SD-WAN Secure Over the Top: Internet strategies built for security and choice
Overlay solutions that can work with your existing network
One of the key benefits of SD-WAN is the ability to build high-performance WANs using commercially available broadband Internet. Using an internet-only approach for data transport has become known as SD-WAN “over the top” (OTT), because your corporate IP traffic runs over a connection using public internet access, rather than “on-net” solutions that run over the service provider’s private network. OTT strategies are also known as overlay solutions or secure overlay networks.
Masergy has OTT solutions, helping companies of all sizes take advantage of an internet-only approach for data transport. It’s ideal for businesses that want a low-cost broadband backbone. With OTT you can:
- Choose the local internet service provider that works best for your business locations
- Leverage your existing corporate network and take full advantage of your bandwidth
How SD-WAN Secure OTT works
Masergy creates an overlay network on top of any public or private network and sends encrypted application traffic via IPsec tunnels to Fortinet-powered endpoints over the public internet (“over the top”) for your agile, and scalable corporate network. The SD-WAN management portal provides a single view across your network with AI-powered service control and real-time analytics including AIOps and Shadow IT Discovery tools.
Key features of Masergy's OTT service
Built-in security
- End-to-end IPsec data encryption to help protect SD-WAN traffic between all endpoints
- Integrated next-generation firewall to protect sites and users directly exposed to the internet via broadband connections with SD-WAN
Application performance
- Forward Error Correction (FEC) to manage overall packet loss ratio and improve data integrity over public bandwidth
- Fast, automated application routing
Consolidated management portal
- Holistic visibility and control with real-time insights available on any desktop or mobile device
- Capabilities including AIOps, Shadow IT Discovery, and Identity-Based WAN Analytics
Determine the underlying network — you can even bring your own
The first step of designing an OTT solution is to identify the underlying network, and we offer the flexibility to work with any public or private network. Our “bring your own network” (BYON) option allows you to overlay our SD-WAN Secure OTT solution on top of your existing third-party network.
When you bring your own network, the SD-WAN Secure OTT solution establishes secure IPsec tunnels between SD-WAN endpoints through your existing third-party MPLS network.
Choose your public connectivity types
Beyond just broadband, Masergy’s SD-WAN Secure OTT solution allows for other connectivity options. Choose from any of these third-party services or mix and match between options:
- Direct internet access (DIA)
- Fixed wireless (5G or LTE)
- Public internet access (broadband)
Plus, when you bring your own network, you can also route traffic via your existing private network backbone.
Security capabilities
81% of IT leaders say security is their top factor in selecting SD-WAN. Three-tiered options include next-gen firewalls for superior perimeter protection and 24/7 SOC services that alleviate your team of monitoring and threat response. Plus you can enforce a consistent security policy across all SD-WAN devices and get security alert metrics within the SD-WAN management portal.
Choose the security service below that best matches your desired level of security and support.
| Service | Unified Threat Protection | Threat Monitoring & Response | Managed Security Services |
|---|---|---|---|
| Next-generation firewall (NGFW) with UTP | |||
| Enhanced anti-malware, IDS/IPS, app control, web filtering, and DLP | |||
| Built-in AIOps, Shadow IT Discovery, and per-user WAN analytics | |||
| Log reporting and alerting | |||
| SOC Services: 24/7 monitoring and incident response | |||
| Cloud Security: AWS®, Azure®, CASB, Office 365™, 3rd party integration* | |||
| Security analytics: Machine learning and behavior analytics | |||
| Advanced IDS and raw packet capture | |||
| Network visibility (flow data) | |||
| Endpoint detection and response | |||
| Threat intelligence and hunting | |||
| Vulnerability scanning and management |
Extend the benefits of SD-WAN to your remote workforce
Select your management model
Not every IT department is comfortable handing the management of their WAN to a third-party provider. That’s why Masergy empowers your organization with the option to retain 100% control over specific aspects of your SD-WAN service using a co-managed model. The Masergy SD-WAN Secure OTT solution can be set up as a fully managed service or a co-managed solution, where you have the ability to self-manage configurations and policies unique to your corporate network.
Get real-time visibility and control in one portal
All you need is one portal for end-to-end visibility and total control over your SD-WAN environment. Masergy’s cloud-based SD-WAN management portal offers:
- Real-time identity-based WAN edge analytics in a customizable dashboard
- An AIOps virtual assistant for automated network and cloud application performance
- A Shadow IT Discovery solution that increases your security by automatically finding unsanctioned cloud apps on your network
Interested in learning more about Managed SD-WAN Secure OTT?
Call us now to arrange a consultation (855) 238-1463.
Or arrange for a consultation through our request form.