Software Defined WAN Overlays for Secure Remote Media Production Jason Banks [email protected] Content creation today spans the globe from the wind swept desert of Namibia for the 2015 blockbuster Mad Max Fury Road to Rio’s beaches for the Summer Games, or less exotic locations like Tennessee’s Bonnaroo Music Festival. While all of these locations and productions are unique in their subject matter, they all share a common need, access to secure, reliable, agnostic IP transport. Virtualization of the data center has driven a reduction in hardware, cost, and added agility to I.T. environments globally. Software defined WAN (SD-WAN) is now bringing those advantages to the WAN edge. This increased flexibility comes in many forms from fully managed WAN as a service from VeloCloud and Aryaka Networks to more traditional hardware based solution from Viptela. SD-WAN architectures offer several advantages over traditional WAN services resulting in increased service options, improved security, agility, and potential cost savings for media productions. Analysts with Gartner are forecasting that SD-WAN services will become the new normal with a 30% increase in deployments by 2019. Some of the key benefits of SD-WAN for media production: Transport Agnostic - Media production takes place in a myriad of locations with shoots lasting from a few hours to years. Depending on location, traditional services such as MPLS or Metro Ethernet services may not be available or require long lead times. SD- WAN architectures overcome these limitations by being transport agnostic. By supporting dedicated or mixed network access methods, such as, 4G/LTE, high speed Internet, MPLS, and dark fiber. This transport flexibility allows media productions to right size network connectivity and cost. Ease of Deployment - SD-WAN solutions are available as x86 software or traditional multiport hardware switches, featuring a zero touch deployment model that can be configured ahead of time by I.T staff. They simply need to be plugged into the desired network by the remote production staff. Once the edge device is online, it phones home to a pre-programed SD-WAN controller to download any required configuration and security policy. This also allows security and network staff to remotely administer and monitor network and security policy at the production via the controller. The ability to remotely manage the WAN edge at production locations frees staff to fully focus on content production. Increased Security - Studios and Posthouses spend large amounts of time and resources to meet client and MPAA network security guidelines. However, the traditional concept of the network security perimeter logically defined by corporate firewalls is rapidly