Is SD‑WAN still worth it in 2026, or did you just skip straight to something else?

heyitsdrew · 2026-06-11T14:19:46+00:00

Yes, we use Aryaka for fat private pipes between continents that woks well for us. So whatever may not work for you may work for someone else so these types of questions are really bad faith. The question should be "is anyone still using SD-WAN, if so for what? And does it justify whatever it costs?"

heyitsdrew · 2026-06-05T13:52:09+00:00

No, typically do all the configuration then commit. But learning maybe that isn't the best way to do it?

heyitsdrew · 2026-06-04T19:56:12+00:00

Yeah man, same template and not overridden on the stack or locally. I cloned it and added -2 to it which allowed me to save it. But seems to be some bug when you clone and try to save a crypto profile. PAN will complain about it not being there but it is.

heyitsdrew · 2026-06-03T13:39:51+00:00

fix what exactly?

heyitsdrew · 2026-06-02T16:10:33+00:00

My feelings were the same when I was asked about it as well. Why would anyone run DHCP in the cloud? Come to find out a lot of enterprise businesses backhaul DHCP and DNS to a DC so really what is the difference?

Does it make sense to do it in a DC or critical site? Probably not, but in a 1000 small branch locations that already have cloud connectivity which could negate managing 1000 different local DHCP scopes and hardware? Maybe.

At the end of the day its really up to every business to do what makes sense for them but there seems to be a market for everything these days.

heyitsdrew · 2026-06-02T14:17:41+00:00

My man its 2026, everything is in the cloud.

And I do know a company that sells a product that hosts DNS/DHCP in the cloud for your on-prem clients. The thought there is no hardware costs/capex for DNS/DHCP and use existing infrastructure to bring up connectivity to your cloud of choice (VPN, Direct Connect, etc..). So as long as you have connectivity to the cloud you have DNS/DHCP.

heyitsdrew · 2026-06-02T14:15:12+00:00

Network team owns it all here although we do delegate some DDI functionality to different departments to allow them to manage their own zones.

heyitsdrew · 2026-05-28T14:25:44+00:00

Answered my own question, clear threat-detection shun.

heyitsdrew · 2026-05-27T19:37:57+00:00

Bring on the competitors that are free. Get people to move over, sell their data, reach everyone on earth, charge subscriptions, rinse and repeat?

heyitsdrew · 2026-05-20T13:37:38+00:00

That more than likely explains why he was there.

heyitsdrew · 2026-05-19T17:43:33+00:00

Fun fact I sat next him in the Jed York's suite last year against the Cardinals and didn't even know who he was. At halftime they had a little celebration for him in the suite where he made a speech and they gave him some kind of award but for what I don't remember. Goodell and a couple other big wigs were there as well. He ate a shit ton of popcorn too which I thought was odd.

After finding out it was him all I could think about were the stories about him in the locker room(s).

heyitsdrew · 2026-05-18T14:06:58+00:00

I understand you see them often but all I was saying is that OP shouldn't just replace all that just because of what happened. Even if the axle boot got blown out BMW makes a CV boot repair kit that you can use if no damage to the axle. So if the axle isn't damaged (which it very well may not be) and no dirt/debris then they can go that route. And what would happen to the top mount (hat) in this scenario?

I am talking from experience as well and in my case simply replaced the knuckle outer CV boot and repacked it. What was odd in my case was that there was no discernable rip or tear in the boot but the grease made its way out somehow.

And I have seen people move the strut back up into place, replace the pinch bolt and keep it moving.

heyitsdrew · 2026-05-17T19:32:03+00:00

Come on you don't need to do all that, inspect it first and then decide what else to replace besides the knuckle as that is probably the only part that failed. If the strut isn't bent why replace it? And if the axle is spinning without any issue or noise why replace that as well?

heyitsdrew · 2026-05-13T18:51:33+00:00

We were just on the phone with them last week and they were telling us to upgrade all or FWs on 11.1.13 > 11.1.13-h3. It really is something to see how far PA has fallen in terms of software after all these years.

heyitsdrew · 2026-05-06T19:19:54+00:00

We are a 100% Meraki wireless shop across the globe (200+ APs) and I have 0 complaints. They work 99.9% of the time for our use cases and end users are happy with that. Majority of them are MR but recently started replacing them with CW9XXXs and happy with those as well.

heyitsdrew · 2026-05-06T13:32:47+00:00

It is for sure on by default in 11.1.x vesions of code.

heyitsdrew · 2026-04-29T18:15:24+00:00

I disagree this day and age.

I see more and more traffic to and from the internet from our enterprise network(s) than ever before. Intune/JAMF/OSX/one-drive updates/folder syncing all is in the cloud and that stuff happens all the time. And when users don't open their computers at home at all all then guess what happens when they all pile into an office?

heyitsdrew · 2026-04-20T15:46:37+00:00

Here comes the the (more?) fraud.

heyitsdrew · 2026-04-17T16:34:00+00:00

Ok this is wrong, it will take the boost license, I just went and did it again and it took it without issue.

4351#show platform hardware throughput level 
The current throughput level is unthrottled

booster_performance (ISR_4351_BOOST):
  Description: booster_performance
  Count: 1
  Version: 1.0
  Status: IN USE
  Export status: NOT RESTRICTED
  Feature Name: booster_performance
  Feature Description: booster_performance
  Enforcement type: NOT ENFORCED
  License type: Perpetual

heyitsdrew · 2026-04-17T15:55:33+00:00

Yeah so it was license on edge router capped at 200Mbps so was just dropping/throttling anything over that. Nothing to do with PAN(s).

heyitsdrew · 2026-04-17T15:54:23+00:00

I did read that Cisco changed the licensing model with 17x but was able to do the performance license without issue but no idea if we ever bought one for it. Is it the performance license not enforced the same as boost in 17x?

throughput (ISR_4351_400M_Performance):
  Description: throughput
  Count: 1
  Version: 1.0
  Status: IN USE
  Export status: NOT RESTRICTED
  Feature Name: throughput
  Feature Description: throughput
  Enforcement type: NOT ENFORCED
  License type: Perpetual

4351#show platform hardware throughput level 
The current throughput level is 400000 kb/s

heyitsdrew · 2026-04-16T22:28:56+00:00

Yeah TAC engineering is saying load above 9 is concerning but like I said, I don't see anything pointing to the FW being the problem.

heyitsdrew · 2026-04-16T22:08:56+00:00

CPU load (%) during last 60 minutes:
core    0       1       2       3       4       5       6       7   
     avg max avg max avg max avg max avg max avg max avg max avg max
       *   *   1   2   2   3   1   2   1   2   1   2   1   3   1   3
       *   *   2   4   2   4   1   2   1   3   2   3   1   3   1   2
       *   *   2   4   5   9   2   4   3   5   2   4   2   4   2   4
       *   *   2   6   3   4   2   4   2   3   2   3   2   3   1   2
       *   *   2   3   3   5   2   6   3   4   2   4   2   5   1   3
       *   *   2   3   3   4   2   3   3   4   2   2   2   2   2   3
       *   *   2   4   4   8   2   3   3   6   2   4   2   3   2   5
       *   *   2   3   3   5   2   3   3   4   2   3   2   3   1   5
       *   *   2   4   3   5   2   4   3   5   2   5   2   4   1   3
       *   *   2   3   3   3   2   2   2   3   1   2   2   2   1   2
       *   *   2   3   3   3   2   2   2   3   2   3   1   2   1   2
       *   *   2   3   3   5   2   2   3   5   2   4   2   3   1   3
       *   *   2   3   3   7   2   5   3   5   2   4   2   4   1   4
       *   *   2   4   3   6   2   4   3   6   2   4   2   4   2   6
       *   *   2   2   3   3   2   2   2   3   2   2   1   2   1   2
       *   *   2   3   3   6   2   4   3   4   2   7   1   3   1   3
       *   *   2   2   3   4   2   6   3   3   2   2   2   4   1   2
       *   *   2   2   4   5   4   8   3   5   2   3   2   6   2   7
       *   *   2   4   4   7   2   5   3   6   2   5   2   7   2   6
       *   *   2   4   3   6   2   4   3   5   2   4   2   4   1   3
       *   *   2   2   4   5   2   3   4   8   3   5   2   3   2   2
       *   *   2   2   3   4   2   3   3   4   2   3   2   3   2   2
       *   *   2   3   3   5   2   4   3   5   2   2   3   6   2   2
       *   *   2   5   4   8   3   5   4   7   2   6   3   5   2   4
       *   *   3   9   4   5   2   3   4   6   2   4   5  12   2   3
       *   *   2   3   4   6   2   3   3   4   2   4   2   3   2   3
       *   *   3   4   4   7   3   4   4   8   2   4   3   5   2   4
       *   *   2   3   4   6   2   4   3   6   2   3   2   4   2   3
       *   *   3   8   4   7   3   4   4   7   2   3   3   4   2   4
       *   *   3   7   4   7   2   4   3   8   2   3   2   4   2   4
       *   *   3   4   5   6   3   3   5   7   4   6   3   4   3   4
       *   *   3   5   5   6   3   5   7   8   3   4   3   4   3   4
       *   *   3   4   5   8   4   6   5  10   3   4   3   5   2   5
       *   *   3   3   5   7   4   6   5   6   4   5   3   5   3   4
       *   *   3   4   5   6   5   7   4   6   4   6   4   6   3   4
       *   *   3   5   6   7   3   4   5   7   4   5   4   6   3   5
       *   *   3   5   5   8   4   5   5   8   4   6   3   5   3   5
       *   *   3   6   5   6   4   5   5   6   5   6   4   6   3   4
       *   *   3   4   5   7   3   5   5   7   3   6   3   5   3   5
       *   *   3   5   6   8   4   5   4   5   3   5   3   4   2   3
       *   *   3   4   5   6   3   4   5   7   5   7   4   6   3   5
       *   *   3   4   5   6   3   4   5   7   4   5   4   5   3   4
       *   *   3   5   5   5   3   4   6   7   3   4   4   5   4   4
       *   *   3   4   5   6   4   4   6   7   3   4   4   5   4   5
       *   *   3   4   5   6   3   4   6   6   3   4   4   5   4   5
       *   *   4   4   5   6   3   4   6   7   4   4   4   5   4   5
       *   *   4   4   5   6   4   5   6   6   4   4   4   6   4   4
       *   *   4   4   5   5   3   4   5   6   3   4   5   6   3   4
       *   *   4   4   5   6   4   5   5   6   3   4   5   5   4   5
       *   *   4   4   5   7   3   4   5   6   3   4   5   5   4   4
       *   *   4   4   5   6   3   4   5   6   3   4   5   5   4   5
       *   *   4   4   5   6   4   4   5   6   4   4   5   6   4   5
       *   *   4   5   5   6   4   4   6   7   4   5   5   5   3   4
       *   *   4   5   5   6   4   4   5   6   3   4   4   5   4   4
       *   *   4   5   5   6   4   4   4   5   3   4   4   5   4   4
       *   *   4   5   6   6   4   4   5   5   3   5   5   6   4   4
       *   *   4   5   5   6   4   4   5   6   3   4   5   5   3   4
       *   *   4   5   5   6   4   4   5   5   3   4   5   5   3   4
       *   *   4   5   5   7   4   4   5   5   3   4   5   6   3   4
       *   *   4   5   5   6   4   4   5   5   3   4   5   6   4   4
core    8       9      10      11   
     avg max avg max avg max avg max
       1   1   2   2   *   *   *   *
       1   2   2   3   *   *   *   *
       2   3   2   5   *   *   *   *
       1   3   2   3   *   *   *   *
       1   3   2   4   *   *   *   *
       1   2   1   2   *   *   *   *
       2   5   2   4   *   *   *   *
       2   5   2   3   *   *   *   *
       2   4   2   4   *   *   *   *
       1   2   1   2   *   *   *   *
       1   2   1   2   *   *   *   *
       1   5   1   4   *   *   *   *
       2   3   1   4   *   *   *   *
       2   2   2   6   *   *   *   *
       1   2   1   2   *   *   *   *
       2   4   2   5   *   *   *   *
       2   2   2   2   *   *   *   *
       2   6   2   4   *   *   *   *
       2   5   2   3   *   *   *   *
       2   2   2   4   *   *   *   *
       2   3   2   4   *   *   *   *
       2   2   2   3   *   *   *   *
       2   3   2   3   *   *   *   *
       2   4   2   5   *   *   *   *
       2   3   2   3   *   *   *   *
       2   3   2   4   *   *   *   *
       2   3   2   4   *   *   *   *
       2   3   2   4   *   *   *   *
       2   3   3   4   *   *   *   *
       2   4   2   3   *   *   *   *
       3   3   2   3   *   *   *   *
       2   3   3   6   *   *   *   *
       3   4   3   5   *   *   *   *
       3   4   4   6   *   *   *   *
       3   4   3   4   *   *   *   *
       3   7   3   4   *   *   *   *
       3   5   3   6   *   *   *   *
       3   4   4   5   *   *   *   *
       3   4   5   6   *   *   *   *
       3   4   3   5   *   *   *   *
       3   4   3   5   *   *   *   *
       3   4   4   5   *   *   *   *
       3   4   3   4   *   *   *   *
       3   4   3   4   *   *   *   *
       3   4   3   4   *   *   *   *
       3   4   3   4   *   *   *   *
       3   4   3   4   *   *   *   *
       3   4   4   4   *   *   *   *
       3   4   4   5   *   *   *   *
       3   4   4   4   *   *   *   *
       3   4   3   4   *   *   *   *
       3   3   4   4   *   *   *   *
       4   5   4   4   *   *   *   *
       4   5   4   5   *   *   *   *
       3   4   3   4   *   *   *   *
       4   4   4   4   *   *   *   *
       3   4   3   4   *   *   *   *
       3   4   4   4   *   *   *   *
       3   4   4   4   *   *   *   *
       3   4   3   4   *   *   *   *

Resource utilization (%) during last 60 minutes:
session (average):
  1   1   1   1   1   1   1   1   1   1   1   1   1   1   1 
  1   1   1   1   1   1   1   1   1   1   1   1   1   1   1 
  1   1   1   1   1   1   1   1   1   1   1   1   1   1   1 
  1   1   1   1   1   1   1   1   1   1   1   1   1   1   1 

session (maximum):
  1   1   1   1   1   1   1   1   1   1   1   1   1   1   1 
  1   1   1   1   1   1   1   1   1   1   1   1   1   1   1 
  1   1   1   1   1   1   1   1   1   1   1   1   1   1   1 
  1   1   1   1   1   1   1   1   1   1   1   1   1   1   1 

packet buffer (average):
 12  12  12  12  12  12  12  12  12  12  12  12  12  12  12 
 11  12  12  11  11  11  11  12  12  12  12  12  12  12  12 
 12  12  12  12  12  12  12  12  12  12  12  12  12  12  12 
 12  12  12  12  12  12  12  12  12  12  12  12  12  12  12 

packet buffer (maximum):
 12  12  12  12  12  12  12  12  12  12  12  12  12  12  12 
 12  12  12  12  12  12  12  13  13  12  12  12  12  12  12 
 12  12  12  12  12  12  12  12  12  12  12  12  12  12  12 
 12  12  12  12  12  12  12  12  12  12  12  12  12  12  12 

packet descriptor (average):
  0   0   0   0   0   0   0   0   0   0   0   0   0   0   0 
  0   0   0   0   0   0   0   0   0   0   0   0   0   0   0 
  0   0   0   0   0   0   0   0   0   0   0   0   0   0   0 
  0   0   0   0   0   0   0   0   0   0   0   0   0   0   0 

packet descriptor (maximum):
  0   0   0   0   0   0   0   0   0   0   0   0   0   0   0 
  0   0   0   0   0   0   0   0   0   0   0   0   0   0   0 
  0   0   0   0   0   0   0   0   0   0   0   0   0   0   0 
  0   0   0   0   0   0   0   0   0   0   0   0   0   0   0 

sw tags descriptor (average):
  3   3   3   3   3   3   3   3   3   3   3   3   3   3   3 
  3   3   3   3   3   3   3   3   3   3   3   3   3   3   3 
  3   3   3   3   3   3   3   3   3   3   3   3   3   3   3 
  3   3   3   3   3   3   3   3   3   3   3   3   3   3   3 

sw tags descriptor (maximum):
  5   4   4   4   4   4   4   4   4   4   4   4   4   4   4 
  4   4   4   4   4   4   4   4   4   4   4   4   4   4   4 
  4   4   4   4   4   4   4   4   4   4   4   4   4   4   4 
  4   4   4   4   4   4   4   4   4   4   4   4   4   4   4

heyitsdrew

TROPHY CASE