WAN redesign

*** Please see network diagram ***

We currently have 4 location (3 in the US, and data center in India)
All locations are currently connected using MPLS (3 Mb) but the contract is ending soon


A. (Data Center in the US) has a Sophos UTM (Firewall) with a VPN tunnel connected to D(India data center)
     and has fiber (150/150) and cable connection (16/3)
B. (Corporate) currently has a cable connection (75/15)
C. (Remote Location) currently has a cable connection (100/7)
D. (India Data Center) "hosted" our ERP program server  and email server

Other then "private networks" (ex: MPLS) and VPN tunnels, via internet connections, are there kind of emerging technologies for WAN connectively?

At corporate(B), we want to have "high availability" to the India data center (D). As the diagram shows, if US data center (A) loses connective, then corporate (B) would also not be able to connect to our ERP or email. Can this be done with by adding something other then a firewall at corporate (B). Note: All internet traffic flows thru US data center(A), for monitoring, which is the reason right now for not connecting corporate (B) directly to India data center (D) via VPN tunnel

Would a mutli - WAN router work for any of this?
Future-Network.pdf
brtl1000sAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Kaiser AnwarCommented:
The issue I see is a single VPN to India and should  be configured with the backup VPN peer just in case the primary one goes down
brtl1000sAuthor Commented:
Actually, a VPN tunnel has been created using the Fiber IP address and the Cable Modem IP address. According to my support team in India, both cannot be "up" at the same time.
gheistCommented:
Find better firewall/ vpn device. VPN in commodity OS-es like Windows server or Linux supports failover included in base price.
kevinhsiehCommented:
From my understanding, there exists VPN configuration from US Datacenter to India Datacenter over both the fiber and cable connections, but only one is active at a time. That is fine.

The corporate office needs to have redundant internet to start with. I have no experience with the Sophos RED devices, but it doesn't look like they cannot connect to the Palo Alto in India. You probably need a Sophos firewall or other device to be able to make a VPN connection directly to both datacenters.

There are  companies that are able to aggregate bandwidth from multiple carriers. I am not sure how they work to protect private data over public networks.

http://www.elfiq.com/
www.talari.com
http://www.fatpipeinc.com/ - I am pretty sure they can handle your private network traffic.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Network Architecture

From novice to tech pro — start learning today.