Cisco Catalyst SD-WAN Reviews

We have numerous use cases where it can optimize cost savings, particularly in terms of connectivity. By avoiding the need to backhaul traffic through expensive central locations, organizations can achieve significant cost reductions, avoiding unnecessary capital expenditures.

The most valuable features, application awareness, and failover resilience, stand out as key considerations for users.

As the majority of our applications now reside in the cloud, there's a growing need for solutions that revolve around cloud-centric policies. Currently, the convergence between on-premise and cloud policies lacks centralization. The platform that seamlessly facilitates the translation of on-premise policies into cloud-compatible equivalents would enhance efficiency, ensuring that policies are consistent and stable, regardless of the hosting environment, allowing for smoother service delivery. An area for improvement lies in enhancing the integration with the security functions of the SD-WAN.

I have been working with it for a year now.

The stability of the system is quite robust. Initially, there might be some minor challenges, particularly in the first couple of months, regarding certificate issues.

The scalability is highly efficient. When operating on-premises, scaling up involves a comprehensive analysis of the architecture and the provisioning of service resources. The scalability is directly linked to the provisioning of these resources. In terms of licensing, there is a notable benefit as Cisco now offers free licensing.

The technical support experience has been consistently positive. If there are any delays, they are minimal, and the overall efficiency is commendable. Notably, the support structure allows for direct engagement with the assigned support personnel without the need for multiple escalations. Opening a case typically connects me directly with the responsible assistant, avoiding the frustration of having the case passed through various levels. I would rate it eight out of ten.

Positive

Having worked with both Fortinet and Cisco, a notable distinction lies in the user experience. Cisco offers a more sophisticated and customizable experience, particularly evident in meetings. However, Fortinet excels in simplicity, making it a preferred choice for those who prioritize ease of use. In terms of customization, Cisco stands out, providing a more granular approach, while Fortinet is considered more straightforward and suitable for users who prefer a less intricate setup. The choice between them depends on the specific needs and preferences, with Fortinet being a good option for a straightforward approach and Cisco offering more advanced customization possibilities.

The initial setup involves a learning curve that can be steep, especially for local professionals who have direct access to private campuses like OneTrack. However, once you become familiar with the process and navigate through the online procedures, you'll find that it becomes more straightforward and kicks off smoothly.

As a new contractor, the deployment process is expected to take around six months, approximately half of which will be dedicated to virtualization and fine-tuning.

While the initial deployment costs are undoubtedly high, the significant monthly savings are notable, particularly in terms of operational efficiency and online-centric functions. The achievement is at least a thirty percent reduction in overall costs.

The initial cost is quite significant, but the investment is worthwhile.

Overall, I would rate it eight out of ten.

We primarily use the solution for MPLS. We use it to have a connection to the telecom and we also have some radio networks that we use it for. We have two WAN ports - one is the MPLS one is the radio backbone.

The solution is excellent mainly for supporting our two WAN ports. We can dedicate which WAN is taking over and which one is available or not. It's great that we can also connect them to the internet. We can have a third line to connect to the internet providers for our internet solution. Everything is redundant and everything is working so far.

Overall, it's been working well for us.

The solution is great at aggregating the traffic and then sending it in one direction.

We have a good knowledge base in-house and good support in general and therefore we have continued to use it over the years.

The product can scale well.

The solution is very stable.

The solution basically does exactly what we need it to do. I can't recall finding a feature that was lacking for our purposes. We aren't actually using many of the features in general.

The solution could be a bit cheaper.

We've been using the solution for about three or four years at this point.

We've had absolutely no issues with the stability of the solution. It doesn't crash or freeze. There are no bugs or glitches. It's been quite good overall.

This is deployed in our headquarters. We have them around the country, and we have some large offices and have the solution at all of them. There are likely 1,000 or more users on the solution all over the country.

The same generation and the same product is the easiest to scale and we have them mostly on some of our sites. We have the needed redundancy. That said, I would question the scalability if you are dealing with multiple types or other versions or other products. It needs to be of the same generation to take advantage of the path of least resistance.

We never test it with other solutions, however, with Cisco and other vendors is there is not recommended.

We mainly use the solution directly and as-is. There is a lot of redundancy, so if something goes wrong, there's something to catch it. We don't really use too many features for SD-WAN. So far, we don't need anything added on, and we really don't need too much support from customer service.

We buy support, however, in the latest versions, we really haven't needed assistance. IN the past, we did have some issues and support was there to help us get replacements, for example. They make getting replacements easy.

They usually reply to us within 15 minutes or so, if we do reach out. I'd describe them as pretty responsive. 

The level of difficulty depends on the experience of the engineer. If they don't have as much experience, it may be difficult. However, those that know the product well don't find the setup process complex.

Mainly they're using a command-line interface for years and they don't ask for anything like a GUI, which would be on Windows or Linux civil server. Everybody enjoys command-line. We exchanged some other Cisco products and some other routers recently, which were working for 15 years and are still working. We just asked for new ones with new features, like more traffic, more throughput, et cetera. 

I don't recall any maintenance really being needed. It works 24/7 without much need for assistance.

We did have some outside help, although nothing was from Cisco directly. We have our contact support company, and also we have in-house knowledge. It's done together, using both teams.

It would always be nice if the solution was a bit cheaper, however, the value is good. The cost of ownership is worth it as the solution itself is quite good and lasts years.

As a bigger company, we'd prefer to have a brand and a solution that's reliable as opposed to trying to find the cheapest option and have sleepless nights, afraid it might fail.

To calculate what we buy and how much it costs us for all the services, it's still quite a lot of money.

You have to pay between 3000 and 10,000 euros, or something in that range. The core switches Nexus cost me between 10,000 and 20,000 euros. However, they work, and that's why we use them.

We are just a customer and end-user.

We have 1921 and 4331 router versions. 

Not only does Cisco have a reputation, but we also have a good experience for a number of years, - five, 10, 15, 20 even years of use. Some of them still working even after all of this time.

In general, I would rate the solution at a seven out of ten. If it were more affordable, I might rate it higher.

The product's application delivery feature needs improvement. Its ability to provide efficient reliability during multiple WAN link failures could be improved. The second consideration revolves around the port reliability of the link. Moving to the third point, while Cisco's advanced solutions excel in high-compute environments typical of software-based companies, they may fall short in addressing the needs of organizations with high-compute and high-storage infrastructures, especially those preferring hybrid or on-premises setups. Silver Peak outperforms Cisco in this area due to its WAN optimization techniques. To bridge this gap and accelerate product adoption, they could integrate WAN optimization solutions into their SD-WAN portfolio through strategic decisions such as acquiring robust WAN optimization solutions like Riverbed Steelhead or integrating its legacy product, with modern SD-WAN capabilities.

We have been using Cisco SD-WAN for six years.

I rate the product's stability an eight out of ten.

I rate the platform's scalability a ten. Currently, over 5,000 users are working with SD-WAN. As for plans, while the exact numbers are uncertain, usage is expected to grow.

The technical support services are good.

Positive

The decision to opt for Cisco SD-WAN over other tools depends on various factors, such as the specific environment, customer requirements, and the solution's scalability. Ultimately, it emerged as the best fit for these customers and their budgets. While acknowledging that it can be costly, it's imperative that the customer can afford the solution, considering its functionality. For instance, it facilitates seamless application delivery by enabling the migration of applications to the cloud.

Regarding the initial setup experience of Cisco SD-WAN, I rate the process a ten out of ten. While I wouldn't describe it as easy, the setup process is highly professional and efficient. As for the deployment environment, Cisco SD-WAN can be used in any configuration, whether public, private, or hybrid cloud. However, it may be most suitable for companies with a private cloud infrastructure focused on web applications rather than high computing and storage environments. Deployment time depends on various factors, such as planning and available resources. If everything is well-planned and resources are readily available, onboarding a device can take less than an hour. However, for greenfield deployments without existing infrastructure components, deployment time can vary significantly based on the organization's planning and commitment, making it difficult to provide a specific estimate.

We have observed a return on investment (ROI) with Cisco SD-WAN. The timeframe to realize this ROI varies based on several factors, such as the number of locations being addressed and the core objectives of the deployment. External factors like SLAs with third-party vendors and internet service providers also play a significant role in determining the timeline. Therefore, it depends on the unique circumstances of each deployment.

The primary advantage we've observed is the simplification of deployment, leading to decreased IT costs and enhanced operational efficiency. It also optimizes various dependencies from an architectural perspective. In supporting our cloud migration and multi-cloud strategy, Cisco SD-WAN, particularly through Cisco Umbrella, has addressed the critical factor of sustaining user experience during application migration. By facilitating local Internet breakout in remote sites, users can access applications directly through Cisco Umbrella, ensuring a comprehensive security solution throughout the migration process. Additionally, the scalability and flexibility of Cisco SD-WAN have been highly beneficial for our organization. Compared to other solutions, such as VeloCloud, Forty SD-WAN, and SilverPeak SD-WAN, Cisco's integrated approach with Viptela has stood out, offering enhanced software-defined networking features and centralized orchestration. This scalability has allowed us to expand our network architecture globally while streamlining management efforts.

Furthermore, integrating Cisco SD-WAN into our existing infrastructure has significantly reduced costs. While I cannot disclose specific percentages, we have strategically reinvested these savings where needed, enabling us to migrate retail access links from MPLS to the Internet while maintaining security and investing strategically in core services. For those considering Cisco SD-WAN, I highly recommend it for its true flavor of software-defined networking in WAN infrastructure. With robust support from the Cisco team, channel partners, and readily available resources in the market, Cisco SD-WAN offers a reliable, advantageous solution for long-term network management and optimization.

I rate it an eight out of ten.

When considering the most valuable features of Cisco SD-WAN, the decoupling of self-monitoring stands out significantly. This feature enhances operational efficiency by centralizing control plans and policy management, making applying SD-WAN features across numerous devices easier. The central policy enforcement feature is also highly beneficial, particularly regarding network security. With this feature, security policies can be defined centrally, streamlining security management across the network. Another valuable aspect is the improved link utilization, which previously took a lot of work to implement. It enables granular control over link management, quality of service, and application prioritization, enhancing overall network performance. Furthermore, integrating APIs facilitates automation and simplifies routing, a previously unattainable capability.

Cisco should develop a clear roadmap, ensuring seamless integration between Meraki and Viptela. Simplifying the definition and implementation could add significant value, as it can be complex due to multiple product integrations and customization requirements.

We have been using Cisco SD-WAN for two to three years.

I rate the platform's stability an eight out of ten.

It is a scalable platform. We work mostly with enterprise companies such as banking institutes. I rate the scalability an eight and a half out of ten.

Cisco's technical support services are always good. They are always present whenever we need their assistance in resolving issues.

Positive

The initial setup is more complex than other vendors but relatively easy. I'd rate the process around seven out of ten. Regarding deployment, it's mostly on-premises. Once the initial configuration is set up, deployment takes little time. Once policies are configured, onboarding is efficient. Even for hundreds of branches, deployment can be done in weeks.

The product is not too expensive. It is competitive considering security features. The licensing cost is typically based on bandwidth subscription. For example, you must purchase a corresponding subscription if you have a bandwidth range of one to five Mbps. While this may seem insignificant for smaller bandwidth needs, it can add up for organizations with multiple links. It's worth noting that some other vendors, like Huawei and Fortinet, don't charge for bandwidth subscriptions in their SD-WAN solutions.

SD-WAN has significantly improved our customers' network management. It brings a lot of efficiency, particularly through automation. Instead of manually configuring each device, we can utilize a centralized management platform to push configurations and manage devices. It enhances operational efficiency and provides better visibility into network operations. Additionally, it facilitates the deployment of advanced features, such as gigabit capabilities, which might otherwise be challenging to implement.

The scalability and flexibility of Cisco SD-WAN have brought significant benefits to our clients. From a business perspective, it has led to better management and improved quality of service for applications. Optimizing application performance and enabling multiple applications hosting on servers with enhanced quality has played a crucial role in enhancing service levels.

The traffic management capabilities play a crucial role in optimizing SD-WAN performance. With different types of circuits like MPLS, Internet, 4G, and 5G, organizations prioritize critical applications for reliable service. It optimizes application traffic across the most suitable circuits. It offers traffic optimization and error correction to enhance throughput and ensure efficient traffic flow even in link quality issues.

The integration into infrastructure has impacted IT overhead and costs. While there is an additional pricing model for the subscriptions, its efficiency must also be considered as it adds significant value. It is not a hardware-agnostic platform requiring integration with Cisco hardware. However, since many of our customers already use Cisco products, the migration from non-SD-WAN to SD-WAN was relatively seamless, with minimal problems.

Depending on their needs, if routing capabilities are prioritized, Cisco and Huawei offer extensive routing features, making them strong contenders among SD-WAN vendors. However, if security is a top concern, Palo Alto or Fortinet are worth considering. Cisco's solution is particularly robust in routing, boasting a significant market share.

I rate it an eight out of ten.

We use the solution to do a lot of proof of concept to evaluate the deployment, manageability of the solution, application availability, scalability, and cloud. These include secure cloud security integration with Umbrella and software-defined cloud interconnect (SD-WAN) use cases. We also evaluate end-to-end segmentation use cases.

In general, Cisco SD-WAN is a scalable tool that simplifies network management. It can be a great way to transform a legacy network into a more standardized one, which can help reduce operational issues.

Over time, a regular network with different point solutions can become very complex. There are different vendors for WAN, LAN, cloud security firewalls, etc. Each device may be configured separately, and each region may have its own IT team with its own way of working. All of it has created silos over the years. If you want to make a change or a rollout, It takes a lot of time to do a risk and impact assessment because there are hundreds of teams and hundreds of devices. Every device and no team or no region has a similar type of configuration. There is no useability. There are no template extensions. Every device is configured differently depending upon the liking of the individual who has done it on the first go. 

However, with Cisco's SD-WAN, when you manage it through a central dashboard, you use templates, etc. You build that standardized configuration or discipline, for that matter, and you maintain it.

You have a common policy repository, and standard template, and use one template to configure 50 devices or one. If you have 100 similar devices, we do the same thing, which is very easy. It'll be too extreme, but it'll be far easier to understand that if I work 100 branches, this is how the branch organization will look. If I have 50 medium-sized branches or a corporate office, this is how the configuration will look.

The solution gives an immense opportunity for standardizing the network configuration. It reduces mean repair time, mean deployment time, and uses and predictability in operation. This will also improve your first-time deployment because the network is more predictive. Since I've been in the industry for 20 years, every time you make some change, you are 90% expecting one or the other surprises, which you'll have to deal with during the maintenance window. 

Cisco enhances these aspects by providing an opportunity to make networks simpler. Simplicity is crucial for multiple family networks, and Cisco ensures improvement without unnecessary complexity.

The cloud environment, including cloud security integration, is very valuable because of the many API integrations with the SD-WAN. This includes monitoring tools, ThousandEyes, and the programmability aspect.

In the transition from Viptela to Cisco SD-WAN, there have been very huge revision cycles in the last three to four years. This does not happen for a stable product. Still, it is because Cisco has been migrating from one vendor and merging into their own operating system and making a lot of additional development beyond what is required. This has made it tough for enterprise-level integrators cannot find downtime to keep up with the upgrades. Cisco is working to stabilize the product, which will likely be much more stable in the coming years. So, I would like to see revision cycles to be more stable.

Another area of improvement is the licensing and pricing model. The Cisco SD-WAN licensing model needs to be simplified. There are currently three types of licenses: enterprise agreements, individual licenses, and DNA subscriptions. This can confuse customers, requiring a dedicated person to determine which type of license is right for their organization.

Although Cisco is working on many features, the general usability of the templating mechanism should be improved to make it easier to use and understand. The various GUI elements are different, as in Cisco Vault. If I migrate from a CLI to a GUI model for managing devices, the GUI is still more like Viptela. The GUI should be more aligned with the Cisco CLI regarding terms and concepts. The tools need to be more intuitive to use.

I have been using Cisco SD-WAN for five years or more. We initially started with V19.2 and are currently using V20.9.

I rate the stability an eight out of ten. So, it's very stable.

I rate the solution’s scalability an eight out of ten. It's fairly scalable unless you have the regional fabric aspect of a large network. So it's fairly scalable. 

Most of our clients use this solution. We are engaged with about nine out of ten clients; we are involved in that. They fall between medium and enterprise businesses.

It's an evolving technology with lots of changes happening and releases. So, it's the shared load of support requests that's causing the issues. But otherwise, Cisco Tech is very helpful. 

However, they might be offloading tech support a little too much, which sometimes results in situations where we do not receive the expected level of technical support and the right quality of technical support due to the outsourced model. They were already outsourcing, but now, with additional vendors outsourcing, it's causing some confusion.

Neutral

I would rate my experience with the initial setup a seven out of ten, with one being difficult and ten being easy to set up because there are two situations.

If it is deployed on-prem, the setup is a little complicated. It was not tough for me, but for a new company, it would be tough.

The setup is easy if cloud deployment is for small, medium, and a few large companies. Setup becomes a little complicated if you have an on-prem deployment and other use cases, especially for banking, financial, and government.

So, for all large specifics where you need a lot of security for banking and finance, we would go with on-prem deployment. But for others, we always suggest cloud deployment. So, with the controllers. So, that is the AWS, but that completely manages the Cisco. Therefore, we cannot state that it could be directed to Azure data because Cisco manages that. 

However, in other cases, when there's no specific cloud provider, we exclusively opt for clients. It entirely depends on what the client's workload is. Cisco is extending its reach to AWS, Azure, and Google, and perhaps in the future, there might be additional options. The major advantage is that Cisco can provide connectivity effectively. So, it doesn't really matter. We don't lean towards one over the other.

The deployment time for a proof of concept is typically 40-60 hours, but a full-scale deployment will vary depending on the size of the organization's network.

About 80% of the time is dedicated to data gathering and planning for any deployment. This step involves understanding the existing network vs. old transformation to understand the data-gathering process. 

Then, you create a high-level design for SD-WAN and discuss and explore different options, such as technology choices (fully managed, partially managed, peered approach), depending on the company's network profile, workload, and global or local footprint. These factors help to achieve a well-defined design. 

Once the design is approved, the next step is understanding the existing services and their hosting locations, whether on-premises, different sites, or cloud. A deployment plan is formulated to minimize downtime following a pilot phase to assess stability, a comprehensive deployment is executed.

The pricing is neutral. However, there is room for improvement in the licensing model. 

Take the opportunity to simplify your network while migrating. Since it is a new technology, and you do not simplify your network, you will end up in more complex situations than you were in the first place.

Overall, I rate the solution an eight out of ten.

Cisco SD-WAN is primarily used in the banking industry in Pakistan for bandwidth development and application control.

Cisco SD-WAN's best features are the development of network links, application control, and bandwidth monitoring.

Cisco SD-WAN's clustering mechanism needs to be improved. If there are more than five milliseconds of latency time between installations of the VM manager, the cluster automatically breaks down.

I've been using Cisco SD-WAN for a year.

Cisco SD-WAN is stable.

Cisco SD-WAN is very easy to scale.

Cisco's technical support is very good, and they're one of the few companies that provide local support. If we face any problem, they respond to and resolve it within three to four hours at most.

Positive

I previously used Forcepoint, but they have no local support, which means we had to wait much longer to get resolutions to our issues. Cisco's knowledge base was also better.

The initial setup wasn't easy, and I would rate the setup experience as two out of five.

In the first phase, our partner implemented the solution, but afterward, we managed it by ourselves.

For 600 links, the license for Cisco SD-WAN costs us US$250k a year. In Pakistan, we have the option to get this solution at a more discounted price.

I would give Cisco SD-WAN a rating of seven out of ten.

The load sharing in the fabric and the cloud connectivity are both pretty flexible. The solution offers us the correct field mechanisms.

The solution is stable and reliable.

It can scale according to our needs. 

While the environment itself is not a bottleneck, the dependencies and the provisioning and the different parties involved altogether form, complexity and introduce limitations.

The initial setup is really complex.

We've been using the solution for two years. 

The stability is really great. It's definitely reduced downtime. There are no bugs or glitches. It doesn't crash or freeze. 

For us, the solution scales well. We are far away from its limits. That said, we are not, let's say, a very big company.

Technical support has been good. They are helpful and responsive. 

We did not previously use a different solution. We had a fairly traditional wide area network without any sophisticated connection options.

The initial setup is not straightforward or simple. It's very complex. 

I'm not sure how many staff members are needed for deployment and maintenance. 

We did outsource the initial setup.

I'm on the technical side. I have no idea what the price is and don't deal directly with licensing. I do know that this is an all-in deal, meaning there aren't extra fees associated with the cost. 

We're basically an end-user interacting with Cisco on this, however, the final responsibility is with our ISP.

SD is an enterprise tool and you should not use an ISP for implementation. Better to use an NSP or do it yourself. 

I'd rate the solution nine out of ten.

We primarily work with branches of small businesses and enterprise-level organizations.

The solution works well in big environments. It's excellent for large enterprises with a high number of users.

The deployment is quite simple and straightforward.

The solution is stable.

Technical support has always been quite helpful. We are very happy with their level of service.

It's possible to scale the solution.

We've looked into the existing documentation and found it to be okay. It varies, however, they do offer documentation for their products.

Overall, I really like the whole technology.

For the most part, we don't really see any features that are lacking.

The actual configuration could use some work. The solution could add in some more automation elements to help with the process.

The solution needs to be more flexible around legacy devices.

The security should be improved on the solution. They need to make everything more secure.

Scalability could be easier to achieve if a company needs to expand.

The product could improve its pricing. They are very expensive.

I've been using the solution for six years at this point. It's been a while. We've been working with the solution over the last 12 months as well.

The solution is very, very reliable. It's quite stable. There are no bugs or glitches. It doesn't crash or freeze. It's been good overall.

The scalability is okay. We largely deal with medium and large enterprises in Mexico. There are typically government or educational organizations.

We have been very, very happy with Cisco's technical support. They are extremely helpful and responsive. 

The implementation is pretty straightforward. Now it is easy as they've updated the process a bit. We can use icon managers, for example, and engineer basic modes of deployment.

The deployment process takes about three or four months. However, it depends on the number of sites or services. They vary and some types of data are very different.

The maintenance requirements vary. It depends on the project's maintenance. When the implementation is a government or education client our engineers and Cisco engineers work together. There are more business enterprise requirements. Typically you need two or three people, more or less, and it depends on the project.

The pricing is quite high. Cisco is not cheap.

We evaluated the Fortinet solution. We've chosen Cisco over Fortinet as we felt Cisco offered just a bit more in terms of options. It became our solution of choice.

We're a service provider and a Cisco Partner. We use Cisco technology in implementing the services.

I'm not sure or which version of the solution we are using. It's likely the latest, however, I'm not sure of the version number.

The solution is deployed both on-premises and on cloud and with Meraki and with Stellar.

I would recommend the solution.

I'd rate the solution nine out of ten.