Secure Enterprise SDN
Enhance Network Security and Reduce Admin Burden and Cost with Allied Telesis Secure Enterprise SDN (SES)
After decades of data networking as a decentralized and distributed process, recent years have seen the development of ways to centralize data network control, called Software-Defined Networking (SDN). This term refers to software applications, like those that move virtual servers around in a data center, or orchestrate file transfers between data centers, define the operation of switching and routing nodes in the network.
The Big SDN Promise
In a typical network, it takes time to deploy new equipment, and to roll out a configuration. Utilizing bandwidth can be more efficient and forwarding policies/rules are configured on a one-off basis. This creates a network that is far from agile and non-responsive to quick changes. End-user management and network security are major concerns to enterprise network operations too, as they pose a major cost and risk as users come and go. Security concerns are present as users are constantly looking to use new applications, on more devices.
By offering capabilities such as programmability of network traffic and abstraction of different network functions, SDN has come to be seen as the solution to these limitations, while also time reducing the OPEX and the overall administration overhead of the network.
Fig 1. With SES, 3rd party security applications are granted network access via the SDN controller. Devices that are suspected or identified as being infected are automatically isolated from the rest of the network without a network administrator’s involvement. Placement of the infected device on quarantine VPN allows the infected device to be forensically scanned, cleaned, vaccinated or wiped from outside network.
Enterprises Need More Focus
For all but the very largest enterprise networks, the benefits of full agility and rapid service provisioning are not key. These networks aren’t dynamic. Once they’re installed, they don’t change much. Better link utilization is also not a high priority, because if more bandwidth is required the business can install it at relatively low cost. What enterprises really need is the ability to respond to specific network events, such as security breaches and network equipment failures, as quickly as possible without incurring the cost associated with human intervention.
This is why we developed Secure Enterprise SDN (SES), a comprehensive solutions capability that exploits the power of the AlliedWare Plus™ networking operating system, our AMF™ management framework, and an extensive collaborative ecosystem of 3rd party hardware and software vendors that allows our customers to prevent damaging and expensive cyber breaches through real-time intrusion protection, infected device isolation, cleaning and restoration.
The Power of SES
Network security is being continually challenged by new and ever-evolving threats. Allied Telesis Secure Enterprise SDN (SES) provides a platform to tackle these threats head on, with a combination of smart applications and firewall products from best-of-breed security vendors. Together, the resulting solution is more secure and easier to manage, while providing excellent visibility into the security status of the entire network.
Allied Telesis SES enhances network security and reduces network management man hours and costs through the smart integration of SDN/OpenFlow network technologies with enterprise provisioning, asset management and threat detection applications. With SES, users benefit from application and content visibility and control, as well as protection against cyber threats—known and unknown. The threat intelligence cloud provides central intelligence capabilities and automates the delivery of preventative measures against cyberattacks.
A key feature of our intelligent solutions is the automation and simplification of management tasks. Autonomous Management Framework (AMF) automates many everyday administration tasks, eliminating the need for manual intervention. This reduces costs, frees up admin time and reduces mistakes. An extra benefit is the ability to customize your network via the powerful RESTful API, which lets you add your own features using your favorite programming language.