2. 2
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Scope/Definition of Link Load Balancers
Manage multiple WAN Links
Backup link connectivity
Add cost-effective bandwidth
Reduce latency and ensure
critical application availability
Edge appliance deployed
between WAN and LAN
Key Features
» Link health checking
» Policy-based traffic routing
» Auto link failover and recovery
» Link aggregation (tunnel routing)
» Multihoming for inbound traffic
Can’t a Firewall or ADC do this?
Yes, both have limited Link Load
Balancing
Firewalls typically are limited to the
number of WAN ports and are used for
link backups only
ADCs typically are limited by the number
of ports and don’t have advanced
features
ISP
MPLS
3. 3
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Drivers/Challenges
Reduce Risk of Link Outages
» Link health checking
» Link auto routing
» Seamless recovery
Bandwidth capacity
» Supplement leased/MPLS lines
» Add virtually any ISP technology
Prioritize Traffic
» Policy-based routing
» L4 Quality of Service (QoS)
Reduce bandwidth costs
» Implement lower-cost links
» Simplify WAN management
Who Needs it?
Virtually any organization that
needs more bandwidth
Specific needs in US/International
markets with intermittent or poor
connectivity
Multiple use cases
Remote connectivity (distributed
enterprises)
Hybrid WAN for single location or data
center
Redundancy for mission critical
applications
Who Needs it Most?
Hospitality and Retail
Financial services
Manufacturing
Healthcare
4. 4
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Emerging Requirements/Trends
Access to internet needed for core business services
» Growth of cloud-based services
» Backhaul to central data center expensive and introduces delays
Bandwidth needs growing across the board
» Remote offices and data centers
» Voice, video and web applications straining networks
Leased line costs remain high compared to other ISP
technologies
» T1 lines (1.5 Mbps up/down) average $500 per month
» DS3 (45 Mbps up/down) average $7,000 per month
» Cable (10/200 Mbps up/down) average $200 per month
» DSL (2-25 Mbps up/down) average $200 per month
Internet is generally getting more reliable, however
» Connectivity still remains a challenge in remote areas in U.S.
» International markets can vary widely in cost and reliability, even in urban
areas
5. 5
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
FortiWAN Overview
3 hardware models available
Throughputs from 60 Mbps to 3 Gbps
Models with up to 8 10GE SFP+ ports
Up to 50 WAN links supported
Industry leading support for up to 50 links
with proven reliability from legacy AscenLink
technology
Robust, reliable Link Load Balancing
WAN Link Health Detection
Optimum Route Detection
Automatic routing and link restoration
Policy-based Routing and QoS
Patented Tunnel Routing
DNS-based Multihoming
MPLS, Leased, Cable and DSL links
(DSL, PON, TDM)
Multiple Service Provider support
Active-Passive Failover (HA)
Advanced Link and Usage Reporting
Licensed-based throughput upgrades
6. 6
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
FortiWAN Benefits
Increase WAN bandwidth and avoid link outages Link Load Balancing
Distribute traffic to best performing links with WAN Link Health
Detection and Optimum Route Detection
Prioritize mission-critical traffic with Policy-based Routing and L4 QoS
Create high-capacity VPN/VPL links with Tunnel Routing between 2 or
more FortiWAN appliances
Inbound link load balancing and URL continuity with Multihoming
Reduce WAN costs by adding less expensive bandwidth from Cable
and DSL providers instead of leased lines or MPLS
Add capacity with up to 50 links for bandwidth-intensive environments
Upgrade your throughput as needed with Upgrade Licenses
7. 7
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Performance&Scalability
WAN < 500 Mbps 500 Mbps to 1 Gbps 1 – 3 Gbps
Links Up to 25 Up to 50 Up to 50
Ports GE GE/SFP GE/SFP/SFP+
FortiWAN Product Lineup
FWN-200B
FWN-1000B
FWN-3000B
8. 8
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
FortiWAN Product Matrix
200B 1000B 3000B
WAN Bandwidth* 60 to 200 Mbps 0.5 to 1.0 Gbps 1.0 to 3.0 Gbps
WAN Links** Up to 25 Up to 50 Up to 50
GE Ports 5 3 8
GE SFP Ports 0 4 8
10GE SFP+ Ports 0 0 8
Storage 500GB HDD 1TB HDD 1TB HDD
High Availability (HA Port) P P P
Power Supply Single Dual Dual
Form Factor 1U 1U 2U
Concurrent Connections 800K 2 million 7 million
Multihoming DNS Records 200 400 800
Base Throughput Included 60 Mbps 0.5 Gbps 1.0 Gbps
Upgrade Licenses 100 Mbps, 200 Mbps 1.0 Gbps 2 Gbps, 3 Gbps
* Bandwidth ranges based on model and licenses chosen.
** Requires external VLAN switch to implement maximum links supported.
9. 9
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Link Load Balancing
Problem
» Reduce risk of ISP outages
» Increased cost-effective bandwidth
Solution
» Add up to 50 links (based on model)
» Mixed service providers and
technologies
» Link health checking
» Traffic management
Benefits
» Multi-redundant last mile access
» Seamless soft-degrade and auto
recover
» Carrier-class reliability from Internet links
DSL
T1 DS3
10. 10
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Tunnel Routing
Problem
» Increased site-to-site bandwidth
» Increased VPN/backhaul capacity
Solution
» Single-session tunnel from up to 50 links
» Mixed service providers and
technologies
» Build VPLs/VPNs as large as needed
» Support for up to 100 tunnels
» FortiWAN required at each end point
Benefits
» End-to-end link redundancy
» Unbreakable VPN/VPL
» Carrier-class VPN from Internet links
Headquarters
Branch Office
11. 11
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Multihoming
Problem
» Increased bandwidth from internet
» Single URL, multiple IP addresses
» Load balance inbound traffic
Solution
» DNS-based multihoming
» Automatic updates if link/IP unavailable
» Support for up to 50 links
» Mixed service providers and
technologies
Benefits
» Seamless and efficient inbound routing
to internal network resources
» Auto-recovery and DNS updates when
links and IP addresses back on line
Link1: 10.10.0.1
Link2: 10.10.0.2
Link3: 10.10.0.3
www.example.com
DNS: 10.10.0.2
Application URL:
www.example.com
12. 12
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Hybrid WAN
Problem
» Add increased bandwidth for cloud
applications
» Reduce VPN/backhaul pressure
» Integrate independent ISP solutions into
one set of WAN policies
Solution
» Advanced policy based routing
» Quality of Service
» Add up to cost-effective 50 links
Benefits
» Increased capacity for cloud
applications
» Optimized WAN management for
internet and MPLS traffic for internal
and external users in organization
Headquarters
Branch Office
ERP
SalesForce
General
Internet
13. 13
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
FortiWAN Competitive Advantages
FortiWAN offers products that compete in SMB to Enterprise
Radware and Barracuda top FortiWAN competitors
Generally similar features at much lower TCO than Radware
WAN Link Load Balancer Competitors
Strengths Weaknesses
Radware • Market leader
• Similar features as AscenLink
• Up to 16 Gbps solutions
• Expensive
• Not a primary product line
• Complicated
Barracuda • Brand/name recognition
• Distribution
• SMB solutions
• Poor LLB product
• Tops out at 7 links
• SMB focus
Elfiq • Good LLB product
• Up to 6 Gbps performance
• Pricing (direct sales model)
• Reliability issues
• Limited brand recognition
• Pure play
Riverbed • Focus on WAN optimization
• Broader tool set
• Gartner MQ leader
• Expensive option
• Overkill for simple LLB
F5 • Strong ADC focus
• WAN module good
• Offers full WAN optimization
• Very expensive
• Mostly for Data Center
• Complicated/overkill
14. 14
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Pricing/Licensing
Purchase price includes
» Hardware: appliance, mounting hardware, etc.
» Base throughput of appliance
FortiCare (1, 2 and 3 year increments)
» 8x5 enhanced
» 24x7 comprehensive
Upgrade Licenses for Bandwidth
» FortiWAN-200B, 100 Mbps and 200 Mbps (stackable)
» FortiWAN-1000B, 1.0 Gbps
» FortiWAN-3000B, 2.0 Gbps and 3.0 Gbps (stackable)
“Other Products” tab on Pricelist
15. 15
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Complementary/Related Products
FortiGate Firewalls
» Increases VPN throughput without expensive services
» Soft-degrade and auto recovery of VPN links
» “Instant” link failover
FortiADC Application Delivery Controllers
» Server load balancing
» Layer 7 content-based routing and SSL offloading
FortiWeb Web Application Firewalls
» Advanced L7 application protection
» PCI 6.6 compliance
FortiDirector Cloud-based Global Server Load Balancing
» Service-based multi-site server load balancing
» Annual subscription based on DNS redirects
16. 16
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Objection Handling
My leased lines are very reliable. I don’t need a link load balancer.
» They may be, but they still can go down, and you may be limited on bandwidth.
FortiWAN can provide a back up line for redundancy and let you additional
bandwidth at a fraction of the cost of another leased line.
My firewall (or ADC, or other device) provides link load balancing.
I don’t need another dedicated appliance to manage.
» Many products offer a reduced set of link load balancing features to provide
basic redundancy, but don’t offer advanced traffic management or features like
tunnel routing and multihoming.
I don’t need more bandwidth at this time.
» You may not need additional bandwidth, but you may need redundancy in your
network should a primary line go down. If you do need more bandwidth, it’s easy
to add new links to a FortiWAN to seamlessly expand your throughput.
Fortinet isn’t known for its WAN Link Load Balancers, I’d rather go
with a name I know
» Fortinet acquired AscenLink in 2013 and it’s 10+ years of product and WAN market
knowledge. FortiWAN is based on the proven technology of AscenLink and
provides the same features and functionality.
17. 17
WAN Link Load Balancers - FortiWAN
FAST. SECURE. GLOBAL.
Qualifying Questions
Does your business have the bandwidth it needs?
» FortiWAN allows you to seamlessly add bandwidth using virtually any ISP technology,
even low-cost DSL and Cable.
Are internet outages affecting your organization?
» WAN link health checking and auto routing detect link status and route traffic to the
best performing links and can auto-recover links once they come back online.
Are cloud-based applications straining backhaul links to your data
center?
» Advanced traffic management and policy routing allow you to direct traffic by packet
type to the connection that can handle it best without having to backhaul everything
to your data center.
Are you paying too much for WAN bandwidth using leased lines or
MPLS?
» Use lower cost links like DSL and Cable to seamlessly add bandwidth at a fraction the
cost of T1, DS3 or MPLS links.
Do you have the bandwidth for secure VPN connections between
your data center and remote locations?
» Using FortiWANs at each endpoint, Tunnel Routing can create high-capacity VPN
tunnels to meet your bandwidth needs.