Cloud Security Service is a cloud-hosted security that protects an Enterprise branch and/or data center. The security services include firewalls, URL filtering, and other such services.
Currently, the connectivity from a branch Edge to a cloud service or a Non VMware SD-WAN Site is established through the SD-WAN Gateway. In this model, the SD-WAN Gateway aggregates traffic from multiple branch Edges and securely forwards the traffic to the Non VMware SD-WAN Site.
You can also configure the branch Edge to establish a tunnel direct to the cloud service pop. This option has the following advantages:
- Simplified configuration.
- Saves link bandwidth costs by offloading non-enterprise traffic to the internet.
- The branch sites are protected from malicious traffic by redirecting the Internet traffic to a cloud security service.