed sites to full SD-WAN functionality for Application Centric Routing and SLAs.
2. Simplified Multicloud: Stitch your SD-WAN overlay into Public Cloud using vSRX.
SRX /
vSRX
(CPE)
Unified SD-WAN & Site Management:
EX
Switches(Stack/VC)
Mist APs
CSO
MPLS
4G/LTE
Regional DC
SRX /
vSRX
(Hubs)
WAN
© 2018 Juniper Networks
WRITE SLA’S INSTEAD OF ROUTES
10
© 2018 Juniper Networks
RESULTS OF SLA’S
11
© 2018 Juniper Networks
SLA REPORTING
• SD-WAN Tenant Performance
• SD-WAN Site Performance
• Top 10 Applications
• Top Applications by bandwidth
• Top Applications by Jitter
• Top Sites meeting/not meeting SLA
• Top SLA Profiles switching links
• SLA Performance between All sites and Gateway
• SLA Performance between All Sites and Hub
• SLA Performance Between Site Pairs
Feature Support
• Users generated SD-WAN reports for SLA performance
of all sites in a tenant.
• Custom report definitions sent by e-mail, and schedule
the report generation
© 2018 Juniper Networks
Identify root cause of issues
Customize SLE thresholds
Are SLEs
being met?
When did the problem occur?
When did config and system changes take place?
ARTIFICIAL INTELLIGENCE: EASILY TRACK SERVICE LEVEL PROVIDED TOUSERS
© 2018 Juniper Networks
HINT: IT’S ALL ABOUT DATA
14
Default
Gateway Arp
DHCP OK
First DNS
request
© 2018 Juniper Networks
SD-ENTERPRISE SOLUTION AND MAIN COMPONENTS
1) Management and Orchestration
2) CPE/Branch Gateway Device
3) Enterprise Hubs
4) Provider Hubs (Multitenant)
5) Branch LAN switching
6) WiFi
Mist Wi-Fi APsEX Series Ethernet Switches
SRX Series Services Gateway Branch Secure CPEs
LTE
NFX Series universal CPE
LTE
Contrail SD-WANMist Cloud
vSRX Virtual Firewall
Enterprise or Provider Hub
HYBRID WAN NGFW SD-WAN SD-LAN
© 2018 Juniper Networks
SD-ENTERPRISE WITH INTEGRATED SECURITY SERVICES
Foundation Services
Next Generation Firewall
Services
Firewall NAT VPN Routing
Application Control & Visibility
User-based Firewall
Unified Threat Management
(Known Threats)
Anti-virus
Intrusion Prevention Web/Content Filtering
Anti-spam
Threat Intelligence
Platform
Botnets/C&C
GEO-IP
Custom Feeds, APT
Management SSL Proxy Analytics Automation
Cloud Based
Advanced Anti-Malware
(Zero Day)
Sandboxing
Evasive Malware
Rich Reporting, Analytics
© 2018 Juniper Networks
1
DEMO’S
© 2018 Juniper Networks
WHAT I’LL SHOW TODAY
1. SD-Enterprise: Deploy CPE & LAN switch
2. Application Experience
3. Marvis AI – Data Science
18
© 2018 Juniper Networks
DEMO 1: SD-ENTERPRISE
© 2018 Juniper Networks
DEMO 2: HOW APPLICATION EXPERIENCE IS USED
© 2018 Juniper Networks
DEMO 3: DATA SCIENCE
© 2018 Juniper Networks
2
WRAP UP
© 2018 Juniper Networks
WHY JUNIPER: DIFFERENTIATION WITH SD-ENTERPRISE
Stop threats immediately
• Integrated Next Generation Security (NGFW) at all layers
• More advanced services included too: UTM, IDS, IPS, Sky ATP, Unified Policy, SDSN
• Security is critical for internet local breakout requirements
23
Deployment Flexibility
• Breadth of portfolio for Wi-Fi, NFX (universal x86), SRX, and LAN
• ADSL, VDSL, LTE, Ethernet, MPLS, Internet, Overlay
• Run third party VNF services on NFX
• SRX/NFX widely deployed
SECURITY FIRST BREADTH OF PORTFOLIO
Trust the network
• Multi-tenancy built at all layers: one controller for many customers
• Scale up to 10,000 endpoints, independently tested (EANTC)
• Investment Protection: use existing infrastructure
• Flexible: standard protocols, open interfaces, built over years in JUNOS
CARRIER GRADE SCALE &
RELIABILITY
End to End
• Extend cloud managed SD-WAN to Mist Wi-Fi, EX Switches, and Security
• Centrally manage & automate branch LAN, Wi-Fi, Security, and WAN
• Manage end-to-end user experiences rather than silo’dnetworks
• Artificial Intelligence can help!
TRANSFORM WITH SD-
ENTERPRISE
LTE
LTELTE
© 2018 Juniper Networks 24https://juniper.net/sd-wan
www.juniper.net/sd-wan
© 2018 Juniper Networks
THANK YOU
www.juniper.net/sdwan-playlist
www.juniper.net/sd-wan
www.mist.com/wireless-demos
Education Services Training:
SD-WAN Course: www.juni.pr/2rtOqEA
Cloud Certification: www.juni.pr/37EbFN9