Quality of Service (QoS) is a fundamental requirement in enterprise networks, especially when different types of traffic—such as voice, video, and bulk data—share the same WAN links. Cisco SD-WAN provides a structured QoS model that allows traffic to be: In this post, I’ll explain how QoS works in Cisco SD-WAN, how it differs from traditional…

Application-based traffic steering using Centralized Data Policy Before introducing dynamic path selection with Application-Aware Routing (AAR), Cisco SD-WAN already provides the ability to control traffic behavior based on application type. This is known as Application Traffic Engineering, where traffic is classified using Deep Packet Inspection (DPI), and forwarding decisions are made based on predefined policies.…

In enterprise WAN environments, not every network segment should have unrestricted access to every other segment. However, many isolated segments still need access to a small set of shared services, such as DNS, Active Directory, RADIUS, monitoring systems, or internal application platforms. our Senario: your goal is: For a shared services VPN: We should make…

In modern enterprise WANs, not all traffic should go directly from a branch to the internet or to internal applications without inspection. Even in an SD-WAN architecture, organizations often need to enforce security perimeters by steering selected traffic through centralized security services such as firewalls, IDS/IPS, secure web gateways, or traffic inspection platforms. Cisco SD-WAN…

In this lab, I demonstrate how TLOC Extension works in Cisco SD-WAN using a simple branch topology. At Site3, I have two WAN Edge routers: By default, each WAN Edge can only use its own transport interface.However, in many real-world deployments, we want both routers to share available transports. TLOC Extension allows a WAN Edge…