SmartSecure

SmartSecure

Managed Firewall and
Security as-a-Service

Service Overview

Aryaka SmartSecure is designed to complement SmartConnect with managed SD-WAN security-as-a-service offerings. At the branch, an access firewall within the ANAP offers ‘north-south’ control, while an optional NFV-based Tier-1 firewall offers comprehensive L7 protection. Aryaka Zones extends this to the LAN with ‘east-west’ security, through site-segmentation with policy-based access. Together, the two capabilities segment WAN traffic, to Aryaka and to the internet, from LAN traffic, both internal and DMZ. A third capability extends security into the cloud though Aryaka’s security partners, including Zscaler and Palo Alto Networks. The ANAP also supports VRF-based micro-segmentation, enabling multi-tenancy.

Core Capabilities

  • 01/06

    Cloud Security

    Secure, local Internet breakout is enabled through Palo Alto’s Prisma Cloud Security Suite, Symantec’s Web Security Service, and Zscaler’s Cloud Security, protecting all ports and protocols without appliances.

  • 02/06

    Micro-Segmentation

    Micro-segmentation adds to the ANAPs zones functionality. On-site, VLANs provide the local segmentation for internal and DMZ zones. Micro-segmentation extends this across the Aryaka core network via a BGP-driven VRF ‘lite’ functionality.

  • 03/06

    Virtual Firewall

    Aryaka’s ANAP supports NFV functionality for additional SDN-delivered services. We plan to partner with multiple Tier-1 security vendors, enabling choice.

  • 04/06

    Secure Remote Access

    Aryaka’s Secure Remote Access is the first clientless SD-WAN to software-defined remote access. It significantly enhances both on-premises and cloud/SaaS application performance for the remote and mobile workforce without requiring additional hardware or software clients.

  • 05/06

    Aryaka Core Protection

    In parallel, the Aryaka private core delivers partitioned connectivity to all enterprises, encrypting the data and protecting against DDoS attacks. Within the branch, enterprises have access to Syslog and Netflow logging, and at the network level, the MyAryaka cloud portal provides a single pane of glass for service configuration, monitoring and health.

  • 06/06

    Edge Firewall

    The ANAP includes a virtual stateful firewall that delivers north-south access protection as well as a ‘zones’ capability offering site-segmentation to secure east-west traffic within the branch. The ANAP functions as a Secure Access Service Edge (SASE), an evolving category of secure managed edge devices.

Core Capabilities

01.

Cloud Security

Secure, local Internet breakout is enabled through Palo Alto’s Prisma Cloud Security Suite, Symantec’s Web Security Service, and Zscaler’s Cloud Security, protecting all ports and protocols without appliances.

02.

Micro-Segmentation

Micro-segmentation adds to the ANAPs zones functionality. On-site, VLANs provide the local segmentation for internal and DMZ zones. Micro-segmentation extends this across the Aryaka core network via a BGP-driven VRF ‘lite’ functionality.

03.

Virtual Firewall

Aryaka’s ANAP supports NFV functionality for additional SDN-delivered services. We plan to partner with multiple Tier-1 security vendors, enabling choice.

04.

Secure Remote Access

Aryaka’s Secure Remote Access is the first clientless SD-WAN to software-defined remote access. It significantly enhances both on-premises and cloud/SaaS application performance for the remote and mobile workforce without requiring additional hardware or software clients.

05.

Aryaka Core Protection

In parallel, the Aryaka private core delivers partitioned connectivity to all enterprises, encrypting the data and protecting against DDoS attacks. Within the branch, enterprises have access to Syslog and Netflow logging, and at the network level, the MyAryaka cloud portal provides a single pane of glass for service configuration, monitoring and health.

06.

Edge Firewall

The ANAP includes a virtual stateful firewall that delivers north-south access protection as well as a ‘zones’ capability offering site-segmentation to secure east-west traffic within the branch. The ANAP functions as a Secure Access Service Edge (SASE), an evolving category of secure managed edge devices.

Deployment Options

Remote Access

Secure Remote Access are optional capabilities for both Global and Regional deployments

Aryaka + Zscaler

An enterprise may consume Zscaler’s complementary cloud-based security-as-a-Service, with Aryaka directing traffic appropriately.

Aryaka + Palo Alto

Remote workers may access Aryaka via Palo Alto’s Prisma Cloud Security Suite, providing authentication and acceleration. Additionally Aryaka provides Managed Firewall Services for Palo Alto’s virtual and physical firewall appliances.

Benefits

  • 1/3

    Managed SD-WAN Security
    With WAN security top-of-mind, Aryaka’s SmartSecure offers enterprises an end-to-end secure infrastructure, first-mile, middle-mile, and into the cloud.

  • 2/3

    Operational Simplicity
    Edge and cloud security leveraging Tier-1 partners is part of Aryaka’s end-to-end managed SD-WAN, hiding complexity from the enterprise.

  • 3/3

    Lower TCO
    SD-WAN security helps enterprises generate the maximum return on their SD-WAN investment, ensuring protection from external threats and the integrity of corporate data, anywhere in the world.

Benefits

Managed SD-WAN Security

With WAN security top-of-mind, Aryaka’s SmartSecure offers enterprises an end-to-end secure infrastructure, first-mile, middle-mile, and into the cloud.

Operational Simplicity

Edge and cloud security leveraging Tier-1 partners is part of Aryaka’s end-to-end managed SD-WAN, hiding complexity from the enterprise.

Lower TCO

SD-WAN security helps enterprises generate the maximum return on their SD-WAN investment, ensuring protection from external threats and the integrity of corporate data, anywhere in the world.

Other Managed Services

smartConnect

SmartConnect

Learn More >
smartOptimize

SmartOptimize

Learn More >
smartCloud

SmartCloud

Learn More >
smartInsights

SmartInsights

Learn More >

Learn about how Aryaka offers bullet-proof SD-WAN network security built from the ground-up

Secure Any Connection or Application Anywhere with Aryaka

  • Zscaler

    Aryaka and Zscaler Deliver a Best-of-Breed Global SD-WAN and Security Solution

    Aryaka and Zscaler together deliver a solution that combines Aryaka’s managed services with Zscaler’s advanced cloud security platform.

    Download >
  • MPLS Alternative for Faster Cloud Connectivity

    Palo Alto Networks and Aryaka

    Palo Alto Networks and Aryaka provide a joint solution of enterprise-grade security leveraging Palo Alto’s cloud security platform.

    Download >
  • MPLS Alternative for Faster Cloud Connectivity

    SmartOptimize Data Sheet

    Offers a flexible security foundation to enterprises embarking on WAN transformations, along with multi-tenancy enabled by micro-segmentation.

    Download Datasheet >

Secure Any Connection or Application Anywhere with Aryaka

Aryaka and Zscaler Deliver a Best-of-Breed Global SD-WAN and Security Solution

Aryaka and Zscaler together deliver a solution that combines Aryaka’s managed services with Zscaler’s advanced cloud security platform.

Palo Alto Networks and Aryaka

Palo Alto Networks and Aryaka provide a joint solution of enterprise-grade security leveraging Palo Alto’s cloud security platform.

smart-secure-ds

SmartSecure Data Sheet

Offers a flexible security foundation to enterprises embarking on WAN transformations, along with multi-tenancy enabled by micro-segmentation.

Download >
Download >
Download Datasheet >