Deploying SD-WAN in China: The use case for the Asian superpower
On the surface, the business case for SD-WAN is solid: your data and applications virtualized on a secure encrypted overlay, with public IP networks providing the underlay. Frictionless to set up? Fast to deploy? Flexible to upgrade? That’s the theory. But theory isn’t practice.
In reality, an effective SD-WAN rollout depends on a long list of technical decisions and optimizations—so anyone considering it needs to make sure every base is covered. The practicalities of peering, the continuity of connections, administrative hassles of staying within the law where you’re operating in a nation where “following the rules” is very, very important.
Fortunately, there are ways to address each one.
One of today’s most instructive cases is China. A country where every growth-focused enterprise needs to be. But it’s also a market (actually, many regional markets) where government policies and the nature of competition make a huge difference to how an SD-WAN performs.
In this blog, we’ll look at the special case of the Middle Kingdom—and how Expereo solves its challenges.
What are the connectivity challenges for enterprises expanding into China?
China is a “special” place. With a 3,000-year (some say 5,000) history, its norms, rules, and beliefs are very different to those in the West. With all the challenges that implies for market entrants.
It’s developing at breakneck speed—yet the benefits are unevenly spread, concentrated on the coasts. And while its people are among the most connected in the world, their experience of sites and apps can vary wildly from one province to another.
It’s a place where octogenarian grandmothers buy noodles with their phone, and hipsters sell lipstick in conversational channels that encompass media, productivity, and e-commerce too. (WeChat and Weibo, each used by 500m+ people, look like all-in-one super-apps that combine services similar to YouTube, Instagram, WhatsApp, and Facebook.)
Yet it’s also a place where national carriers rarely play well together, content is policed and penalized, and a Great Firewall blocks access to many international websites. It adds up to a true witch’s brew for technical types. But not an insoluble one.
Broadly, the problems are fourfold:
- In-country peering
- International bandwidth
- Local connectivity
- The Great Firewall itself
Challenge #1: In-country peering problems in China
Perhaps the biggest problem—outlined by Expereo’s very own Director of Global Solutions Engineering, Salim Khouri in a webinar—is peering. Or rather the lack of it.
In much of the West, peering is something many customers barely think about. Telcos, datacenters, and T1 ISPs peer without argument thanks to long-established contract models with names like settlement-free and sender-keeps-all. In the PRC, the picture is very different. There’s no cultural precedent for carriers to peer freely for the greater good and many do not.
China Telecom and China Unicom, the country’s terrestrial carriers, aren’t best buddies when it comes to peering. Even between major cities, the resources for traffic handoffs at switching hubs can be extremely tight. A customer in Beijing can enjoy tremendous bandwidth with his office in Shanghai… if his business internet is with China Telecom (CC), and his traffic travels on CT’s infrastructure all the way. If the routing includes a single POP of Unicom? Prepare for a massive drop in the performance stats.
Like so many things in China, it’s a conundrum: in one of the world’s most connected countries, actual network performance can vary wildly.
Of course this isn’t a problem for traditional MPLS, whose whole reason for being was to replicate a circuit-switched model in an IP world with no surprises in the routing table. But for anyone switching to SD-WAN for their China ops, this lack of consistent underlay is the first and biggest problem.
More on how Expereo solves it later. Next: crossing borders.
Challenge #2: International peering and bandwidth from China
In-country peering is a hurdle, thanks to a paucity of agreements between China’s carriers. As you’d expect, international peering has the same problem, magnified.
China’s Big Three: China Telecom, China Unicom, and China Mobile, have immense cultural differences: one an old-school telco, one a deliberate challenger, and one born of waves not wires. So for effective peering to another country—even one with a similar culture and regional proximity, like Singapore—all three need to have separate yet equivalent agreements with a Lion City provider, like SingTel.
At present, such arrangements are rare. Again, there’s a way to improve matters. But before that: let’s look at local connectivity.
Challenge #3: Local connectivity issues in China
Adding to the stack are issues in the local loop. Perversely, it’s an outcome of China’s economic development. There are simply so many local connections, increasingly using high-bandwidth apps like video, that the shared Internet underlay suffers from bandwidth congestion.
And demand is lopsided.
With huge volumes of data exchanged between mobile devices, but with that data passing through hubs connected by glass in the ground, China’s usage stats vary wildly from city to city and time of day. All with the potential to make SD-WAN reliability even worse.
There’s an upside though, the local loop is improving rapidly thanks to massive investment by these SOCs (State-owned Companies.). China’s providers understand this market well.
Challenge #4: The Great Firewall of China
Many people believe the government is the main obstacle to connecting in China. Actually, China’s national content-blocking infrastructure, known as the “Great Firewall”, is the smallest of these challenges.
Beijing simply wants to restrict access to websites it doesn’t like. All telecoms providers—State-owned or independent ISP—must comply with a list it publishes. There’s no point in getting political; China has a walled-garden Internet, and that’s simply the situation.
But while this means Chinese citizens can’t access Google or Facebook—indeed, few Chinese people have even heard of them—enterprise applications and databases, information within a business, will rarely have problems. The Great Firewall is largely about control over consumer information sources, not business ones. A foreign enterprise using SD-WAN to connect its Shenzhen outpost with its head office in Sydney will rarely find the Great Firewall troublesome.
Now that we have an understanding of where the challenges lie, let’s explore the solutions available to enterprises.
Connectivity in China resolved: DIA with owned hubs and Chinese local loop
Expereo has developed a solution designed to overcome all four connectivity challenges, called China Premium. And it’s working for several customers in the PRC already, providing Dedicated Internet Access (DIA) with reliable bandwidth and uptime without the peaks and troughs of peering issues.
But how does it work?
It starts with owned hubs. With China Premium underlaying your SD-WAN overlay, your traffic is routed through Expereo POPs at our own hubs. Of course, all our hubs peer effectively with each other. Which leaps the biggest hurdle of problematic peering.
But this solution can’t exist in a vacuum. So the local loop is provided by China’s State providers, China Telecom and China Unicom, doing what they do most effectively: providing bandwidth to devices on their network, including devices on your SD-WAN.
Each local loop, however—while compliant with the Great Firewall—terminates at a China Premium hub, providing dedicated connectivity both within and beyond China. And customer access? It’s DIA with all the service quality and guarantees that implies. It’s the best of both worlds.
And the performance stats confirm it. Our Shanghai customers now enjoy China Premium and their latency is nearly six times lower, at 80ms. And the packet drop? Zero.
Ready to combine a great overlay with a great underlay with China premium?
China Premium solves these great problems simply and effectively, combining local expertise with international experience. And it means a true performance-par (and performance-beating) MPLS replacement within China is now possible for any enterprise operating in the Middle Kingdom.
With China Premium, Expereo once again shows effective SD-WAN is all about the underlay. And we’d like to demonstrate that underlay to you.
For more information, get in touch today.