Thursday, October 10, 2019

Can Satellite Be Part of Your SD-WAN?

By: John Shepler

Software Defined Networks (SDN) or Software Defined Wide Area Networks (SD-WAN) are being implemented more and more to provide high quality business bandwidth at lower costs. In some cases, SD-WAN is the only way to get decent bandwidth levels in rural and remote areas. You might think of these software defined networks as a potpourri of different connection technologies, but it’s more than that. it’s an intelligent approach to making the most of every connection available, including satellite.

Consider satellite as part of your SD-WAN solutionWhy The Need For SD Networks
Say you want to connect to the Internet or to your cloud service provider. Traditionally, you’ve done that by ordering up a “last mile” connection from your business location to the Internet or a private point to point line between two locations, such as your office and your cloud provider.

That’s great as long as there are providers who can give you all the bandwidth you need and at a price that won’t choke your business. The problem is that you often overpay for premium bandwidth that goes unused or settle for what the budget can handle and regret the performance limitations every day.

In reality, different tasks have different connection requirements. Telephone lines for a call center or even ordinary office use don’t need tremendous amounts of bandwidth but are highly sensitive to latency, jitter and packet loss. Backing up files to a remote data center or storage in the cloud is fairly insensitive to the latency, jitter and packet loss characteristics but needs lots of bandwidth to get done in a reasonable time.

This is where SDN / SD-WAN work their magic. An intelligent processor acts as a traffic manager for each and every packet entering the network. Those voice packets get routed to a dedicated high performance but limited bandwidth circuit like like a T1 or ISDN PRI. File backups can go via cable broadband or as lower priority on the T1 or fiber optic line. Business applications in the cloud need reliability and quick response. They’ll go over a high performance connection.

How SD Networks Optimize Cost
The processing power within the SDN controller makes note of what each type of traffic needs. You’ve told it that. The processor is also constantly monitoring the status of each connection that you’ve provided it. It can truly be a potpourri of T1, DS3, cable broadband, 4G and 5G wireless, Point to Point Microwave, Ethernet over Copper, Ethernet over Fiber, SONET, MPLS networks, DSL, and two-way Satellite.

What’s key is that the controller knows at each instant how each connection is performing. Low cost connections aren’t always low performing. That DSL or cable link might be zooming along right now. The low cost usually comes from these being shared rather than dedicated connections. Other users, not in your company, can be hogging bandwidth and creating congestion to slow you down.

Satellite may well have excellent speed and low packet loss. The geosynchronous satellites now in service do have long latency times that can’t be avoided. That can be an issue with voice and video conversations, but makes little difference for file transfers or downloaded video.

Wireless connections in general have usage limits simply because wireless bandwidth is a scarce resource. SDN needs to be mindful of that in assigning the connections to avoid bandwidth slowdowns or additional charges.

The point is that you don’t need to buy the most expensive bandwidth solution in many cases. You won’t be able to load up that line 100% of the time with traffic that absolutely needs it. SDN / SD-WAN can ensure that your costly connections get used to the max but offload traffic that doesn’t need such high performance to a lower cost link. You also gain the advantage of automatic failover in case one of your links fails.

When Availability Is Most Important
There are many locations in rural America where you can stand outside and waive a fist full of money to buy connectivity and have no takers. This is where an SD network solution can really help. The newer high bandwidth satellites offer fast speeds and quality connections. You can include a dedicated SIP trunk based on a T1 line for your VoIP phone calls to get around the latency issue. it is likely that cellular broadband is also available in most areas. Combine these and you may well get all the bandwidth you need with the performance you also need without having to pay a fortune to bring in a fiber cable… if anyone will even do it.

Are you frustrated with either the cost of connectivity or its availability? This would be a good time to look into SDN / SD-WAN solutions that can give you the performance you need at a cost you can afford.

Click to check pricing and features or get support from a Telarus product specialist.



Follow Telexplainer on Twitter

Friday, September 20, 2019

Various Flavors of Business Internet Access

By: John Shepler

You might think that the Internet is the Internet, but how you connect to it makes a big difference in the performance you experience. What is your best bet? Is it Dedicated or Shared Internet Access?

Find Business Internet Connection Options now.What is Dedicated Internet Access?
There are actually two ways to connect to the Internet. One is Shared Internet Access, which is the basis of consumer and most wireless services. The other is Dedicated Internet Access or DIA.

Dedicated Access is similar to how you run your own in-house network. You have ownership and control of the bandwidth. No other company can come in and hog your bandwidth. If you allow vendors or customers to connect to the network, you control that access so you decide who can use what resources.

You don’t own the Internet. Nobody does. The core of the Internet is an extremely high bandwidth infrastructure provided and operated by Tier 1 telecom carriers. Smaller carriers and local Internet service providers pay to have their traffic carried through the core. What you want is performance closest to what is experienced in the core. That’s dedicated access.

How Does Dedicated Internet Access Work?
You contract with an incumbent or competitive telecom carrier for a line that connects through their network core to the core of the internet. All the traffic on that line is under your control. Once it enters a carrier’s network you depend on their expertise and abundance of resources to ensure that you’ll have adequate bandwidth without congestion, latency, jitter or packet loss.

Isn’t Shared Internet Access a Better Deal?
Shared Internet Access is a much lower cost option for one simple reason: It’s shared. Here’s how that works. An Internet Service Provider who sells directly to consumers and small businesses leases a Dedicated Internet Access line, usually a fairly high bandwidth fiber optic line. That provider then multiplexes or divides that bandwidth among many customers. The maximum bandwidth you can use is rate limited to the plan you purchase.

Of course, the actual bandwidth you experience depends on how many other customers are online at the same time and what they are doing. There can be lots of users browsing the Web and not slow each other down. If many users are downloading video or large files from their cloud providers, the total bandwidth will exceed the capacity of the provider’s line and each customer will only get a fair share of that line. Providers can’t provision enough capacity for worst-case traffic conditions and keep the price reasonable, so you can expect your bandwidth to vary.

So, you have a decision to make. If you don’t use cloud services or have a requirement for constant high performance to ensure employee productivity, you might well benefit from the cost savings of cable broadband, satellite, or cellular broadband.

When Even Higher Performance is Required
The Internet is the Internet and it was designed to be robust in maintaining connections and not focused on bandwidth, latency or security. Congestion can happen even in the core and performance can vary on a minute by minute basis. Even a dedicated access line can’t change the inherent nature of this public resource.

The way to improve long distance network performance is to stay off the Internet for everything that doesn’t need it. Have a direct connection to your cloud service provider for business processes and certainly for VoIP telephony or Unified Communications. Use private point to point lines to connect business sites outside your headquarters. A usually acceptable option is the MPLS network, which is a form of privately run Internet. There are multiple users on this network, but the net is run to ensure every customer has all the resources they need. MPLS networks do not connect to the general public, so you will still need the Internet to interact with most customers.

A newer technology that improves Internet performance is the SDN or Software Defined Network, also called a SD-WAN or Software Defined Wide Area Network. This is a system that integrates multiple Internet access lines and manages them to assign the highest performance paths to the most critical functions. You can plug-in a dedicated T1 or Ethernet line, a cable broadband line, a 4G or 5G wireless modem or a two-way satellite transceiver and let the SD-WAN box decide which packets go where. It gives you redundancy so that you almost always have Internet access and can cost less than a dedicated high speed line that might not be used to capacity all the time.

How do you need to connect to the Internet? Will Dedicated or Shared Internet Access work best? Find out what bandwidth options and pricing are available for your business locations.

Click to check pricing and features or get support from a Telarus product specialist.



Follow Telexplainer on Twitter

Wednesday, September 11, 2019

You Need a Black Cloud Software Defined Perimeter

By: John Shepler

Secure your network with black cloud SoftwareAre you a trusting person? Too bad. That’s going to get you hacked. Respect and privacy are admirable things, but they are not guaranteed by today’s Internet. In addition to all the incredible employees, partners, suppliers and customers that you hold in high regard, there is a dark underbelly of professional criminals, hobbyist & mercenary hackers, mischief makers, psychotics, and nation states with agendas all trolling the same network. Some are looking for victims of opportunity. Others have you in mind as a target. Can your firewall and VPN fend them off?

The Virtual Hopefully Private Network Connection
The VPN or Virtual Private Network was designed to make the Internet act more like a private line or MPLS (Multi-Protocol Label Switching) network. Even if you have a T1, DS3, OC3 or Ethernet private line at the office, you have a big security hole when an employee out on a sales or repair call stops by the coffee shop and connects back using the free Wi-Fi provided by the store.

Free really means free and open. That guy in the corner staring at his laptop is watching your traffic. He either hacked the shop’s WiFi or created his own look-alike “free” WiFi network that you connected to instead of the real one. This is called “man in the middle” and it is what VPN was designed to protect against. The VPN creates an encrypted connection called a “tunnel” from your employee’s computer to your office server. That makes it pretty hard for someone to get in the middle of the conversation unless they have the private key… and they don’t.

VPN Weaknesses
Not all VPNs have a rugged 256 bit military-grade encryption. Some use protocols that are relatively easy to crack with available hacker tools. PPTP (Peer to Peer tunneling Protocol) is over 20 years old and is desirable because it is fast and easy to setup and use. It’s also more vulnerable than protocols with stronger encryption.

Not all VPN vendors are equally capable. Weak ones may have back doors in their servers or other weaknesses that make it easy to hack the VPN server in the cloud and get everybody’s data. You won’t know until you are hacked and can’t figure out how.

An overall weakness of VPN is that it just protects the tunnel into your company. If that is compromised one way or the other, your entire network and everything on it is wide open to explore and perhaps attack. it would be better if only a small part of the company assets were exposed instead of everything all at once.

The Software Defined Perimeter Black Cloud
The idea behind a Software Defined Perimeter (SDP) is that trust is minimized by allowing access to resources user by user on a need to know basis. The research was done by the U.S. Department Information Systems Agency (DISA) and has come to be known as a “Black Cloud.” The black designation means that the network infrastructure is hidden within the cloud. There are no visible DNS or IP addresses.

SDP authenticates each user and only gives them access to the resources you have approved for that particular user so they can do their jobs. The user or IoT device has no idea what else is on the network. They can’t see it. If they can’t see it, they can’t get access. Someone impersonating that user can’t either.

A system of SDP Hosts and Controllers communicate and verify the authorizations. The Controller has the job of connecting the Initiating and Accepting Host data channels through a Gateway, once authentication and authorization has been completed through the control channels.

The SDP is not only between clients and the data center. It is also deployed within the data center to partition the network to isolate high-value applications. Only a limited number of users with have access to the highly protected application or even know it exists.

Encryption and cloaking are key to SDP security. The usual network probing, such as port scanning, won’t work because nothing will show up in the scan. In a way, SDP is creating virtual networks on a user by user, session by session, basis. What goes on behind the curtain is a complete mystery.

The End of Networks As We Know Them?
The TCP/IP network that has served us so well for decades has to go underground to keep its relevance in today’s high threat environment. We can no longer do business without the Internet and there are just too many bad actors on the public Internet. Technology must evolve to provide the illusion of a simple open Internet but with none of the familiar network topology visible.

Has your company network been hacked or are you concerned about the business disruption this might cause? Right now would be a good time to see what advances have been made in network security, especially managed security solutions in the cloud.

Click to check pricing and features or get support from a Telarus product specialist.



Follow Telexplainer on Twitter

Friday, August 23, 2019

T1, T3 and Ethernet Bandwidth

By: John Shepler

Are you considering new or additional bandwidth for your business office, retail store, or other commercial location? Professional grade options include high performance T1 lines, T3 (DS3) lines, and Ethernet options over copper and fiber optic cables.

Find T1, T3, DS3 and Ethernet bandwidth options now.T1 Lines
T1 Lines have been the mainstay of many, many businesses for decades. They still are, although for more special situations. The big advantage of T1 lines is that they are provisioned over standard twisted pair copper telephone wiring. If you can get landline phone service installed, it’s likely you can also get T1 service. That includes rural areas where there isn’t much else to pick from.

T1 lines are highly reliable, get fast service if something goes wrong, and are dedicated to your use only. The bandwidth is symmetrical. That is, the upload and download speeds are identical. That’s important if you exchange large data files or back them up to the cloud.

T1 lines can be configured for dedicated Internet access or point to point connections. They support ISDN PRI telephone trunks for multi-line phone and PBX systems. Their one limitation is the bandwidth, which is fixed at 1.5 Mbps. That’s rather slow in broadband terms, but perfectly useful for small business point of sale terminals, email and casual web browsing. Additional T1 lines can be bonded to increase the bandwidth to 3, 4.5, 6 or even 10 Mbps.

Ethernet over Copper Lines
Ethernet over Copper (EoC) is a modern technical upgrade to legacy T1. It uses the same copper telephone lines, but can support higher speeds. Bandwidths of 10 or 20 Mbps are common within metro areas. Some support is also available for rural businesses, but not as ubiquitous as T1 service. Additionally, EoC is generally less expensive per Mbps than traditional T1 lines. You can often get twice or more bandwidth for the same monthly lease cost.

T3 Lines
T3 lines are in the same technology family as T1 lines. The bandwidth is much higher, 45 Mbps vs 1.5 Mbps. T3 refers to the actual lines, which are coaxial, waveguide or microwave relay. These days T3 is delivered as a service on SONET fiber optic lines and referred to as DS3. Like T1, T3 or DS3 service is highly reliable, dedicated and symmetrical.

Ethernet over Fiber Lines
Ethernet over Fiber (EoF) is the modern technical upgrade to SONET fiber optic service. As such, EoF replaces T3 and DS3 with the same bandwidth at a better price. Unlike T3 and DS3, Ethernet over Fiber offers a wide range of bandwidth choices instead of the fixed 45 Mbps service. You can typically get EoF service from 10 Mbps on the low end up to 10 Gbps or even 100 Gbps. You also have the option of changing your mind at any time to upgrade or downgrade your service. Usually, no hardware changes are required. You are billed for the bandwidth level you order rather than a fixed 45 Mbps.

Until recently, fiber optic service was limited to major metropolitan areas and rather expensive. The entrance of competitive service providers and the high demand to supply cell towers to support 4G and 5G broadband has vastly increased the amount of fiber optic services available. Most offices, business parks and retail locations now have the option for competitive fiber bandwidth pricing. Some lines are even available to rural locations.

You have a wide range of possibilities for your business bandwidth that include T1, T3 (DS3) and Ethernet over Copper and Fiber. Check pricing and availability now.

Click to check pricing and features or get support from a Telarus product specialist.



Follow Telexplainer on Twitter

Tuesday, July 16, 2019

Fiber Optic Ethernet Transport Offers Huge Advantages

By: John Shepler

There are many ways to transport your data from one place to another. The new gold standard has become Fiber Optic Ethernet lines, also known as EoF or Ethernet over Fiber. You’ll have a hard time beating this solution on a cost/performance basis.

Check prices and availability of Fiber Optic Ethernet service now.What is Fiber Optic Ethernet Transport?
Ethernet wasn’t part of the equation when fiber optic lines started to be buried in the ground and strung of utility poles for the telecom industry. The original standard was SONET (Synchronous Optical NETworking). This standard was designed to be backwards compatible with existing DS1 and DS3 multiplexed telephone calls in order to carry them on fiber. Why fiber? There's much more bandwidth in a single pair of optic fibers compared with legacy copper twisted pair, microwave and coaxial copper line.

Ethernet was born in the computer industry for local area networking. Transmitting this data outside the wired building or campus required a protocol conversion so that T-carrier and SONET fiber could carry packets instead of digitized phone calls. Decades later the efficiency of carrying Ethernet directly instead of first converting to an older protocol was standardized. Two varieties emerged. Ethernet over Copper and Ethernet over Fiber. For shorter distances, wireless Ethernet over line of sight microwave, laser, and radio systems such as WiFi and WiMAX were also developed.

The Immense Advantage of Fiber Optic Ethernet
Carrier Ethernet has been adopted by competitive telecom providers as well as the legacy telco companies. The first advantage is that it is directly compatible with computer networks. It’s Ethernet, after all. There is no need to deal with the inefficiency of converting back and forth between some other protocol. Just plug in your network and go. If you order a service such as E-LAN, you can interconnect your LANs at multiple locations as if they were on one big network.

The second big advantage is that Ethernet is easily scalable. When you order traditional MAN (Metropolitan Area Network) or WAN (Wide Area Network) services, you get a line with a fixed speed. T1 is 1.5 Mbps, DS3 is 45 Mbps and OC3 is 155 Mbps. That speed determines how much data you can transmit per unit of time and it also determines the price you pay. What’s more, if you outgrow your line service, you have to upgrade to another line standard and get all new termination equipment. A higher speed service may or may not even be available for upgrade.

With Fiber Ethernet you really don’t have an upper limit. Each fiber strand can carry maybe 10 Gbps and could be wavelength multiplexed with dozens or even hundreds of 10 Gbps channels. Fibers are so small that cable bundles might have over a hundred fiber strands. It’s going to be pretty hard to run out of capacity.

The nice part is that you don’t have to pay for all of that capacity. You order a service level, say 100 Mbps or 1 Gbps, and that’s what you are charged for. If you find that you need more, you can get upgraded to a higher service level with a phone call or even with an online portal. You can get as much bandwidth as the port capacity that is installed at your location. That’s typically 1 Gbps minimum, with options for 10 Gbps or even 100 Gbps.

Best Advantage of All
Thanks to competition in the marketplace and the enormous inherent capacity of optic fibers, the price you pay per Mbps is lower than it has ever been, and usually far better than with older SONET technology. That price is for highly reliable circuits, often with service level guarantees. The bandwidth is both symmetrical, same upload and download speed, and dedicated for your use only.

Competing Bandwidth Options
If you only need bandwidths of 10 or 25 Mbps, Ethernet over Copper can give you similar advantages to Ethernet over Fiber. At lower speeds, 1.5 or 3 Mbps, a T1 line is still attractive.

The bargain basement bandwidth options include business cable broadband, wireless Internet service providers, Satellite broadband, telephone DSL lines, and cellular broadband. All of these were developed for the price sensitive consumer market and then offered to small businesses with needs that aren’t too demanding. Prices per Mbps are very attractive. Most of this comes from the fact that bandwidth is shared among users and not dedicated to a single customer. Bandwidth is also non-symmetrical. Download speeds are typically 10x upload speeds.

Wireless services tend to have pretty restrictive usage limits and are not suitable for downloading big software updates or transferring large files. Satellite is available nearly everywhere, but has latency issues that make it difficult to use for telephone and other real-time services.

Note that these services are almost always Internet access only. Fiber Ethernet can be set up as dedicated Internet access or point to point private lines.

What bandwidth service is best for your business? You have many more options that you may realize and pricing that could be better than expected. Find out now, what Fiber Optic Ethernet services are available for your business locations.

Click to check pricing and features or get support from a Telarus product specialist.



Follow Telexplainer on Twitter