SD-WAN CANNOT SUCCEED WITHOUT SECURITY

While SD-WAN offers connectivity options, performance gains, and a cost advantage over traditional WANs, it has several shortcomings:

• Complexity. SD-WAN architectures can be difficult to troubleshoot and hard to manage across all the branches. This adds to the burden on limited IT staff and often creates defensive gaps for threats to exploit.
• Security. Without the centralized protection provided by backhauling traffic through the data center, moving to direct internet broadband links exposes organizations to new risks. Effective SD-WAN implementation requires additional security within the enterprise infrastructure to secure those connections and inspect high volumes of traffic—all without inhibiting network performance.
• Encrypted traffic inspection. Most SD-WAN solutions lack the ability to inspect secure sockets layer (SSL)/transport layer security (TLS) encrypted traffic, which comprises 72% of network traffic today.3 Specifically, as cyber criminals are hiding malware to infiltrate networks and using it to exfiltrate data, organizations either put themselves at risk or must purchase additional appliances to inspect encrypted traffic at the edge of the network.

ADVANCED NETWORKING AND SECURITY, COMBINED—FORTINET SECURE SD-WAN

Fortinet has traditionally supported advanced networking features including dynamic routing, IPv4/v6 and multicast support. Fortinet NGFWs with built-in SD-WAN capabilities provide both networking and security for branch networks in a single consolidated solution. It provides efficient protection across all branch outposts by providing consistent policy enforcement with single-pane-of-glass management. It also allows enterprises to mitigate risks associated with DX.

With over 30,000 customer deployments, Fortinet leads the market with Secure SD-WAN innovation with an integrated SD-WAN and security capabilities. For SD-WAN capabilities, Fortinet combines NGFW, advanced routing, and SD-WAN features in a single solution that improves WAN efficiency and security.

Fortinet Secure SD-WAN key capabilities include:

Application Awareness and Automated Path Intelligence

With traditional WAN, enterprises have a hard time maintaining the quality of user experience per application. Traditional WAN infrastructure relies on packet routing, which limits application visibility.

Fortinet Secure SD-WAN uses “first-packet identification” to intelligently identify applications on the very first packet of data traffic. This broad application awareness helps network teams see which applications are being used across the enterprise, enabling them to make well-informed decisions regarding SD-WAN policies. Fortinet Secure SD-WAN references an application control database of over 5,000 applications, a number that continues to grow as both the threat landscape and digital network evolve.

Being application aware opens the doors to automated path intelligence—prioritizing routing across network bandwidth based on the specific application and user. Offering per-application-level service-level agreement (SLA), Fortinet Secure SD- WAN automated path intelligence dynamically selects the best WAN link/connection for the situation. Fortinet NGFWs that feature the new SOC4 ASIC enable the fastest application steering in the industry, including unrivaled application identification performance. This includes deep SSL/TLS inspection with the lowest possible performance degradation. Related features include:

• WAN path remediation
• Tunnel bandwidth aggregation
• Automatic failover capabilities

NGFW Security and Compliance

Fortinet Secure SD-WAN delivers enterprise-class security and branch networking capabilities with a single-box solution—the Fortinet NGFW. Critical security features include:

SSL/TLS inspection and threat protection

• Web filtering service
• Complete threat protection
• Highly scalable overlay virtual private network (VPN) tunnels
• Granular SLA analytics

Simplified Management, Orchestration, and Overlay Control

As enterprises adopt SD-WAN, they need the right tools to seamlessly deploy and manage it across widely distributed infrastructures. Fortinet Secure SD-WAN can be administered through FortiManager, a single intuitive and unified management console. It includes options for a cloud-based or hosted solution for remote control and orchestration across thousands of locations. Fortinet Secure SD-WAN offers enhanced analytics and new SD-WAN reports with Fabric Management Center. Single console and rich SD-WAN analytics helps customers to fine-tune their business and security policies to improve quality of experience for all their users. Fortinet enables customers to focus on digital innovations and make their network more agile.

Scalable and Flexible SD-WAN Solution

Home Office: Offered as a desktop appliance with built-in long-term evolution (LTE), FortiGate 40F supports “superusers” at home who require their applications to work without fail for business-critical activities such as customer video demonstrations. With the minimal footprint of Fortinet’s desktop appliance, remote workers can procure and install a solution at their home offices to handle routing, security, and wireless needs in a single, integrated platform. The critical advantage of extending SD- WAN functionality to individual teleworkers, especially superusers, is that they can enjoy on-demand remote access as well

as dynamically scalable performance regardless of their local network availability. And when others in the organization rely on these individuals to do their jobs quickly and efficiently, SD-WAN functionality can make all the difference.

Branch: Fortinet Secure SD-WAN is perhaps the most well-known for supporting complex branch deployments with advanced routing and cloud on-ramp capabilities, which has helped thousands of customers to reduce their use of point products such as legacy routers, while improving business application experience.

Distributed Cloud: For organizations with applications in distributed clouds, Fortinet Secure SD-WAN offers the most comprehensive technology building blocks for interconnecting clouds for better user experience. Fortinet Secure SD-WAN is available in every cloud provider and enables the industry’s highest IPsec throughput at 20 Gbps to interconnect clouds. With native application steering and cloud integration framework, as well as fully programmable application programming interfaces (APIs), Fortinet Secure SD-WAN helps customers to connect hundreds of cloud environments.