Cisco Cloud OnRamp for Multicloud

It automates the integration of Cisco SD-WAN into cloud environments. This allows you to connect enterprises with cloud-based workloads with a uniform layout and policy.

Cisco SD-WAN Cloud OnRamp for Multicloud is an evolution from Cloud OnRamp for IaaS, and it brings improved integration with the CSPs using cutting-edge networking services that CSPs provide. Cloud OnRamp for Multicloud also enables Software-Defined Cloud Interconnect (SDCI). The key differentiator for Cloud OnRamp for Multicloud is automation. The whole solution is automated—The end user must simply enter public cloud credentials in the related vManage section, discover virtual networks and workloads, and define two routers for interconnection. vManage automatically does the whole deployment of the transit VPC, the bring-up procedure of virtual routers, and the interconnection.

Provide cloud credentials and select virtual networks, and select the routers. Cisco vManage will take care of everything else by installing cloud infrastructure, setting up virtual routers as well, and connecting all the devices.

Cisco OnRamp for Multicloud helps in automating the Cisco SD-WAN extension to the cloud from enterprise sites through the internet, interconnect, or colocation environments.

It streamlines cloud connectivity it reduces manual configuration, and provides better visibility into the performance of applications. It also assists in applying the same security and networking policies to cloud and on-premise environments.

• Automate the Cisco SD-WAN extension to the cloud from enterprise sites through the internet, interconnect, or colocation environments.

• Use a cloud-delivered Secure Access Service Edge (SASE) architecture to consolidate networking and security functions and to extend a consistent policy to users and applications on-premises and in the cloud.

• Deploy applications and services on demand by using a consistent user interface for a unified experience across all clouds and on-premises locations.

• Optimize user experience for customers and employees by using granular insights into application performance.

It streamlines the setting up and operation of transit networks. It links branch routers with cloud-based workloads via AWS Transit Gateway. It also works with Transit Gateway Network Manager to increase visibility into the branch-to-cloud connectivity.

In simple terms, when deploying Cisco SD-WAN Cloud OnRamp for Multicloud, the Cisco vManage controller creates the required elements within the cloud. These elements include a transit area where the Cisco SD-WAN cloud gateways are deployed, the cloud gateways themselves, the networks that are required to connect the cloud gateways to the transport networks, and service-side VPNs. The solution also discovers the host elements, the actual applications running in the cloud, and streamlines the connection of those host elements to the Cisco SD-WAN fabric.

You can make use of IPsec as well as GRE tunnels to connect your site to the cloud. There's also a Branch Connect option that allows branches to create straight IPsec tunnels to the cloud for more modest or expensive sites.

It enables the deployment of Cisco SD-WAN Cloud Edge routers on Azure with one of two options: Virtual WAN or a transit virtual network. It connects branches and Azure host networks using a hub-and-spoke architecture.

Cloud OnRamp for Multicloud with Microsoft Azure provides the same automation and deployment services as with AWS. The workflow deploys the Cisco SD-WAN Cloud Edge routers within the Microsoft Azure Virtual WAN (vWAN) or a Transit VNet and connects to the Microsoft Azure Host VNets. Cisco vManage fully automates the deployment of the Cisco SD-WAN Cloud Edge routers and the connection to the host VNets.

The vWAN architecture is a hub and spoke architecture with scale and performance builtin for branches (VPN/Cisco SD-WAN devices), users (Microsoft Azure VPN/OpenVPN/IKEv2 clients), ExpressRoute circuits, and virtual networks. It enables a global transit network architecture, where the cloud-hosted network (hub) enables transitive connectivity between endpoints that may be distributed across different types of spokes. Microsoft Azure regions serve as hubs that you can choose to connect to. All hubs connect in a full mesh in a Standard Virtual WAN, making it easy for the user to use the Microsoft backbone for any-to-any (any spoke) connectivity. For spoke connectivity with Cisco SD-WAN/VPN devices, users can either manually set it up in Microsoft Azure Virtual WAN or use the automated workflows that Cisco vManage provides to deploy the cloud edge routers and establish connectivity.