Disclaimer: I realized after I finished writing this post, that while I was initially looking for more broad suggestions, I ended up asking some more direct questions and got a bit rambly.
I am curious as to the communities thoughts on SD WAN and webfiltering options at remote offices, and what those in the real world are doing. We are getting ready to start a POC of SD Wan and currently use ForcePoint for webfiltering at our datacenters and all web traffic is filtered. Likely we will be moving our web filtering over to the Palo Alto solution in the next year or so.
I like the idea that SDWan could sent internet traffic directly out a branch DIA circuit, however since there is a requirement for our all of our branch offices to be web filtered this seems to be an advantage of SDWan that we may not be able to leverage. Do most that have this requirement just go ahead and backhaul all traffic to the datacenters regardless? Is there a cost effective solution that lets you leverage avoiding this method and allow you to use the DIA directly?
I couldn't really find any effective solutions with Forcepoint. If we move our webfiltering through the Palo Alto's, I was considering the Global Protect cloud solution to provide security at the branch edge and allow traffic to go directly out the DIA circuit but still be filtered. Does anyone have experience with the PA solution?
No comments:
Post a Comment