Why do businesses choose Layer3/IPVPN’s?

Traditional data networking implemented by Australian businesses was based around ‘Layer 2’ products such as Telstra’s ISDN, Digital Data Service DDS and most recently Frame Relay.

In recent times there has been a rapid movement to IPVPN’s in many guises but what does that mean, why has it occurred and what are the elemental building blocks of these solutions.

The business reasons are many and varied with different rankings for individuals and companies.

The following sections investigate these reasons in no particular order.

  • IP becomes the default protocol
  • Access flexibility
  • Consolidate/Rationalise networks
  • Network Accessibility
  • Business Continuity
  • Simplified application deployment
  • Outsource network routing romplexity
  • VAS/SaaS
  • Price, performance & functionality

IP becomes the default protocol

IP networks as their name implies only carry TCP/IP based traffic.

The universal adoption of IP as the protocol of choice eliminated the need to cater for protocols such as IPX and IBM’s SNA.

Access Flexibility

A ‘layer 2’ network requires all accesses on the network to be from the same product suite. For example a Frame Relay network requires all sites to be supported by a Frame Relay access.

The only way to mix and match technologies is for you the customer to provide the conversion from one technology to another, usually via a router. This creates added complexity and cost for the IT department.

An IPVPN moves the networking one layer higher to the IP level allowing a variety of access technologies to now work seamlessly together.

The great benefit for businesses is that the performance parameters of service at a site can be tailored to suit the business criticality of the location. This reduces overall cost and allows smaller site to be connected to the network that once would have been omitted due to cost.

Using Telstra’s NextIP solutions to show the breadth of access options:

ISDN: up to 128K Bandwidth. Not often used today but still suitable where DSL technology is not available.

ADSL: HS ADSL2+ down to 256/64K. Performance is very good but Service Assurance (SLA) at the lower end of options.

Not recommended for a business critical location.

BDSL: 256K to 4Mbps symmetric service. Totally un-contended offering excellent performance with options for enhanced SLA’s.

Often the best price / performance balance today.

Frame Relay: 64K to 45Mbps. highest performing of the traditional access technologies with greater coverage than ADSL or BDSL. Standard SLA's are also superior.

There is a price premium for the Frame Relay quality.

Ethernet: Telstra’s Ethernet based products are known as Telstra Ethernet in a point to point configuration or IPMAN when part of a NextIP network of sites.

Ethernet services scale from 2Mbps to 1GBps and include options for diversity such as Dual Access. These services are most suited to head offices, data centres or any site requiring sustained high bandwidth services.

Wireless: The High Speed NextG network has offered a new way of deploying new sites, providing fixed site back-up strategies or mobile access.

The Wireless IP port allows all of three options above to be deployed of a private network connection from the NextG wireless platform to the NextIP data network without transiting the Internet. This is a major differentiator for Telstra.

It is important to note that as a network evolves sites can be seamlessly upgraded, or downgraded, to different technologies as required.

Consolidate/Rationalise Networks

Converged application requirements are ideally suited to an IP network.

No longer do the Data, Voice and Video requirements of a business require 3 different solutions all with networking cost and administration overheads.

The converged IP network provides a very cost effective solution.

The three broad categories all have different networking requirements to ensure reliable high quality performance of the application. For example Voice of the IP network requires low latency and low jitter to ensure the voice quality of the call. Email and file transfers on the other hand are far less time sensitive and can allow easily for variability in the network.

The elements to address these issues are:

  • Un-contended access at each site to minimise delays and packet discards
  • High performance low loss and low latency core network
  • End to End Quality of service that ensures at in each step from source to destination the application receives the appropriate prioritisation

In a Telstra solution the application is managed end to end.

  • The ingress site router tags and prioritises the data (Can be a Telstra or customer supplied router)
  • When the packet reaches the network edge switch (the cloud) the tags are read and the data carried across the network with one of the 6 available priority levels
  • At egress from the cloud the data is queued and transmitted based on the priority settings.

Note that this is fully dynamic on a Telstra network which means no bandwidth is permanently allocated to a priority level. If there is no high priority traffic lower priority traffic can burst to use the full bandwidth.

Telstra and Flexnet can help overcome the technical challenges of a converged network. Once this is done the cost savings of a single network platform can be seen and the business can then leverage productivity tools such as Unified Communications bring voice/messaging/email together.

Using the ShoreTel IPPABX sold and supported by Flexnet as an example employees across the network can:

  • See the ‘presence’ state of colleagues and calls to the colleagues can be handled in 5 different modes depending on their status. Eg Standard, In a meeting. Out of the office
  • The status can be managed by linking the call handling mode to Outlook calendar appointments
  • Voicemail messages can be presented as WAV files in the inbox

Network Accessibility

The requirements to access core network applications and company information at any time from any location have expanded dramatically with changing in work practices of modern businesses.

Away from company premises access is required:

  • 24 x7
  • From global locations for travelling staff
  • From domestic broadband services for access from home
  • From laptop modems or 3G wireless enabled mobile workers
  • From temporary or short term sites not warranting the deployment of a fixed line solution

In each case described above and IPVPN augmented by Value Added Services (VAS) can provide a seamless and coherent networking solution administered and supported by the carrier.

No longer does a business need to implement a variety of Remote Access Services (RAS) plus security measures and then manage the scalability as usage grows.

Companies can focus on core business building wealth and profitability.

Business Continuity

In a Layer 2 network rerouting traffic away from a data centre failure or a state hub failure requires the carrier to activate pre-programmed network diversions.

With a Layer 3 IPVPN the failover can be managed at a Layer 3 routing protocol layer with the network diverting traffic dynamically in case of site/access failure.

The any to any connectivity means there are no intermediate hops that can introduce continuity problems.

The re-routing can be via a back-up technology at the site with a link failure or to another site on the network.

All this can be automatically administered by the Telstra network.

Similar technology can be used to protect an individual branch.

Simplified Application Deployment

Unlike an Internet based VPN the NextIP VPN offers:

  • Any to any connectivity natively. Add a new site and it immediately has access to all other sites on the network – especially important for an IPTel environment. There are no network hubs to transit or dimension.
  • The privacy of the network is managed by Telstra in the MPLS core. Consequently there are no security lockdown requirements, no port blocking and no NATing of IP addressing.

What this means is that deployment of a new application is that the network is almost transparent to the solution.

The only network considerations are: How much bandwidth each user requires How many staff at the site are likely to be using the application at any one time.

With this any changes to site access bandwidth can be determined.

From a network perspective the job is done.

Outsource Network Routing Complexity

In a network with multiple Layer 2 technologies or even an Internet VPN there is a significant amount of routing to be done and usually multiple hops as rarely are all sites directly connected.

With a layer 2 solution or an IPsec VPN the number of logical connections grows exponentially as the number of sites grow

4 site network needs 6 paths to connect all sites

5 site network needs 10 paths to connect all sites

6 site network needs 15 paths to connect all sites

With NextIP the site has a single connection to the network, CPE connection is simplified with packets either local to the LAN or sent to the network on one interface.

Telstra’s NextIP network will make sure the packet gets to where it needs to go

VAS/SaaS

Layer 3 IP has made connecting totally different access technologies together as a homogenous network a simple exercise. It has also allowed carriers too introduce fully integrated Value Added Services (VAS) and more recently Software As A Service (SaaS)

Businesses can now avoid the often high capital cost of appliances and security applications moving to a rental model offered by carriers. The cost of support and upgrades to these services is absorbed by the network supplier ensuring facilities such as content filtering are always up to date.

NextIP provides a wide range of VAS. Some of the more popular are

  • Network based Firewalls
  • Virus scanning, content filtering, IPsec site to site and client to site solutions
  • Radius authentication options

Branded under T-Suite a number of SaaS solutions are available. Solutions available via Flexnet are:

  • Web and email filtering
  • MS Exchange mail
  • Data back-up for PC’s and servers
  • Large file transfer solution.

Price, Performance & Functionality

All the preceding sections describe the many benefits of an IPVPN network. Every Business need to assess the total cost of providing a data and potentially a voice network based on an IPVPN and determine the most suitable approach.

Recapping the key benefits :

  • Multiple Access technologies are available with varying speeds and service assurance levels allowing the best price/performance match for the location.
  • Simplified network design from a Business perspective where the carrier manages the carriage and routing of the data. This releases the Business and the IT department to concentrate on improving the business applications and processes.
  • Quick and easy deployment of new applications. The network is transparent
  • Ability to support voice, data and video requirements on a single network.
  • A wide variety of remote access solutions to improve business productivity
  • VAS/SaaS options to defray capital expenditure.

Flexnet is the logical choice to consult and advise on the best solution to meet you business needs.

 
The contents of this site are copyright © 2010 Flexnet. All Rights Reserved.
For information on our privacy policy please Contact Us for details