Resource Guide
What SD-WAN is, when it makes sense, and how to evaluate it — without the vendor jargon. A practical reference for businesses deciding whether SD-WAN belongs in their network architecture.
SD-WAN stands for Software-Defined Wide Area Network. Strip the acronym and the concept is simpler: software that manages multiple internet connections intelligently — routing different types of traffic over the connection best suited to it, failing over automatically when a connection drops, and giving IT a single dashboard view of the whole network.
Before SD-WAN, businesses connecting multiple locations typically used MPLS — a carrier-managed private network that guaranteed quality but cost significantly more than internet circuits. SD-WAN allows businesses to get similar or better performance from lower-cost internet connections by managing them intelligently at the software layer.
SD-WAN is not a connectivity product — it is a management and optimization layer that sits on top of existing internet connections. You still need internet circuits at each location; SD-WAN determines how those circuits are used.
SD-WAN monitors the quality of each available connection — latency, packet loss, jitter — and routes traffic accordingly. A VoIP call gets routed over the connection with the lowest latency; a large file transfer gets routed over the connection with the most spare capacity. This happens dynamically, without manual configuration changes.
When one connection fails or degrades below a performance threshold, SD-WAN automatically moves traffic to the remaining connections. For VoIP and other real-time applications, failover can happen mid-call without the call dropping. This capability turns a backup connection from something that requires manual activation to something that activates invisibly.
SD-WAN provides a single view of the entire network — every location, every connection, all traffic. Policy changes — security rules, application priorities, new location configurations — are made centrally and pushed to all locations simultaneously. Adding a new location to the network takes hours with SD-WAN; it can take days or weeks with traditional network approaches.
Modern SD-WAN platforms integrate security capabilities — next-generation firewall, secure web gateway, zero-trust access — into the network layer, rather than requiring separate appliances at each location. This is particularly valuable for multi-location businesses where deploying and managing security hardware at every site is impractical.
SD-WAN is not the right answer for every multi-location business. The strongest case for SD-WAN exists when several of these are true.
The management overhead of maintaining consistent network configuration across multiple sites — and the visibility to know what is happening across all of them — grows quickly with location count. SD-WAN's centralized management becomes more valuable as the site count increases.
If your locations only need internet access and do not need a private network between them, SD-WAN adds complexity without proportionate value. If locations share an ERP, a file server, or need to route calls between offices, the networking these use cases require is exactly what SD-WAN manages well.
Many businesses have MPLS contracts from an era when it was the only option for reliable multi-site networking. Current SD-WAN over broadband internet typically delivers comparable application performance at meaningfully lower cost. If your MPLS contracts are coming up for renewal, this is the moment to evaluate the comparison seriously.
For multi-location businesses where deploying and managing a firewall at every site is impractical, cloud-managed SD-WAN with integrated security functions is a practical alternative — consistent policy across all locations without an appliance at each one.
SD-WAN adds cost, complexity, and a new management layer. For smaller or simpler networks, these trade-offs may not be worth it.
A business with 2–3 locations that do not share network resources between them — just internet access at each location — is typically better served by properly designed internet circuits with LTE backup at each site, without the SD-WAN management layer on top.
The test is simple: does the business need something that SD-WAN specifically enables — intelligent multi-path routing, centralized policy management across sites, automatic application-aware failover — or does it just need reliable internet at each location with a backup? If the answer is the latter, start there.
Most businesses use a managed SD-WAN service rather than buying hardware and running it in-house. Managed SD-WAN bundles the hardware, the platform subscription, monitoring, and support into a per-site monthly fee. In-house SD-WAN requires internal expertise to design, deploy, and manage — practical for larger IT teams but not for most mid-size businesses.
Which platforms does the provider support, and what are the differences? What does the management dashboard actually show, and who manages it — you or them? What are the SLAs for network uptime and support response? How are new locations added — how long does it take, and what is the cost? What happens to the hardware and contracts if you decide to switch providers?
Common questions
Get started
Tell us how many locations you have and what your current WAN architecture looks like. We will assess whether SD-WAN is the right fit and what it would cost.
For what we source and how the desk works, see our SD-WAN solution page.