Coming October 25: PeerSpot Awards will be announced! Learn more
it_user470457 - PeerSpot reviewer
User at Thoughtworks
  • 8
  • 6

Which is the right tool to perform domain/application/IP/protocol based routing across WAN links?

We are in need of an application/appliance based utility which has L7 intelligence and can do domain/application/IP/protocol based routing across WAN links.

Say I have two ISP links and I want URL's like Facebook, Google, Yahoo, YouTube and a few other applications to get routed over ISP1, and the rest of the internet traffic to get routed through ISP2.

It would be good if it has WAAS, traffic shaping and application based prioritization as well.

Please help me with your recommendations based on features, cost, ease of deployment. Thanks!

PeerSpot user
7 Answers
PeerSpot user
Head of Global Telecom Services at a logistics company with 1,001-5,000 employees
29 June 16

If it is really only about routing and dynamic WAN selection, I would go for Ipanema (owned by Infovista). By product is that it can do WAN Acceleration as well. Easy to deploy and provides very good Management Information on both Network and Application performance.

Yahya Kashani - PeerSpot reviewer
Business Analyst & IT Advisor at a consultancy
Real User
15 August 16

You can use the kind of Peplink load balancers (example, Balance-One with 2to5 WAN port, Dual band WiFi, 8to5 LAN port, etc) to care about all these sorts of routing and it's really user-friendly.

PeerSpot user
Snr. Cloud Consultant at Infinite Technology Consulting LLC
29 June 16

Using SD WAN, you can get all the benefits of a Riverbed, Silverpeak etc, without buying hardware. It has built in WAN Op, L7 visibility/ management, QoS and encryption. Hope this helps

it_user470457 - PeerSpot reviewer
User at Thoughtworks
Real User
29 June 16

Thanks a lot everyone for all your inputs.
I am afraid if we can buy such expensive solutions, any idea of firewall based solution like Palo Alto OR check point if it can do similar things like policy based routing (On the basis of domain name,application,protocol etc)

PeerSpot user
Senior Network Engineer at a mining and metals company with 5,001-10,000 employees
29 June 16

Removing my dupe entry. Sorry for the trouble.

it_user410316 - PeerSpot reviewer
Senior Network Engineer at a energy/utilities company with 5,001-10,000 employees
29 June 16

Riverbed Steelhead CX 70 series family of appliances is what I use for this exact purpose across 33 global remote sites and 2 data centers in the USA and Australia.
Spec Sheet attached.

I have my fleet of Steelheads designed to do everything mentioned below in the question from your colleague and more.

These are very easy to deploy. They are in-path of the data flows and fail to wire. (they will pass traffic unconditionally in the case of a fault or failure.)
Inbound and Outbound QoS bandwidth shaping is a huge advantage on the Steelhead where we can allocate bandwidth percentages per Applications, ports, IP addresses, or a combination of these traffic attributes.

They have very good Application Awareness built in. If your Application or data flow is NOT found in the pre-defined Applications listing that is installed in all Steelheads from the factory, you can create “Custom Applications” for recognition by port, IP address (or IP subnet), host pair, or combination of all 4 traffic criteria if you like.

The Application awareness described above is what you base your WAN routing decisions on with the RiOS feature known as “Path Selection”
This is where you choose your Applications or Groups of Applications, and tell the Steelhead which outbound link (in-path interface) to send this traffic to achieve the desired result.
In an environment where you want to offload internet traffic locally at the remote (branch) sites and keep company Intranet traffic separated, the design would look like the picture below.
The orange appliance is the Steelhead.
Cost is determined by the model chosen and the amount of optimized connections required for the locations where a Steelhead will be installed.
With Licensing and Gold Support, costs are typically around $100k for your Data Center appliance (model 5070) and $12k to $35k for the remote (branch) sites (models 570, 770 & 3070).

Find out what your peers are saying about Cato Networks, Citrix, Riverbed and others in WAN Optimization. Updated: September 2022.
632,539 professionals have used our research since 2012.
PeerSpot user
IT Security Manager at Orange Business Services
Real User
29 June 16

Bluecoat proxy solution will be suitable.

Related Questions
Kaushlendra Singh - PeerSpot reviewer
Manager - IT Infrastructure and Network at a tech services company with 1,001-5,000 employees
Aug 18, 2020
Blue Coat PacketShaper will be the end of life. Which products have the same features?
2 out of 4 answers
User at a tech services company with 1,001-5,000 employees
09 June 20
I suggest Silver Peak Systems.
Managing Consultant at a tech services company with 11-50 employees
09 June 20
A strategic shift to SD-WAN with distributed internet could alleviate the requirement.
Ariel Lindenfeld - PeerSpot reviewer
Director of Content at PeerSpot (formerly IT Central Station)
Mar 20, 2017
Let the community know what you think. Share your opinions now!
See 1 answer
PeerSpot user
Senior Network Sales Engineer at Citrix
20 March 17
Having a minimum amount of latency (30-40 ms RTT) and multiple protocols on the WAN makes a prime candidate for WANOP. Protocol Acceleration will only help if latency is involved and having multiple protocols/apps helps the WANOP build-in QoS work better.
Related Categories
Download Free Report
Download our free WAN Optimization Report and find out what your peers are saying about Cato Networks, Citrix, Riverbed, and more! Updated: September 2022.
632,539 professionals have used our research since 2012.