zWAN DIRECTOR – SD-WAN Centralized Management

zwan-director-01

An SD-WAN (Software-Defined Wide Area Networking) solution is a digital transformation of your network connectivity providing for enhanced security, optimized performance, lower costs, and ease of management for users and IT staff. The implementation of an SD-WAN solution will enhance application performance, user performance, reduce network expenses, unify network connectivity, and enable orchestration of application delivery across your network while increasing network security.

The AmZetta zWAN solution provides organizations with a comprehensive SD-WAN fabric complete with centralized management and enterprise security measures with the flexibility to extend into any environment, whether it be another physical location (home office, branch office, or datacenter) or multiple cloud vendors, on the fly with ease. The software can be run on a multitude of hardware, virtual appliances, and cloud directors to meet any organizational requirement. At the heart of AmZetta’s zWAN solution lies the Director. The Director is the centralized management interface where control over the underlying networks, devices, sessions, edge controllers and data analytics are managed. The director can be installed on physical or virtual servers and resides either in the datacenter or in the cloud.

Take a detailed look into the features that AmZetta provides within the zWAN solution below.

zWAN Dashboards & Reports
At the heart of any reasonably sized network, should be a solid strategy around flow collection, querying and visualization. Proper use of flow logs is crucial to SecOps/NetOps from triaging attacks to capacity planning and traffic trending.

zWAN dashboards and reports provide a complete view of the network flows and threats. zWAN displays the flow and log statistics information at two levels, Director level and Edge Controller level.

Top Features of zWAN Director

Top-N

Whose function is to show the most active services, applications, and accesses on the network. The dashboard consists of 4 additional dashboard, Top Applications, Top Talkers, Top Services and Top Conversations.

Threats

This dashboard includes a dictionary of public IP addresses that are known to have a poor reputation. This dictionary is built from many OSINT data sources, normalized to a common taxonomy. The Threats dashboard uses this IP reputation information to highlight three threat/risk types…

Geo IP

Geo Location dashboards for Client/Server and Source/Destination perspectives for network flows.

Traffic Details

Provides more detailed breakdown of various network traffic characteristics. Additionally, it has Servers, Clients, services, and application-based traffic details.

Flow Records

Provides a peek into the total flows and various types of flows with a list of service logs. This will be client/server based or source/destination-based logs.

Statistics

Provides network statistics in the form of transmitted/received data, transmitted/received packets, transmitted/received errors for each of the interface in the network. Additionally, events and syslog logs are also listed…

Site Availability

SLA – Overall Availability provides SLA percentage uptime for all the edge controllers onboarded with the Director. Edge controller SLA provides uptime duration across a selected time interval.

Edge Controller Level Charts

In addition to the charts mentioned above there are few more dashboards which are available for edge controller only.

Overview, Systems, Interfaces

In addition to the CPU and memory utilization statistics for each edge controller this dashboard also displays link status of the network interfaces transmitted/received bytes and signal quality if GSM/LTE is present…

Flows

Client/server flows which displays network statistics in bytes for each flow between client and server. AS Flow which displays the autonomous system flows between the source and the destination.

AS Traffic

Provides a view of traffic to and from Autonomous Systems (public IP ranges).

Flow Exporters

Provides egress and ingress data in bytes for each interface in the edge controller.

Traffic Details

Provides more detailed breakdown of various network traffic characteristics based on the Traffic Types, Attributes and Locality.

Global Applications

Provides application-based statistics like top applications and usage in bits per second and packets per second.

Link Status

Provides the up time and status for each network interface in the edge controller.

Signal Quality

If the edge controller is equipped with a GSM/LTE module then the RSSI (Received Signal Strength Indicator), SNR (Signal to noise ratio), RSRQ (quality of the received signal) and RSRP (average power received from a single Reference signal) statistics will be provided in this dashboard.

TWAMP

The Two-Way Active Measurement Protocol (TWAMP) is an open protocol for measuring network performance between any two devices in a network that supports the protocols in the TWAMP framework. This dashboard displays the inbound, outbound and roundtrip data based on latency, jitter and packet loss.

Logs

System logs, Firewall logs – a list of system logs and firewall logs are provided in this dashboard.

IPS Alerts

Alerts by GeoIP – a map showing the distribution of alerts by their country/region of origin based on geographic location (determined by IP).

IPS Flow

Provides count of flows for various protocols used by the application. It also displays unique count of source and destination IP addresses, mean flow age and a list of flow events.

DNS Alerts

Displays various statistics for dns alerts generated via “Unbound DNS Resolver” in the edge controller. Stats like overall log count, log count based on return code and event list is provided.

Introduction to SD-WAN

SD-WAN Director Deployment Options

Managed SD-WAN

AmZetta partners with Managed Service Providers (MSPs) for Customers that prefer to hand off the implementation, configuration and management of the SD-WAN network. AmZetta Partners can quickly and securely implement the SD-WAN solution using a team of highly skilled engineers. Managed Services avoids upfront investments and allows the network to be fully managed by a team of experts.

On-Prem SD-WAN

Customers running applications and services on-premise or in local data centers prefer to host the SD-WAN solution within their infrastructure. AmZetta provides an On-Prem SD-WAN solution that allows 100% total control and management to be performed by the in-house IT staff. AmZetta Solutions Engineering will remotely assist Customers in setup, configuration and management of the On-Prem SD-WAN.

Co-Managed SD-WAN

Not everyone is comfortable managing their SD-WAN network. AmZetta offers a Co-Managed SD-WAN solution where you retain 100% control over the SD-WAN while it is hosted within the AmZetta Cloud. AmZetta will configure and train your IT team on the SD-WAN Director to handle the day-to-day network operations. AmZetta will provide backend support and maintenance of the SD-WAN network.

Top