SD-WAN deployments in enterprise would consists of group of branch routers, which are software-defined branch (SD-Branch) routers. SD-Branch is a branch router that supports SD-WAN routing, security and other LAN access features that can be managed centrally. A thick branch is a high-end device that can incorporate all these features and provide required scale and performance for large enterprises. However, on a lean branch, not all security features can be switched on. These branch routers can integrate with third party Secure Internet Gateways (SIG) for securing the enterprise traffic. With the integration of SD-WAN and third-party SIG, all the traffic from the enterprise client's is forwarded to the SIG over the tunnel. The SD-WAN router at branch office is connected to the SIG over the WAN link and there would be bandwidth (i.e., throughput capacity) limitations for the traffic being routed over the tunnel (could be enforced by the service provider, tunnel limitations etc.,). Along with the services offered by the SIG to the SD-WAN customers, need a way to qualify customer requirements prior to onboarding, proactively monitor per-customer bandwidth consumption and provide SLA of the customer with low latency, dedicated throughput etc., Above requirements can be achieved by having QoS policies (min/max bandwidth allocation, rate limiting etc.,) for each service provided by the SIG. The techniques presented herein propose method to apply QoS policies for the services running on the SIG, so that SD-WAN deployments for the lean branch can have the same feature and functionality as that of thick branches without compromising on SLA.
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.
M M, Niranjan, "QOS POLICIES FOR SERVICES ON THE SECURE INTERNET GATEWAY IN THE SDWAN DEPLOYMENTS", Technical Disclosure Commons, (April 07, 2022)