Tag: fortinet secure sd-wan

Assessing Your Security – Ping Podcast Episode 11

Episode 11: Assessing Your Security

How do you know if your network is vulnerable? Well, you could find out the hard way by getting breached. Or you could try out a free program from Fortinet, the Cyber Threat Assessment Program (CTAP) that is. On this episode of Ping: A Firewalls.com Podcast, Kevin and Andrew talk to Fortinet’s Ben Bolen about CTAP, with a special focus on the new CTAP for SD-WAN. You’ll hear how it works, what you can expect to learn, and why it can be a vital step to optimizing your network security, whether you’re already running an SD-WAN setup or not.

Learn more about the CTAP program and sign up now.

Our Network Engineer Alan Steady shares the secret to making SD-WAN management easy in our Engineer’s Minute. Check out all of the expert security services our certified engineers offer.

In our Headlines, we talk about how SD-WAN may be able to help IoT security, a survey that places cybersecurity atop a list of business concerns, and some TikTok vulnerabilities.

How to listen

Listen to Ping – A Firewalls.com Podcast using the player above…

Or just about anywhere you prefer to listen to podcasts (Apple Podcasts, Spotify, Google Podcasts, Stitcher, OvercastTuneIn, iHeart, Pocket Cast, Castro, Castbox, PodchaserYouTube, and of course via RSS, to name a few). Remember to subscribe or follow where you can to get the latest episodes as soon as they’re released, and rate and review us as well!

Missed our previous episodes? You can get them anywhere you listen to podcasts, or go to our full episode list.

New episodes are released every other Wednesday. Have a special request for a topic or a question for our network engineers to address? Email us at podcast@firewalls.com and it could be on our next show!

4 Things to Consider Before an SD-WAN Migration

Just about any Google search for the phrase “SD-WAN” will turn up an overabundance of articles explaining why replacing traditional MPLS with SD-WAN solutions can save you time and money.  Heck, we even published a podcast about it. There is certainly no shortage of elevator pitches pointing you toward SD-WAN (also known as a software-defined wide area network); however, like all things in life, there is far more to the process than “just doing it.” Keep reading and we’ll lay out four key considerations to account for before any SD-WAN migration.

1 – Take Inventory

Your first step should be taking an accurate inventory of all of the locations, connections, and applications using your network. Categorize these locations by requirements. Do they rely on extremely high availability? What requirements are there for factors such a packet loss and jitter? Consider also the costs that each piece of the puzzle will require. All of these factors figure into what your business’s path to SD-WAN looks like.

Forming a highly detailed network diagram should be a priority. Knowing your WAN–including physical locations of devices and the layout of your LAN (local area network)–is crucial. Individual locations may require unique services, bandwidth, or traffic considerations. You will likely be sharing this network diagram with any third-party vendors you work with, ISPs, and your IT team so that all parties participating in the migration have a comprehensive understand of your needs. Firewalls.com always recommends that you leave plenty of wiggle room in your systems to accommodate for growth. With so many applications increasingly re-homing in the cloud, you should absolutely plan for the future of your SD-WAN solution to be able to accommodate them in the coming years.

2 – Determine What the Roll-Out Will Look Like

The second consideration is how quickly you expect your SD-WAN roll-out will be. Businesses have the option to switch everything from MPLS (multiprotocol label switching) as a routing technique to SD-WAN at once, or complete the process in a number of smaller, more modest phases.

SD-WAN is a flexible solution that can work in tandem with MPLS deployments already in place, allowing businesses to operate both simultaneously. Many organizations, especially small businesses, may not be ready or be able to migrate their entire WAN infrastructure in one process, and that’s okay. Hybrid WAN management, where certain connections are handled by MPLS and the rest by SD-WAN are not only possible, but fairly common.

Even if an organization is unable to fully transfer connections to SD-WAN, hybrid WAN management allows for reduced costs associated with bandwidth over time. Not only is this extremely flexible, but the money saved through SD-WAN begets resources needed for the later continuation of digital transformation. Or, put plainly, sometimes you have to save money to save more money later. Hybrid WAN environments make that possible.

3 – Acquire Dedicated Internet Access Lines Early

After taking inventory of the network and diagramming WAN infrastructure, you’ll have a solid idea of exactly what connections and bandwidth requirements to consider. Organizations need to start very early on with the process of orchestrating Internet service provider (ISP) installations, especially if connecting outposts or branch offices in remote locations. Getting Internet circuits installed can take several weeks or months. If the entire SD-WAN migration grinds to a halt while waiting on an ISP to haul fiber to branch locations, businesses can find themselves relying on more expensive MPLS solutions for longer than expected. Those costs add up and can act as a costly spoiler unaccounted for in initial budgeting.

4 – Consider Effects on End Users

Change, even positive change, causes friction. Friction in a business environment can have ripple effects on budget, productivity, and reputation, so it is imperative that businesses are fully prepared for cause-and-effect wrinkles in their daily routines. To that end, there are a number of questions you should ask about how an SD-WAN migration can impact users and internal traffic.

How much downtime should be expected for individual applications during the migration? If these are business critical applications, how can this impact be mitigated to minimally interfere with company workflow?

What changes will end users see in their daily network usage after successfully migrating to SD-WAN? Consider the training your staff may need to understand how this new infrastructure affects them. Again, change creates friction that may rub end users the wrong way, particularly if they’re used to doing things a certain way for a long time.

Speaking of end users, SD-WAN often extends greater access to mobile users on your network by eliminating the backhauling issues that mobile devices face with MPLS. Mobile backhaul describes the unseen process of how data-hungry mobile devices interact with wireless networks and data centers. However, SD-WAN excels at backhauling optimization, allowing for freer access to the network for mobile users. While this may be a boon for mobile workers, organizations should take additional security steps to account for increased mobile traffic on the network. Fortinet’s Secure SD-WAN integrates seamlessly with the rest of the Fortinet Security Fabric, extending powerful mobile security to minimize this impact when using products such as FortiGuard Mobile Service.

Another change that comes with SD-WAN migration is the beneficial impact it has on the IT department. SD-WAN can improve visibility and reduce the number of touch points and management tasks that IT needs to keep up with on a day-to-day basis. Organizations should consider how this lessened burden on the IT schedule can be taken advantage of to further improve network security and performance. What are network administrators to do with all of this extra time and increased control?

SD-WAN Management Made Easy

Hopefully this article has instilled some confidence if you’re on the fence about an SD-WAN migration. But Firewalls.com can still make managing your SD-WAN even easier. With a Security Operations Center filled to the brim with highly certified network administrators and architects, our Professional Services team can actively manage and configure SD-WAN on your behalf as an affordable, commitment-free monthly subscription. Give us a call at the number below to learn how Firewalls.com Professional Services can turn SD-WAN into an E-Z win.

Call us at 866-957-2975 to learn more!

Spotlight on SD-WAN – Ping: A Firewalls.com Podcast Episode 2

Episode 2: Spotlight on SD-WAN, starring Fortinet

Have you heard the hubub about SD-WAN? Well so have we, and we’re back with Episode 2 of Ping: A Firewalls.com Podcast to discuss this increasingly popular option to connect business networks. To give us the lay of the land (or lay of the WAN if you will), Kevin and Andrew welcome Jaime Ortiz, Fortinet Principal Engineer. Jaime discusses Fortinet’s Secure SD-WAN solutions, which we’ve gone over a bit in blog and video form as well. Fortinet is notable in the SD-WAN space for its all-in-one security plus SD-WAN offerings, making deployment and management simple.

Get your hands on the new FortiGate 100F firewall, which puts these solutions into one appliance.

Also in this episode, Firewalls.com Network Engineer Matt McLoughlin takes us through a few scenarios in our Engineer’s Minute in which SD-WAN could be the right choice for a business. Learn more about the network security services our certified engineers offer.

And in our Headlines segment, you’ll hear about how much small businesses prioritize network security (and how much they should), as well as some tips for cybersecurity training on college campuses and beyond.

How to listen

Listen to Ping – A Firewalls.com Podcast using the player above…

Or just about anywhere you prefer to listen to podcasts (Apple Podcasts, Spotify, Google Podcasts, Stitcher, TuneIn, iHeart, YouTube, and of course via RSS, to name a few). Remember to subscribe or follow where you can to get the latest episodes as soon as they’re released, and rate and review us as well!
I know the basic button code you gave me awhile back was pretty basic – like no color or font adj
Missed Episode 1? Check it out here!

New episodes are released every other Wednesday. Have a special request for a topic or a question for our network engineers to address? Email us at podcast@firewalls.com and it could be on our next show!