Segmenting Network Traffic Intelligently and Automatically with an Outcome-Driven Approach

By Rachna Srivastava
Director of Product Marketing, VeloCloud
December 5, 2017

Image_SegmentationIn the last ten years, the profile of what network traffic looks like has completely changed from the ten years before that. The internet of things (IoT), the variance and number of connected devices, video, images, voice, credit card data and payments processing, wifi, and much more has changed the requirements of what networks must support today.

To add to the wide variation in what traverses the network in any given second of any day is the general importance of all of this traffic. It is not all the same and cannot be treated as such. But in many instances, all traffic uses the same bandwidth and the network itself does not differentiate the content nor prioritize one over the other

A standard operating procedure in this form cannot exist any longer.

For organizations to improve the way they do business, they must separate different types of network traffic from each other and they must prioritize certain traffic over others. There are solutions that do this at a basic  level, but what is needed is segmentation that can scale, allowing for  multiple segments to be created  across an entire network, creating a new set of dynamic and self-learning standard operating procedures.

This isn’t a future wish list item. IT managers no longer have to dream about this type of reality. With Outcome-Driven Networking and its inherent capability of segmenting data in an automated, intelligent, machine-learning, and with network-wide enablement, is available today.

What makes an Outcome-Driven Networking segmentation process different?

[To read the other blogs in this series, visit the: Outcome-Driven Networking Introduction and Intelligent Routing.] 

The overarching concept of Outcome-Driven Networking bases all activities on the desired outcome of all the network activities and it does this using single-click actions by the IT team, where the underlying Cloud-Delivered SD-WAN technology manages and configures all the necessary activity proactively and continuously to reach the desired outcome. These teams no longer have to manually configure all the tasks associated with the outcome and can instead leverage their time for other business critical projects.

With segmentation, all network managers have to do is simply  define the segment and assign relevant policies and priority to the segments. For instance, firewall and VPN rules per segment are automated, individual security policies are applied per segment across the entire network, eliminating complex configurations for every hop. Segmentation ensures that the policies are automatically applied across all edges and the cloud. Segmentation further self-learns the network and automatically isolates segments and their policies as they are carried across the WAN. No other vendor in the market can offer per segment policies as VeloCloud; most vendors apply the same policy across all segments.

Organizations that are retail based or process credit cards on a regular basis can segment PCI traffic from corporate traffic and from guest Internet traffic. They can also create separate and unique topologies and rules for each segment. An example of the types of segmentation that can be performed include:

  • Guest wifi traffic should be directed to secure web gateway or firewall
  • Voice traffic between retail stores can be directed over a dynamic branch-to-branch secure link.  
  • PCI traffic can be isolated and directed to a payment card server.

The possibilities of segmenting network traffic are unlimited and extremely scalable. They apply to organizations in any vertical, with any business purpose, and for any desired outcome. Without it, network managers are crippled by manual processes, but with Outcome-Driven Networking, the burden is lifted.

To read more about Outcome-Driven Networking, download the white paper by analyst firm, ESG.

Part one of our Outcome-Driven Networking blog series: Changing the Network Management Paradigm with Outcome-Driven Networking

Part two of our Outcome-Driven Networking blog series: Thinking Outside of the Box with Intelligent Routing and an Outcome-Driven Approach

Add a comment.

Acclaim for VeloCloud

Hear what leading enterprises are saying about VMware SD-WAN by VeloCloud™.