Cisco Catalyst SD-WAN Reviews

When considering the most valuable features of Cisco SD-WAN, the decoupling of self-monitoring stands out significantly. This feature enhances operational efficiency by centralizing control plans and policy management, making applying SD-WAN features across numerous devices easier. The central policy enforcement feature is also highly beneficial, particularly regarding network security. With this feature, security policies can be defined centrally, streamlining security management across the network. Another valuable aspect is the improved link utilization, which previously took a lot of work to implement. It enables granular control over link management, quality of service, and application prioritization, enhancing overall network performance. Furthermore, integrating APIs facilitates automation and simplifies routing, a previously unattainable capability.

Cisco should develop a clear roadmap, ensuring seamless integration between Meraki and Viptela. Simplifying the definition and implementation could add significant value, as it can be complex due to multiple product integrations and customization requirements.

We have been using Cisco SD-WAN for two to three years.

I rate the platform's stability an eight out of ten.

It is a scalable platform. We work mostly with enterprise companies such as banking institutes. I rate the scalability an eight and a half out of ten.

Cisco's technical support services are always good. They are always present whenever we need their assistance in resolving issues.

Positive

The initial setup is more complex than other vendors but relatively easy. I'd rate the process around seven out of ten. Regarding deployment, it's mostly on-premises. Once the initial configuration is set up, deployment takes little time. Once policies are configured, onboarding is efficient. Even for hundreds of branches, deployment can be done in weeks.

The product is not too expensive. It is competitive considering security features. The licensing cost is typically based on bandwidth subscription. For example, you must purchase a corresponding subscription if you have a bandwidth range of one to five Mbps. While this may seem insignificant for smaller bandwidth needs, it can add up for organizations with multiple links. It's worth noting that some other vendors, like Huawei and Fortinet, don't charge for bandwidth subscriptions in their SD-WAN solutions.

SD-WAN has significantly improved our customers' network management. It brings a lot of efficiency, particularly through automation. Instead of manually configuring each device, we can utilize a centralized management platform to push configurations and manage devices. It enhances operational efficiency and provides better visibility into network operations. Additionally, it facilitates the deployment of advanced features, such as gigabit capabilities, which might otherwise be challenging to implement.

The scalability and flexibility of Cisco SD-WAN have brought significant benefits to our clients. From a business perspective, it has led to better management and improved quality of service for applications. Optimizing application performance and enabling multiple applications hosting on servers with enhanced quality has played a crucial role in enhancing service levels.

The traffic management capabilities play a crucial role in optimizing SD-WAN performance. With different types of circuits like MPLS, Internet, 4G, and 5G, organizations prioritize critical applications for reliable service. It optimizes application traffic across the most suitable circuits. It offers traffic optimization and error correction to enhance throughput and ensure efficient traffic flow even in link quality issues.

The integration into infrastructure has impacted IT overhead and costs. While there is an additional pricing model for the subscriptions, its efficiency must also be considered as it adds significant value. It is not a hardware-agnostic platform requiring integration with Cisco hardware. However, since many of our customers already use Cisco products, the migration from non-SD-WAN to SD-WAN was relatively seamless, with minimal problems.

Depending on their needs, if routing capabilities are prioritized, Cisco and Huawei offer extensive routing features, making them strong contenders among SD-WAN vendors. However, if security is a top concern, Palo Alto or Fortinet are worth considering. Cisco's solution is particularly robust in routing, boasting a significant market share.

I rate it an eight out of ten.

When you want to access cloud applications, or you want to have secure connectivity at a branch or hub location, it is quite useful. If you want to have a local breakout that is also possible. If you want to do a load balancing or even you can optimize the ISP to cost as well, you can do that. These are the benefits. We can even integrate security as well. This is an all-in-one box solution.

The product is very good. The information is accessible, and the integration is also easy.

It is stable.

The solution scales well.

It has a very good GUI.

The interface is straightforward. 

We find it very simple to deploy.

If a user needs documentation, it's readily available. 

I cannot speak to what areas need improvement. 

It's an expensive solution.

I've used the solution for one year. 

I find the solution to be stable and reliable. There are no bugs or glitches. It doesn't crash or freeze.

The solution is scalable. You can expand it as necessary.

It's a great option for enterprise-level organizations. 

We have multiple companies using the solution. They range from 500 to 1000 or so.

The response is pretty good. The solution they offer depends on a case-to-case basis, however, their turnaround time is pretty good.

The implementation process is pretty straightforward. 

The administration of the solution might need two or three people and they can work 24/7 to maintain it. Everything is remote. It's very easy to maintain. 

The pricing is quite high. There are other vendors that provide relatively low prices as compared to Cisco.

The cost depends on the number of devices and the application the customer is using. It is not a fixed price. It depends on the bundle. It varies on what application you wanted to use. 

There are other options available. Each OEM has its pros and cons. What is acceptable depends on the application use case. Cisco is positioned pretty well in the market as compared to its competitors.

I'm a consultant. We are Cisco resellers and partners.

For new users, a POC would be required so that they can understand whether it is fitting into their requirements or not. Implementation is not a big deal here. The deal is whether will serve its purpose or not.

I'd rate the solution eight out of ten.

The product's application delivery feature needs improvement. Its ability to provide efficient reliability during multiple WAN link failures could be improved. The second consideration revolves around the port reliability of the link. Moving to the third point, while Cisco's advanced solutions excel in high-compute environments typical of software-based companies, they may fall short in addressing the needs of organizations with high-compute and high-storage infrastructures, especially those preferring hybrid or on-premises setups. Silver Peak outperforms Cisco in this area due to its WAN optimization techniques. To bridge this gap and accelerate product adoption, they could integrate WAN optimization solutions into their SD-WAN portfolio through strategic decisions such as acquiring robust WAN optimization solutions like Riverbed Steelhead or integrating its legacy product, with modern SD-WAN capabilities.

We have been using Cisco SD-WAN for six years.

I rate the product's stability an eight out of ten.

I rate the platform's scalability a ten. Currently, over 5,000 users are working with SD-WAN. As for plans, while the exact numbers are uncertain, usage is expected to grow.

The technical support services are good.

Positive

The decision to opt for Cisco SD-WAN over other tools depends on various factors, such as the specific environment, customer requirements, and the solution's scalability. Ultimately, it emerged as the best fit for these customers and their budgets. While acknowledging that it can be costly, it's imperative that the customer can afford the solution, considering its functionality. For instance, it facilitates seamless application delivery by enabling the migration of applications to the cloud.

Regarding the initial setup experience of Cisco SD-WAN, I rate the process a ten out of ten. While I wouldn't describe it as easy, the setup process is highly professional and efficient. As for the deployment environment, Cisco SD-WAN can be used in any configuration, whether public, private, or hybrid cloud. However, it may be most suitable for companies with a private cloud infrastructure focused on web applications rather than high computing and storage environments. Deployment time depends on various factors, such as planning and available resources. If everything is well-planned and resources are readily available, onboarding a device can take less than an hour. However, for greenfield deployments without existing infrastructure components, deployment time can vary significantly based on the organization's planning and commitment, making it difficult to provide a specific estimate.

We have observed a return on investment (ROI) with Cisco SD-WAN. The timeframe to realize this ROI varies based on several factors, such as the number of locations being addressed and the core objectives of the deployment. External factors like SLAs with third-party vendors and internet service providers also play a significant role in determining the timeline. Therefore, it depends on the unique circumstances of each deployment.

The primary advantage we've observed is the simplification of deployment, leading to decreased IT costs and enhanced operational efficiency. It also optimizes various dependencies from an architectural perspective. In supporting our cloud migration and multi-cloud strategy, Cisco SD-WAN, particularly through Cisco Umbrella, has addressed the critical factor of sustaining user experience during application migration. By facilitating local Internet breakout in remote sites, users can access applications directly through Cisco Umbrella, ensuring a comprehensive security solution throughout the migration process. Additionally, the scalability and flexibility of Cisco SD-WAN have been highly beneficial for our organization. Compared to other solutions, such as VeloCloud, Forty SD-WAN, and SilverPeak SD-WAN, Cisco's integrated approach with Viptela has stood out, offering enhanced software-defined networking features and centralized orchestration. This scalability has allowed us to expand our network architecture globally while streamlining management efforts.

Furthermore, integrating Cisco SD-WAN into our existing infrastructure has significantly reduced costs. While I cannot disclose specific percentages, we have strategically reinvested these savings where needed, enabling us to migrate retail access links from MPLS to the Internet while maintaining security and investing strategically in core services. For those considering Cisco SD-WAN, I highly recommend it for its true flavor of software-defined networking in WAN infrastructure. With robust support from the Cisco team, channel partners, and readily available resources in the market, Cisco SD-WAN offers a reliable, advantageous solution for long-term network management and optimization.

I rate it an eight out of ten.

We replaced all our legacy routers with Cisco SD-WAN. The number one use case is more to do with network management, better policy integration, and keeping the policies consistent across all our locations. That was one of the major areas where we thought SD-WAN has reduced a lot of burdens so that the engineer can focus on actual issues. 

We were doing a lot of policy-based routing earlier for our hub and spoke topology. With SD-WAN, the hub and spoke, of course, stays. However, manageability, scalability, and ROI are the three major factors with which it has helped a lot. 

We could eliminate most of our expensive MPLS links, move them, do the local internet breakouts, and integrate with the NGFW firewalls. These were an added benefit to us. It was a tectonic shift. Right now, we are not spending as much on resources or engineers to keep the lights on.

The integration, scalability, and ROI that Cisco SD-WAN provided are the main features that helped the organization advance further.

The solution has helped us to lower expenses.

The initial setup is quite straightforward. 

It is very stable. 

We can scale the solution. 

SD-WAN itself is vendor locked in. At one point, Cisco should make it open so that if we have multiple mergers and acquisitions happening, it's easier to consolidate. Right now, if we are running Cisco, and the other organization in an acquisition scenario is deploying some other competitive vendor, the communication, the manageability of running two separate ESD instances, becomes a burden that falls back on us, especially the network administrators. It's better to consolidate and come up with better products, especially targeting AWS as their underlying transport.

Traditionally, what Cisco has done, is they have always considered internet gateways or links and the MPLS links as their transport technology. In some devices, they have also used ELTs. Now, since we have 5G in place, they could look at private 5G ELTs, and they could expand that line, again, particularly in the ESD space since AWS has recently released their own SD instance where they are allowing their customers to backhaul.

With SD-WAN being a very custom solution and a vendor-specific solution,  we would end up having multiple software-defined instances where one is running in Cisco, and one you are running with AWS, and then again tomorrow, another SaaS-based player or a similar player will come up with something else. 

For example, when two organizations merge with each other, there is likely a scenario where organization X is running (for example) Juniper, and the other organization is running Cisco. The administrators would end up having to separate ESD controllers. You do not have a single ESD controller that is open in nature, where you can manage Cisco and Juniper devices. That is a concern. So if the controllers were made open, with compatibility between the vendors, that would be a very good thing for the industry overall.

As a market leader, they are better positioned to go ahead and make that kind of change. If you look at the history of Cisco, before MPLS came into the game, it was Cisco, Juniper, and a few other vendors who came together and created a very good protocol. 

We need them to start focusing on the SD-WAN compatibility with other environments and not being so vendor locked with Cisco environments.

They should get better controllers that can especially talk with AWS and Azure. Right now, I have taken a subscription with AWS Project Gateway. I will have to place a Cisco CSR image if I want to make it a true SD-WAN solution. Instead of using a separate image, if they could make the Cisco's controller open or a transit gateway solution, that would be ideal. 

I've used the solution since 2018. We've used it for around four years. 

We found the solution to be quite stable and reliable. There are no bugs or glitches. It doesn't crash or freeze. 

We haven't seen major issues. 

The product is pretty scalable. 

In terms of Cisco SD-WAN, we have close to 200, and that's a pretty big number. We have about 12 engineers around the clock using the solution. 

For the SD-WAN portion, we are getting good support. We have no major concerns about the level of attention we get.

Positive

I did do a POC with VMware, and it was not great. We struggled with configurations. I've also done a POC with Aryaka and have used Fortinet and Palo Alto, as well as Viptela. 

The difference between Cisco and other options is that you get a good number of engineers. Second, the amount of time required to troubleshoot the protocol level is lower. I'm using the word protocol on the operating system that gets loaded and comes with the software. They don't even have a proper support line, and the support will not be aware of the production issues. The other competitors are three years away compared to where Cisco is today.

The solution is very straightforward and simple.

We did engage with Cisco during the initial POC and rollout. Later, with adequate materials and training materials, engineers, and resource availability, we never ran into challenges. 

When I speak with my other colleagues in other organizations where they did use Fortinet, they did use other products, they ended up spending a lot of labor hours and only figuring out that near the end after they struggle with configuration.

I'd rate the setup a four out of five in terms of ease of implementation.

From a maintenance perspective, it's not that frequent. Every quarter, the manufacturer releases its own patches and updates, which we are following through its life cycle. That's very normal. 

We handled the implementation ourselves. We did not need to worry about getting help from outside vendors. 

We have seen a positive ROI and a reduction in costs.

The price varies. They have different products, including routers, some of which are now being removed or deprecated. The new platforms with the CSR 8,000 series have competitive pricing, and the kind of features they're providing justifies the cost - especially when you look at the number of features and support that comes with it.

I'd rate the pricing at a four out of five in terms of its competitiveness.

We are a customer of Cisco.

I'd rate the solution seven out of ten. 

The first part that we like is that we can reuse certain hardware, which is a valuable asset. You can use hardware SKUs that already exist in the network.

The second part that we like is the integration with the cloud and the measurement of the cloud's quality. These are the two values that this solution gives as compared to other implementations that we have seen.

Its license model needs to be improved. They always make the license model too complex. There are too many license models and too many options. They should have a flexible license model.

They can improve a lot of things in terms of scalability, templates, and automation, mainly automation for onboarding a number of sites.

If you want some new features, it can take quite a long time. If you want a feature and it is not yet developed, you need to have the support of the business units to have the feature developed. If the feature is not on their roadmap, it can take quite some time before you get the feature.

I have been using this solution for about a year.

Its stability is fine if you stay within certain releases. From the stability point of view of the releases, it is fine.

We don't have deployments that have more than 500 sites. That's our biggest deployment from one customer. I cannot say anything for huge deployments because we do not have a lot of metrics.

Their technical support is good. They know what they are talking about, and you can see that they are experienced in their product.

It is easy to set up for small deployments. If you go for larger deployments, you hit some limitations in the GUI, and it could be more complex. This is because not all features that we assumed to be available are available in the GUI. For example, you know there are some features in the traditional MPLS router, but these features are not available when you run the same hardware on Cisco SD-WAN. 

In small deployments, you don't see such an issue. In larger deployments, such as data center setups, you see some limitations popping up. Some features that we had in traditional routing are not available in Cisco SD-WAN. Bootstrapping is okay, but you are limited to the serial number. A limitation is that you need to link the serial number and the bootstrap process, which depends on the model. If you are used to working with a serial number, it is fine, but if you are not, it can be more difficult.

The license model is too complex with too many flavors and options. You might not be able to see it from an end user's point of view, but from a telco point of view, their license model is too complex. They should have a flexible license model. If you want to have good pricing, you need to buy it for a two-year, four-year, or five-year license immediately. Some other vendors have much more flexible license models.

I would rate Cisco SD-WAN a seven out of ten. 

This technology, in my experience, has a better adoption in companies where the concern for security in platform issues and data privacy is high. The reason for this is the data is protected with encryption systems, and that functionality is audited to meet certain standards.

This is in the context of SaaS because that is where I want to take customers. My option is the cloud with pay-per-use and better cost conditions. Also, companies with large IT departments and a high number of engineers have many reasons to use it.

This solution has allowed us to implement much more flexible payment models than the current ones. As such, we can better plan the budget that is needed for technology.

In addition to this, it has prompted us to see the cloud differently. We now look with more confidence since the orchestration is SaaS, which is why we do not see a compelling reason to avoid introducing more services in this format. We plan to stop investing in physical or virtual infrastructure, reducing our dependencies on data centers where we host services.

When we talk about SDN technologies, we are referring to user experience or customer experience. The complete solution is designed based on the services and the experience that we need our users to have with them.

This product offers the ability to utilize all of the access available in the market. Importantly, it does not affect the quality of the application. The best feature of this technology that is available to us is the ability to do better load-balancing. This is thanks to the deep inspection of the packets and of course, the forwarding of packets based on the application.

I would like to see features related to security compliance, including a view of compliance with standards. With this, I should be able to do an audit of my SD-WAN network.

In addition to having a network with an application-oriented intention, I would like to have a network that is oriented to security standards. I am only referring to the WAN network because with this, we can begin thinking about issues of virtualization. For example, access to SD-LAN where we can bring security policies with the user.

I have been working with Cisco Viptele for three years and more with the first version, Cisco IWAN.

Releases and updates/upgrades for the software in each component are not simple to configure.

The scalability is great when you have a mature template for configurations.

The Cisco Technical Assistance Center (TAC) service should be quicker to provide answers.

Positive

Prior to this, we used Cisco IWAN.

The initial setup is a little complex, especially for those with little experience in SaaS.

We used the Solution Support Partner Program (SSPP) from Cisco.

The ROI for this product in my organization is 18%.

This is not a cheap option but if you move from Capex to Opex, I expect you should have lower costs. I am talking specifically about Managed Services License Agreement (MSLA) model.

Fortinet is a solution that is a good option that is low-cost and much simpler. Meraki is another good choice for some customers.

In summary, this product is very strong when you need complex topologies to match the complexity of your services.

Cisco SD-WAN is predominantly used for the zero-touch deployment, centralized dashboards, and live monitoring of tunnels and the links. It's also used for software image management. 

This solution is deployed on the cloud. 

One of the most valuable features is that they have multiple SD-WAN options: you have Meraki for simple management solutions, you have Viptela, and you have the option of having any type of WAN interfaces. Presently, you can also have a single combined solution for both WAN as well as for voice, so you can have a voice bundle as well. These are major unique points of this solution. 

This solution could be improved with a simpler implementation process and licensing model. 

As for additional features, maybe from a security perspective, it could have more features built into the SD-WAN itself. Rather than going and integrating Cisco with some other solutions, it could have one single SD-WAN solution with more advanced user security features. 

I have been working with this solution for 15-20 years. 

The stability and performance of Cisco SD-WAN are really good. It's a reliable solution. 

This solution is easy to scale. 

Cisco has multiple options: it has Meraki SD-WAN, which is a simplified version. It can be suitable for any retail or small- to medium-sized customers. For large customers, we have Viptela, which is for customers who need more control on their traffic. This solution is suitable for any type of customer. 

I have contacted technical support, but it wasn't specifically about SD-WAN. Cisco's tech support is wonderful—they have a good support team and they have a Customer Experience team as well, where they completely focus on the customer environment. There are dedicated resources available for large customers, and the Customer Experience team supports customers from the same cycle, as well as implementation, so in that way, it's really good. 

The implementation process is complex because there are multiple touchpoints and initial configurations that we need to do in order to get the setup up and running. For example, opening a lot of firewall ports. Overall, it has multiple components to manage—there are multiple controller components where we need to do the configurations to get it up and part of the architecture. 

Compared to a few other OEM solutions, it's a bit complicated because there are multiple controller elements. For example, vBond: I have to do some specific configuration to it and need to have a public IP for it to be part of the architecture. Then we have vManage and vSmart—three, four components are there which have to be managed, which is why we have to do specific configurations for those. All the control elements can talk to each other, which is why it's a bit time consuming. Even in the cloud, you have to make some changes to your existing setup so that it can be part of the SD-WAN architecture. 

We implement this solution for customers. We are a Global Gold partner of Cisco, so we consult, design, implement, and provide support to customers. 

We're an SSP as well, so we also offer maintenance services. We can provide standard maintenance services of supporting only the hardware, or if a customer asks for full managed services, we can deploy our engineers either on the customer side or remotely. We have a NOC facility, from which we can provide remote support. 

The pricing is fair, and it's on par with the market vendors. But based on the competition, Cisco could work on the pricing, go deep on discounts and provide more commercially viable solutions to customers. 

Some similar SD-WAN products from different vendors are Silver Peak, Steelhead Riverbed, Fortinet, VMware, and VeloCloud. Frankly, I've only been working with Cisco, but Silver Peak seems to be good too—I heard that they're doing well in the market. Otherwise, I know about these products and have seen how they work in webinars and trainings, but I haven't really worked on any products apart from Cisco. 

I rate Cisco SD-WAN a ten out of ten. 

To those considering implementation, my advice would be to understand your current infrastructure better. What exactly is being implemented, currently, and what use cases are you looking at? Having a thorough understanding of the existing infrastructure would really help to decide which option to go with: either the Meraki SD-WAN or Viptela. Have a thorough understanding of how your infrastructure currently is, connectivity, how the architecture is, which applications you use, and which use cases you're looking at. These things are helpful to know before choosing and implementing a Cisco solution. 

We primarily work with branches of small businesses and enterprise-level organizations.

The solution works well in big environments. It's excellent for large enterprises with a high number of users.

The deployment is quite simple and straightforward.

The solution is stable.

Technical support has always been quite helpful. We are very happy with their level of service.

It's possible to scale the solution.

We've looked into the existing documentation and found it to be okay. It varies, however, they do offer documentation for their products.

Overall, I really like the whole technology.

For the most part, we don't really see any features that are lacking.

The actual configuration could use some work. The solution could add in some more automation elements to help with the process.

The solution needs to be more flexible around legacy devices.

The security should be improved on the solution. They need to make everything more secure.

Scalability could be easier to achieve if a company needs to expand.

The product could improve its pricing. They are very expensive.

I've been using the solution for six years at this point. It's been a while. We've been working with the solution over the last 12 months as well.

The solution is very, very reliable. It's quite stable. There are no bugs or glitches. It doesn't crash or freeze. It's been good overall.

The scalability is okay. We largely deal with medium and large enterprises in Mexico. There are typically government or educational organizations.

We have been very, very happy with Cisco's technical support. They are extremely helpful and responsive. 

The implementation is pretty straightforward. Now it is easy as they've updated the process a bit. We can use icon managers, for example, and engineer basic modes of deployment.

The deployment process takes about three or four months. However, it depends on the number of sites or services. They vary and some types of data are very different.

The maintenance requirements vary. It depends on the project's maintenance. When the implementation is a government or education client our engineers and Cisco engineers work together. There are more business enterprise requirements. Typically you need two or three people, more or less, and it depends on the project.

The pricing is quite high. Cisco is not cheap.

We evaluated the Fortinet solution. We've chosen Cisco over Fortinet as we felt Cisco offered just a bit more in terms of options. It became our solution of choice.

We're a service provider and a Cisco Partner. We use Cisco technology in implementing the services.

I'm not sure or which version of the solution we are using. It's likely the latest, however, I'm not sure of the version number.

The solution is deployed both on-premises and on cloud and with Meraki and with Stellar.

I would recommend the solution.

I'd rate the solution nine out of ten.