We deployed a new site in our SD-WAN recently and have no throughput problems on it even after activating AMP, IDS/IPS and passing all flows through secure connect. The difference with other sites is that this one contains very few clients, so bandwidth isn't used very much. According to the various feedbacks I've had, it's possible that the secure connect bandwidth is ‘overloaded’ (I can't see it from the console but that's what the support team told me) and that business flows, Microsoft for example, should be passed through local internet breakout. The SD-WAN Plus licence allows you to put categories in the local internet breakout without having to enter all the IPs one by one. The second thing that has improved throughput on our side is the removal of load balancing. Perhaps it will be the same for you. Best regards,
... View more
