By introducing Internet transports into MPLS WAN, Software-defined WAN can expand WAN capacity and offload Internet-bound traffic at the branch. Yet, traditional SD-WAN fails to address network security requirements of accessing Internet and cloud resources and the need to continue and rely on MPLS for latency sensitive apps. Below are the main challenges left unaddressed by traditional solutions.

Cato is providing a fully converged global SD-WAN with built-in network security, delivered as a cloud service. SD-WAN edge device is the enabling network infrastructure. Core capabilities, such as policy-based routing and transport agnostic overlay, are extended to address key problems with traditional SD-WAN.


No global latency controls persists MPLS dependency

One of its main benefits is MPLS cost reduction. But since SD-WAN uses the public Internet where latency is unpredictable, enterprises need to maintain some MPLS capacity to support latency-sensitive applications.

Replace, not just augment, MPLS

Cato provides its own global, affordable, SLA-backed backbone. With Cato, customers can move to a combination of a high-quality Internet last mile and the Cato Cloud to augment and ultimately replace MPLS. The Cato Cloud is strategically deployed to accelerate access to key cloud application like Amazon AWS, Microsoft Azure and Office 365.

Secure Internet Access

No integrated network security capabilities

SD-WAN directs WAN traffic across encrypted Internet tunnels. This provides the most basic security needed to send traffic over a public network. However, accessing websites and cloud applications directly from a remote office and not backhauling to a datacenter, requires a network security stack to protect users against phishing, malware, and other threats. This security stack often includes a next-generation firewall (NGFW), URL filtering, anti-malware, IPS and more. Other solutions must partner with network security vendors for this functionality, complicating and fragmenting network and security policy management.

Cloud-based network security everywhere

Cato provides a full enterprise-grade, network security stack built directly into its global backbone. There is no need to backhaul traffic to specific choke points or introduce 3rd party security products service chained together. All network and security policies are configured within Cato’s cloud-based management application.

Cloud and Mobile Support

No support for cloud infrastructure and mobile users

Software-defined wide area network solutions were designed to reduce spend on MPLS connectivity between physical locations. For legacy WAN architectures, cloud data center integration was an afterthought and mobile support was not a consideration. Yet, cloud and mobility represent a big part of how business gets done today.

Seamless support for cloud infrastructure and mobile users

Cato was designed to easily connect all enterprise resources into the WAN, including physical locations, cloud resources, and fixed and mobile users. With Cato, networking and security capabilities are available everywhere and to all resources without the need to introduce point solutions.

The network you have been waiting for is here.
Prepare to be amazed.