SD-WAN Secure Over the Top: Internet strategies built for security and choice
Overlay solutions work with your existing network
One of the key benefits of SD-WAN is the ability to build high-performance WANs using relatively low-cost and commercially available broadband Internet links. Using an internet-only approach for data transport has become known as SD-WAN “over the top” (OTT), because your corporate IP traffic runs over a secure connection using cost-effective public internet access, rather than “on-net” solutions that run over the service provider’s private network. OTT strategies are also known as overlay solutions or secure overlay networks.
Masergy has expanded its SD-WAN offerings with OTT solutions, helping enterprises of all sizes take advantage of an internet-only approach for data transport. This is the ideal solution for mid-sized businesses that want a low-cost broadband backbone as well as mid-to-large sized companies locked into long-term contracts for network connectivity. The advantage is that you can:
Masergy creates an overlay network on top of any public or private network and sends encrypted application traffic via IPsec tunnels to Fortinet-powered endpoints over the public internet ("over the top") for your secure, agile, and scalable corporate network. The SD-WAN management portal provides a single view across your network with AI-powered service control and real-time analytics including AIOps and Shadow IT Discovery tools. Located on three continents, Masergy's own NOCs provide a best-in-class managed service, as evidenced by our industry-leading client retention rates and Net Promoter Scores.
Built-in security
Superior application performance
Consolidated management portal
The first step of designing an OTT solution is to identify the underlying network, and Masergy offers the flexibility to work with any public or private network. Locked into a contract with a third-party MPLS provider but want to immediately move to an SD-WAN solution? No problem. Masergy’s “bring your own network” (BYON) option allows you to overlay Masergy’s SD-WAN Secure OTT solution on top of your existing third-party network.
As shown in the diagram, when you bring your own network, the SD-WAN Secure OTT solution establishes secure IPsec tunnels between SD-WAN endpoints through your existing third-party MPLS network.
Beyond just broadband, Masergy’s SD-WAN Secure OTT solution allows for other
connectivity options. Choose from any of these third-party services:
Yes, of course you can mix and match the options above. Plus, when you bring your own network, you can also route traffic via your existing private network backbone.
Know which third-party internet service providers you want to use? You can bring your own broadband, DIA, and wireless connections. Conversely, you can leverage Masergy's network of global access partners, allowing us to procure any combination of public connectivity services on your behalf. No matter which type of public connectivity services you choose or which providers you want to use, Masergy will deliver secure and agile connectivity with real-time performance visibility in one SD-WAN management portal.
Security features and services are embedded into every SD-WAN solution, meeting the key tenets of Gartner's SASE model. Three-tiered options include next-gen firewalls for superior perimeter protection and 24/7 SOC services that alleviate your team of the monitoring and threat response. Plus you can enforce consistent security policy across all SD-WAN devices and get security alert metrics within the SD-WAN management portal.
Choose the security service below that best matches your desired level of protection and support.
| Unified Threat Protection | Threat Monitoring & Response | Managed Security Services | |
|---|---|---|---|
| Next-generation firewall (NGFW) with UTP |
 |
|
|
| Enhanced anti-malware, IDS/IPS, app control, web filtering, and DLP |
|
|
|
| Built-in AIOps, Shadow IT Discovery, and per-user WAN analytics |
|
|
|
| Log reporting and alerting |
|
|
|
| SOC Services: 24/7 monitoring and incident response |
|
|
|
| Cloud Security: AWS®, Azure®, CASB, Office 365™, 3rd party integration* |
|
||
| Security analytics: Machine learning and behavior analytics |
|
||
| Advanced IDS and raw packet capture |
|
||
| Network visibility (flow data) |
|
||
| Endpoint detection and response |
|
||
| Threat intelligence and hunting |
|
||
| Vulnerability scanning and management |
|
for power users needing uncompromising connectivity from their home offices
for mobile knowledge workers needing secure access to corporate and cloud applications
Not every IT department is comfortable handing the management of their WAN to a third-party provider. That’s why Masergy empowers your organization with the option to retain 100% control over specific aspects of your SD-WAN service using a co-managed model. The Masergy SD-WAN Secure OTT solution can be set up as a fully managed service or a co-managed solution, where you have the ability to self-manage configurations and policies unique to your corporate network.
The number of offices you have and the miles between them will dictate how many internet service providers your OTT solution will need. Last-mile vendor sprawl can cause management complexities and troubleshooting issues, because patchworked services come with traffic handoffs that can lead to finger-pointing frustrations. Masergy is here to relieve your IT team of this problem. If you choose a Masergy-provided internet connection, we’ll also monitor and manage the performance of your service to ensure maximum uptime for your business-critical apps.
All you need is one portal for end-to-end visibility and total control over your SD-WAN environment. Masergy’s cloud-based SD-WAN management portal offers:
With SD-WAN’s many connectivity options, when do you deploy 4G and 5G links and when should you avoid them? Here’s how Masergy advises its clients.
What is SASE and how is it a new way to address the needs of both the network and security? Here are five simple lessons for understanding SASE.
Power your digital transformation with flexible solutions that improve cloud application performance and increase agility. Learn more about Masergy's SD-WAN Secure.