Manuals+

Juniper® Validated Design: WAN Edge with the Session Smart Router

Document ID: JVD-ENTWAN-EDGESSR-01-01

Executive Summary

Juniper Mist cloud services are transforming IT operations towards intelligent self-driving networks in the era of the AI-driven enterprise. Juniper Mist WAN Assurance delivers simpler operations, shorter mean time to repair, and better visibility into end-user experiences.

This Juniper Validated Design (JVD) describes various approaches to build a VPN as an overlay by integrating WAN routers into a branch design. It details four major networking topologies and their implementation. All four described topologies are validated, including additional features that are topology independent. Furthermore, complete configuration examples using the Mist portal are provided in the appendix section of the full JVD document for reference.

Solution Overview

WAN edge references the demarcation point for your enterprise network to reach the outside world. This boundary is a crucial security and troubleshooting hotspot. The WAN edge is a simple border between your enterprise network and the outside world. The WAN edge can also be a Juniper SD-WAN driven by Mist AI™ device such as a Juniper Networks® Session Smart® Router, a Juniper Networks® SRX Series Firewall, or a cloud solution—a Juniper® Secure Edge.

This JVD is intended to test and document the major topologies and WAN edge features for Session Smart Routers that provide and allow customers to make the right choices when designing an implementation. As part of this JVD, the following information will be shared:

  • Discuss the various transport technologies and how you can leverage them to build your own overlay VPN.
  • Describe and test the suggested five major foundational topologies:
    • Basic SD-WAN topology with 3 spokes and 2 hubs.
    • Extended topology with hub-overlay and BGP peering at the hub.
    • Topology with clustered Session Smart Routers to deliver hub and spoke with high availability.
    • Full stack topology with Juniper EX Series Switch and Mist Access Point (AP).
    • Extended full stack topology with Juniper Networks® EX Series Switches in Virtual Chassis and Session Smart Routers in high availability cluster with 802.3ad LAG activated.
  • Describe and test the various ways that applications are detected and steered through different paths of the network topology.
  • Describe and test how customers leverage site variables and templates to build easily reproducible configurations on newly installed devices added to the network.
  • Describe and test the security features that the Session Smart Router provides locally on each system:
    • Application detection by deep packet inspection (DPI) engine.
    • Intrusion detection engine.
    • Web filter with category selection.
  • Ability to build tunnels for user traffic towards cloud-breakout services such as Zscaler or Juniper Secure Edge.
  • Discuss integration of EX Series Switches and Juniper® Series of High-Performance Access Points at the branch managed and controlled by the same Mist portal.
  • Discuss and show the monitoring and troubleshooting that are critical to network administrators for Day 2+ operations.
  • Provide recommendations and best practices when implementing WAN edge for Session Smart Routers.

Network Diagram

The diagram illustrates a typical WAN edge deployment. It shows Juniper Mist WAN Assurance connecting to various cloud services like Google Cloud, AWS, and Zoom. A Juniper Secure Edge is depicted, along with a Secure Edge Connector. The network includes an Internet connection, MPLS, LTE, and a WAN Edge device, likely a Session Smart Router, connecting to a Branch/Retail location and Headquarters. On-Prem Apps are also shown. The diagram highlights the flow of traffic and the integration of different Juniper products and cloud services.

Corporate Information

Corporate and Sales Headquarters
Juniper Networks, Inc.
1133 Innovation Way
Sunnyvale, CA 94089 USA
Phone: 888.JUNIPER (888.586.4737) or +1.408.745.2000
Fax: +1.408.745.2100
www.juniper.net

APAC and EMEA Headquarters
Juniper Networks International B.V.
Boeing Avenue 240
1119 PZ Schiphol-Rijk
Amsterdam, The Netherlands
Phone: +31.207.125.700
Fax: +31.207.125.701

Copyright 2024 Juniper Networks, Inc. All rights reserved. Juniper Networks, the Juniper Networks logo, Juniper, Junos, and other trademarks are registered trademarks of Juniper Networks, Inc. and/or its affiliates in the United States and other countries. Other names may be trademarks of their respective owners. Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice.

Send feedback to: design-center-comments@juniper.net

PDF preview unavailable. Download the PDF instead.

sol-overview-wan-edge-for-ssr Adobe PDF Library 24.5.96

Related Documents

Preview Juniper Validated Design: WAN Edge with Session Smart Router Test Report Brief
This Juniper Validated Design (JVD) test report brief details the qualification test data for the WAN Edge utilizing the Session Smart Router (SSR). It highlights Juniper Mist WAN Assurance, an AI-native cloud-managed solution for optimizing Wide Area Network (WAN) operations, including high-performance forwarding, enhanced AI capabilities, and automated WAN management. The document outlines the test topology, performance data for SSR120 and SSR130 platforms across various test cases (LBO HTTP Performance, Overlay HTTP Performance), and high-level features tested, including SD-WAN, HA-cluster, and Mist Cloud-based Management.
Preview WAN Edge with Session Smart Router: Juniper Validated Design
Explore the Juniper Validated Design (JVD) for WAN Edge with Session Smart Router, detailing network architectures, solution benefits, and implementation strategies for optimizing enterprise WAN operations.
Preview Midsize Branch Solution with Juniper Mist Cloud - Juniper Networks
Explore the Midsize Branch Solution with Juniper Mist Cloud, detailing network configuration, use cases, and technical overviews for resilient WAN, LAN, and WLAN connectivity. Learn how Juniper Networks SRX Series, EX Series switches, and Mist access points provide a secure and efficient branch office network.
Preview Juniper SSR1500 Quick Start Guide: Cloud-Ready WAN Edge Setup
A concise guide to quickly set up and onboard the Juniper Networks SSR1500 Cloud-Ready appliance using Juniper Mist cloud for secure and resilient WAN connectivity.
Preview Juniper Networks SSR120 Quick Start Guide: Setup and Onboarding
A comprehensive quick start guide for setting up and onboarding the Juniper Networks SSR120 router using the Juniper Mist cloud portal. Learn about device features, mobile and web onboarding, template creation, and initial configuration.
Preview Juniper Networks SSR1200 Quick Start Guide
A concise guide to installing, powering on, and configuring the Juniper Networks SSR1200 appliance for Juniper Mist cloud connectivity, including rack mounting and basic network setup.
Preview Juniper Mist Quick Start Guide
A concise guide to setting up Juniper Mist, covering account creation, organization setup, subscription activation, site configuration, and adding administrators.
Preview Juniper Mist AI-Native Networking Platform: Optimize Network Operations for AI Workloads
Discover Juniper's AI-Native Networking Platform, built with and for AI. Learn how it leverages industry-leading AIOps to optimize network operations, enhance user experiences, and build the optimal network for AI workloads, offering simplicity, productivity, reliability, and Zero Trust security.