We are currently looking at migrating our edge devices and site-to-site to Aryaka. We don’t intend to use their Layer 2 service yet (but interested in comments on it if you have any), we will only use the regular IPsec internet VPN between our 10 sites. We are also looking at Last mile management.
Does anyone have experience with them? What do you think of the product and the managed SD-WAN service?
TIA!
JP
Not recommended in most cases. Aryaka was one of the first NaaS options but it lacks functionality compared with some of the newer entrants, and the need for NaaS is often questionable in the first place.
How geographically distributed are your 10 sites? If your sites are in the same region, and your focus is on providing a network between them, then you don’t really need a NaaS - you can use any of the major SD-WAN vendors and automate the tunnel creation, along with some other benefits that depend on the product you use, like real link aggregation and link quality mitigation.
If your sites are more distributed then a NaaS may be relevant if you’re running performance-sensitive internal apps that could benefit from reduced jitter or latency.
If security is a factor, then look at some of the products that have this built in - whether that’s coming from a SASE solution built on top of SD-WAN or a packaged solution like Cato. There are very few use cases where Aryaka will deliver a better outcome than Cato.
Cato isn’t much different in that regard. The advantage of Aryaka is that it can do edge security natively now so you’re not forced into sending all traffic to a gateway. Plus there’s the whole thing of being able to run a VNF of Palo or Checkpoint if you don’t want to ditch existing investments.
Agree that unless you have some geo diversity, any solution that leverages a middle mile network is not necessary. But, having the bookended traffic treatment is nice even if it’s a regional network.
Middle mile aside, Cato is probably more mature with their SSE as Aryaka’s solution is fairly new and was an acquisition.