WAN Edge Forum

Rony_Sklar
IT Central Station

What are some of the most common SD-WAN security vulnerabilities? How can I plan for these potential security issues? 

Lipaz HesselSD-WAN comes with firewall inside the device, the issue with that Firewalls is lack of features like SSL-VPN. It is recommended to recheck management access because this device is connected directly through Internet, and make sure it is always up to date. Remember this is the direct link from internet/branches with default security once installed, again make sure to configure it correctly
Paul FriendIt depends which SD-WAN vendor you are considering. Pure play SD-WAN generally lack enterprise grade security features and their architectures require a firewall - which means more complexity and cost. A number of firewall vendors have Secure SD-WAN appliances that incorporate NGFW and SDWAN functionality in one appliance. Pure play vendors are well known for overselling their security capabilities and leaving customers vulnerable. A risk with SD-WAN devices is that you move away from hub and spoke networking to meshed, which means that there is a potential for the compromise of one device to give attackers visibility into the traffic flow from across the network. Its more efficient, manageable and cost effective to have a Secure SD-WAN device from a security vendor.
reviewer1392588The Citrix-SD wan comes wish a full firewall, that is very capable.  You just need to make sure that you harden the rules.  I would follow an approach of blocking everything, then open only what you need.   One point to note, there is a difference in applying a block or a drop rule.  A block still takes some processing, the drop just ignores these packets.  This makes a big difference when facing DDOS attacked.   Use drop rather than block, or DDOS will still take your services down.   NOTE.  This is a quick response, not a tech note. Check all changes carefully before implementing.