Given that SD WAN promises to make networks simple, people sometimes wonder whether they can move to SD WAN and then manage the network themselves.
Is that true?
In our article about DIY vs Managed SD WAN, we discussed some of the drivers that could influence a choice between DIY and Managed SD WAN. It highlights the fact that moving to SD WAN poses questions about who does the work to manage the overlay and the underlay, and who understands the complexity that still remains despite SD WAN.
Here are some questions that you could ask to help decide whether you want to do this work, or whether you would rather have a managed service do it for you.
We've seen in our article They said SD WAN was easy! DIY vs Managed SD WAN that moving a network to SD WAN does not make the network intrinsically more simple.
With a DIY SD WAN you would need to manage the devices and software, as well as the circuits, carriers and underlay performance.
Managing SD WAN requires real networking skills in your team, not just field engineers. It might be easy to roll out changes using SD WAN but you still need the CCIE in your team:
This question could have been expanded to "Do you want to manage the procurement and provision of circuits across multiple countries, multiple carriers and multiple technologies, in multiple currencies and languages?".
Do you want to manage the carriers?
If you're using a Managed Service today, then circuit procurement and provision is most likely being done for you. SD WAN could make this work more complex, because it will encourage
With this additional complexity, moving the management in-house might be non-trivial. If you sit next to one of our Provisioning Managers, you'll hear an endless series of calls to carriers to get wayward circuit deliveries back on track.
Related to this question is the choice of hardware vendor. If you use a managed service, then you can leave it to the service provider to deal with delivery and maintenance of hardware. If you decide to go DIY then this may have a bearing on your choice of SD WAN Vendor. You'll need to ask:
It's perfectly possible to manage procurement and provision yourself; you just need to have resource lined up to do it, accept the pain that comes with it, and develop a thick skin for when deployments go wrong.
When you roll out a new network, whether traditional or SD WAN, good project management can be the difference between success and painful failure.
A good WAN project manager will plan, lead, co-ordinate, schedule and document the deployment of your SD WAN network, often involving transition from the existing network. Project managers do a great deal, but it's their long experience of network deployments that makes the difference.
We can illustrate the project manager’s impact by looking at a few of these areas.
Let's start with scheduling. There are multiple activities that need to be scheduled and co-ordinated at every site, such as
After deployment considerable documentation must be pulled together so that knowledge is retained and the network can be operated reliably, such as:
To illustrate the scale of this information, our monitoring and management platform holds up to 150 pieces of meta data on each device. Remember, too, that your infrastructure will have multiple devices in the underlay, not just the SD WAN devices.
All this work requires the co-ordination of multiple roles such as carrier contacts, account teams, provision managers, engineers, warehousing etc.
What makes the project management function so critical is the insight it can bring to bear when it has considerable experience. Here are some examples of how that experience can help:
This is required when landlords or owners need to give permission to allow digging or building works (such as conduits) to be undertaken. A WAN project manager will often find themselves having to obtain permissions from landlords and dealing with solicitors. They'll also be dealing with carriers. An experienced WAN project manager will know from long experience both what to do and how to do it.
This is when additional work is identified following the initial order for a circuit. Carriers each have their own language and coding that they use to feed back that they need to do additional work (such as digging up a road). An experienced WAN project manager will understand the language of the carrier, and the implications and practical realities of dealing with these situations.
An experienced project manager will know exactly what to expect from a multi-circuit delivery at each site and will know that different circuits from different carriers will all have different delivery stages and published lead times. They will know from experience and documentation that they also have different real lead times. They can use this insight to order circuits at the right times to synchronise their delivery (and avoid multiple engineer visits).
Project management is a critical function that needs to be resourced, whether by you or a managed service. A managed service should result in you having an experienced project manager with the insight and skill to plan more realistically and slip less often than a beginner.
One of the speakers at a recent conference shared the experience of his company's SD WAN deployment. He asked if anyone believed they could post an SD WAN device to site and have the janitor plug it in. There were titters but no hands went up.
He was pointing out that WAN is a critical resource; that you still need a responsible engineer to turn up when you deploy SD WAN.
The engineer will have to co-ordinate the disconnection and connection of your circuits (which may be new and as yet untested), make sure they're plugged into the correct ports, handle any testing and remedial work, liaise with the network team, take photos to help with future fault resolution, document what’s done, leave the Comms room tidy and not break anything.
If you have a managed service today then this work is most likely being done for you, both for new circuits and for adds, moves and changes. If you move to a DIY model then you’ll need to resource it yourself. Here are some considerations:
How do you keep your WAN running well?
One thing you need is to have people on hand to triage and resolve issues, and to co-ordinate between resolver groups. You typically use a Helpdesk with a range of skill levels to handle alerts, calls and issue resolution.
Helpdesks are best run 24x7. Even if your business doesn't operate around the clock, faults can arise at any time and progressing straight away minimises disruption the following day. It also means that the clock is started on your carrier’s SLA straight away!
To run 24x7 requires a minimum of three people to handle 24-hour working, holiday and sick cover; probably more, to cope with both simple and complex issues. Someone will also need to deal with management, skills updates and succession planning. The cost for this should be part of the calculus for choosing between Managed and DIY.
It's all very well having snazzy SD WAN monitoring; it's what you DO with the monitoring that counts. Who's watching your network, and who's going to deal with issues that arise?
There might be situations where you need to run a more traditional network alongside SD WAN, so it is worth considering whether those situations could apply to you, along with your attitude towards managing them yourself.
One scenario might be that your chosen SD WAN vendor cannot support all of your sites. For example, your SD WAN vendor’s maximum device bandwidth might be insufficient for the data centre or HQ circuits you anticipate.
Another scenario might be that you have sites in countries that do not allow encryption, preventing you from running SD WAN in those locations.
It is helpful to consider whether you will need to run more traditional technology for parts of your network, and how you would prefer to manage the network for them.
It’s a lonely place to be when a network problem takes out your users, senior people are looking at you, and you’re scratching your head trying to fix it.
One of the attractions of a Managed Service is that it gives you expertise to rely on, and someone to take the pressure from you.
Does SD WAN reduce this pressure?
An Enterprise WAN manager recently made these points while summarising his SD WAN experience:
Cloud connectivity comes with some design choices and management implications that have a bearing on the choice between DIY and managed SD WAN. Examples include:
This raises the question whether you would prefer to make the design decisions and handle the work yourself or use a managed service.
Most businesses have limited IT resources and want to deploy them in the most effective way. A common line of reasoning is that the IT Team should concentrate on things that only they can do, and have the WAN managed by experts.
You might consider the WAN as a haulage or parcel delivery function; perhaps SD WAN as the smarter version that auto-routes around congestion. Amazon would probably build their own capability. The rest of us might prefer to ask a parcel company to manage their deliveries, so that we can focus on the product we build rather than how we’ll deliver it.
If you have a Managed WAN but question the value of a Managed SD WAN then it would help to identify all the reasons why you're using the service today and decide which would still apply with SD WAN.
What do you value in your current Managed WAN Service?
If you'd like to read further, read our blog post: They said SD WAN was easy! DIY vs Managed SD WAN. Alternatively, you could read our Guide for choosing between DIY and Managed SD WAN.