Building your vendor or service provider shortlist? Try our 90-second quiz for recommendations.

Real advice and expertise from SASE Cybersecurity and SD WAN experts.

Connect with one of the Netify research team to learn which solutions match your requirements. Netify advisors will help you avoid wasting time with the wrong vendors and providers. In just 30 minutes, our research team will create your own personalised shortlist. And it's all free.

Netify is fully funded by our partners - we are paid commission when you choose to be introduced to vendors that are the right match for your needs.

How to compare SD WAN Direct Internet Access (DIA)

Are you an IT decision maker building your vendor or managed provider shortlist?

Take the 90 second SASE Cybersecurity or SD WAN assessment quiz to receive the top 3 vendor or managed provider recommendations based on your unique answers.

Cybersecurity assessment SD WAN assessment

When IT teams consider their options across SD WAN deployments, direct Internet access is a fundamental component that will impact uptime and application performance across latency and jitter.

Three main SD WAN architecture options typically make up the majority of deployments. In this article, we'll discuss:

  1. Separating out the underlay (DIA, MPLS, VPLS) from the overlay (SD WAN, SASE)
  2. Selecting a traditional telco service provider to deliver the end to end solution
  3. Research an SD WAN integrators to resellers to bring everything together

“As a companion to this article, choose between our SD WAN vendor assessment quiz or use the full comparison tool. They're both free to use and created for IT teams.”

SD WAN Readiness Assessment

Click the image to launch the assessment. The Netify SD WAN readiness assessment has been created with the intent of helping IT teams shortlist vendors.

Visit the SD WAN quick assessment page now, receive instant vendor recommendations. Start the SD WAN vendor quick assessment →

SD WAN Comparison Tool from Netify

Click the image to launch the tool. The Netify SD WAN marketplace puts you in control of the data. Start by creating your own shortlist, filter SD WAN features and compare solutions side-by-side to instantly learn whether a specific vendor fits your needs.

While traditional MPLS WAN deployments were typically procured from service providers, SD WAN solutions over direct Internet access mean businesses are free to choose their underlay in isolation to overlay managed services. There are several reasons for architecting your SD WAN solution in this way which include cost savings and the freedom to select based on hub, branch office or user needs.

Private MPLS required buying the network from one service provider which more often than not also provided the managed Cisco router resulting in a known issue referred to as 'vendor lock-in'. Vendor lock-in occurs when contracts do not co-terminate which means migrating away from the service provider is difficult as certain branch site cancellations incur early termination penalties.

In addition, the service provider may offer good backbone network performance but poor managed services (or vis versa). In this instance, the desired outcome might be to retain the network but remove the managed routers - note that contracts will often not facilitate such a change.

Enterprises are benefiting from the freedom to architect their WAN based on several factors which include:

  • Selecting the best performing DIA connection per location which also identifies local cost savings (your apps could perform differently as traffic traverse multiple ISP's)
  • Selecting a single public IP backbone provider in isolation to the managed services
  • Creation of global DIA regions based on leading international service providers

IT teams will need to evaluate each vendor considering how their respective SD WAN use case requirements report on network performance to identify issues with packet loss, high latency and any network downtime.

You may have read about CNaC (Cloud Native Architecture) which describes (in reference to Software WAN) solutions that are built around a single technology stack. Cato Networks is a good example of a vendor that delivers SD WAN with end-to-end support without 3rd party services.

The CNaC business outcome delivers DIY, Co-Managed or fully managed SD WAN from a single vendor product. In other words, IT teams no longer need to choose between which level of service and support they require. CNaC intelligence and solution orchestration is cloud-based, which means any branch site or remote user can be activated over any Internet connection from 4G and 5G to Broadband and Ethernet leased lines. Lastly, SD WAN vendors often support 3rd party direct Internet services as a component of the overall solution.

While the vendor does not own the contact, the outcome means there is a single contact point when issues occur. In simple terms, lack of ownership across all elements of the solution. When buying from a traditional service provider or reseller, all elements are often included from project management to physically installing the kit on-site. Global services require knowledge with regards to in-country restrictions and import/export laws.

Also, there is the time of day differences to consider, which will mean your IT team will need to provide International support based on the individual site business needs. You'll often hear the need to deliver solutions with a single point of contact. If this describes your organisational needs, buying SD WAN overlay and underlay separately is not possible.

Service providers and integrators partner with Gartner rated SD WAN vendors to offer an end to end solution with DIA connectivity for data and local Internet access, support and delivery under a single contract and invoice. For many businesses, the traditional telco path is their default option due to the ease of buying services.

Direct Internet Access vs Broadband

DIA is the common term for Internet leased lines that offer symmetrical circuit speeds of 10Gbps, 1Gbps and 100Mbps. DIA circuits typically offer robust SLA's (Service Level Agreements) which cover latency, jitter, uptime and delivery timescales. In contrast, Broadband links do not offer the same symmetric performance, uptime, bandwidth and support SLA's. The majority of business Broadband does not offer robust fix times and is notably less reliable vs Ethernet leased lines.

With the above said, Broadband does offer cost savings and an ideal solution for remote users or branch sites where uptime is not critically important. An example use case is retail where the business may require IP connectivity across hundreds of branch sites.

Benefits of a Direct Internet Access strategy vs MPLS

The adoption of SD WAN has become the default choice for most organisations, from small and medium business to large global Enterprises.

For most IT teams, SD WAN is needed to meet the demands of a distributed global remote workforce needing to access their SaaS apps. Simply put, our application traffic is sent to/from public cloud data centres or via the cloud providers own infrastructure. Layer on BYOD (Bring your own device) and multiple hardware platforms from PC through to tablets and even watches, the Internet is the only way to connect these devices. SD WAN delivery and orchestration are made simpler by using cloud servers, which results in faster and more simplified deployment.

How to request Direct Internet Access pricing

The Netify pricing team have created an SD WAN tool to enable your business to set budgets across overlay and underlay. As of writing this article, the tool only supports Versa for SD WAN overlay but 5 service providers are supported for connectivity requirements.

How to add Direct Internet Access security

Security is now the number one comparison area when evaluating SD WAN providers vs your own business policies. Gartner created their SASE (Secure Access Service Edge) framework to identify the key areas IT teams must consider when securing DIA.

These include:

  • URL filtering
  • SSL interception
  • Advanced threat protection
  • DDOS/WAF as a service DNS security
  • CASB (Cloud Access Security Broker)
  • FWaaS ZTNA (Zero Trust Network Access)
What Direct Internet Access bandwidth is available?

An overview of SASE security can be found here. As companies migrate to SD WAN direct Internet access for new sites and from private layer 3 MPLS and layer 2 VPLS, comparing DIA service providers is an essential component of the project. The Internet is now the preferred connection type for the majority of IT teams, with users accessing public cloud applications from almost any location, including home and office. If your IT team has decided to buy SD WAN overlay

Visit the Netify SASE Cybersecurity and SD WAN marketplace.

Get the data points you need to help with your SASE Cybersecurity and SD WAN decision making process.

Learn More

Suggested Posts


Need to know which Cybersecurity solutions match your needs?

The simplest way for IT decision makers to shortlist Gartner SASE security solutions.

Take our quick assessment quiz to find out which top 3 providers or vendors are a match for your answers.

Cybersecurity assessment


Need to know which SD WAN solutions match your needs?

The simplest way for IT decision makers to shortlist Gartner SD WAN solutions.

Take our quick assessment quiz to find out which top 3 providers or vendors are a match for your answers.

SD WAN assessment


Download the SD WAN Buyers Checklist

Download our most popular IT decision makers SD WAN checklist.

At-a-glance data covering all of the key points you need to understand when buying SD WAN.

Global SD WAN Providers Mindmap Checklist-1

Please complete your details to receive the SD WAN IT decision makers checklist.

Download now

Search for Articles

Looking for something specific? Enter your search below to find information from all of Netify.

Subscribe to Notifications

Explore Topics

Popular Article Topics

Find articles and helpful resources about any of the following:

The Netify Learning Centre

Provider and Vendor comparison advice across SD WAN, MPLS, UCAAS and Cloud Voice.

See All Articles

Medivet, CDC Global, British Legion, Permira & Tilney used the Playbook.

We know you're busy, so we've put together this easy-to read guide on the top 10 SD WAN vendors and managed service providers.

Get the most comprehensive research across 10 leading SD WAN solutions. 98 Pages of data to help IT decision makers understand key areas.
Data across Gartner leading solutions, comprehensive SD WAN and Cybersecurity product detail, Pros and Cons, links to the our SD WAN and Cybersecurity shortlisting tools.
Get your top 10 guide and shortlisting tools now.