| Developers: | BI.Zone (Safe Information Zone, Bison) |
| Date of the premiere of the system: | 2021/03/25 |
| Last Release Date: | 2025/04/15 |
| Technology: | SDN Software-Defined Network Software-Defined Networks |
Content |
The main articles are:
BI.ZONE Secure SD-WAN is a platform for secure network transformation. Ensures the security and stability of distributed data networks, allows you to centrally manage both the network itself and its protection mechanisms, simplifies its scaling and connection of new sites.
2025: Increasing concurrent Internet channels to 8
The BI.ZONE Secure SD-WAN platform has received an update. Companies will be able to improve the reliability, flexibility, and scalability of network infrastructure. BI.Zone announced this on April 15, 2025.
1. Increased number of concurrent Internet channels (NxWANs) on the network server: from 2 to 8
This provides flexibility and resiliency. If one connection fails, traffic is automatically redirected through other available connections, allowing the company's applications and services to run continuously. Another benefit is scalability: New WAN connections can be easily added to a single managed environment without significant infrastructure changes.
2. Ability to configure an SD-WAN network with geographic redundancy of centralized management system controllers
Now you can deploy controllers in different locations, but they will be connected to the same network infrastructure. If the primary controller fails, the standby controller will automatically turn on. This ensures fault tolerance of the network infrastructure, data security and continuity of business-critical services.
3. Ability to build a cluster-failover configuration from two network devices on the same site
If one network device fails, the second will continue to work without stopping services. This is critical for organizations where even minimal system downtime is unacceptable.
Шаблон:Quote 'author=said Dmitry Sakharchuk, Head of Cybersecurity Network Solutions BI.ZONE.
2024: Obtaining certificates of the FSB of Russia
The BI.ZONE Secure platform SD-WAN has become a certified domestic solution that provides cryptographic data protection WireGuard in the network protocol the Russian using cryptographic. algorithms This was BI.Zone announced on September 26, 2024.
Certificates No. SF/124-4981 and SF/124-4982 dated 03.09.2024 confirm the compliance of the BI.ZONE Secure SD-WAN platform with the requirements for cryptographic protection of class KS1 information, as well as the possibility of its use for cryptographic protection (creation and management of key information, authentication, confidentiality and integrity) of information that does not contain information constituting state secrets.
The platform can be used in companies that transmit or receive personal data and other confidential information over the network, subject to protection in accordance with the law. First of all, these are organizations acting as subjects of KII.
The BI.ZONE Secure SD-WAN platform is designed to securely transform the global computing network, allowing you to build distributed corporate networks based on VPN technology. The solution is suitable for organizations with a distributed network of sites managed individually.
2023: Secure SD-WAN version 1.4.0 with split tunneling mode
BI.ZONE on August 3, 2023, it presented an updated version of the SD-WAN class solution.
BI.ZONE Secure SD-WAN is a Russian platform for building a secure network infrastructure between geographically distributed sites. Revisions to version 1.4.0 simplify routine processes and network scaling settings, increase network security, and extend the range of platform-compatible hardware.
BI.ZONE Secure SD-WAN 1.4.0 has improved platform automation scenarios to reduce users' financial costs and the amount of time they spend on repetitive tasks. Thus, the company's specialists added the functions of patterning and grouping firewall settings to the update. This makes working with security policies more convenient. And rule management is now available both using a single template and individually for each firewall. In addition, the updated version has added the functionality of automatic changing of TLS and WireGuard keys. These changes allow BI.ZONE customers to save resource and production costs, as well as minimize routine.
SD-WAN devices are reconfigured regardless of availability. If the hardware was turned off while changing any settings, the configuration is automatically synchronized with the controller when it is turned on. In version 1.4.0, a similar paradigm was applied to security functions - now the configuration of the firewall and subsequent VNFs is guaranteed to be delivered immediately after network connectivity is restored.
BI.ZONE Secure SD-WAN 1.4.0 has expanded the supported range of CyberEdge network servers of BI.ZONE 's own design. Customers can use the BI.ZONE Secure SD-WAN platform on younger CyberEdge models: 50D-4T, 20N-3T and 10B-5T. Support for two LTE connections on CyberEdge hardware was also added.
The larger the network infrastructure of devices, the less resilient it becomes to failure and the greater the risk of human error. To reduce the number of such errors, the BI.ZONE Secure SD-WAN 1.4.0 version has added additional checks and warnings about user attempts to perform actions that may lead to undesirable consequences.
 | In version 1.4.0, in addition to the planned feature updates, features were released for customers already using the solution. Among the capabilities added at the request of customers are port forwarding on WAN interfaces, support for additional DHCP-options and MAC address binding, as well as an increase in the number of supported BGP attributes, - said Alexey Kudryavtsev, head of network solutions at cyber security BI.ZONE. |  |
For more convenient use of Remote Access VPN technology, split tunneling mode appeared in the BI.ZONE Secure SD-WAN 1.4.0 settings. Thanks to it, you can choose which applications will be protected by VPN, and which will connect to the Internet directly. The split tunneling option can be used to speed up access to local services and reduce the load on the VPN server.
Due to the step-by-step configuration utility, the time to create a new installation of the centralized part of the platform was reduced to 30 minutes and can be performed even by specialists who had no previous experience with the solution.
2021
Purpose and Components
When the business expands, IT and cybersecurity departments face the task of scaling the network: this must be done quickly, as well as ensure the reliability and security of data transmission. Solving such problems is the basis of BI.ZONE Secure SD-WAN.
BI.ZONE Secure SD-WAN reduces the cost of providing stable communication with distributed sites, minimizes cybersecurity risks, and reduces the cost of network management and scaling.
BI.ZONE CyberEdge 110 Network Server
- with Router support LTE
- Switchboard
- Firewall
- Mobile Remote Access Server
- Cryptolock
- Wi-Fi Access Point
Data transfer
Data transfer between sites in BI.ZONE Secure SD-WAN is carried out using the WireGuard protocol. To provide protection transmitted data, modern ones are used, algorithms enciphering including GOST.
Features
- Russian SD-WAN solution with built-in security features
- BI.ZONE CyberEdge Native Network Server Line
- Native Management and Routing Protocol
- Centrally configure security policies
- Support for GOST encryption
- Service Model Capability
- BI.ZONE Secure SD-WAN is included in the Register of Russian Software
Solution delivery
- Cloud
- The centralized management system is located in the BI.ZONE cloud. BI.ZONE CyberEdge equipment is delivered to distributed client sites and processes all traffic locally.
- On-Premise
- The centralized management system is located in the client's vdata center. The BI.ZONE CyberEdge equipment is delivered to distributed customer sites and processes all traffic locally.
In any solution delivery option, traffic is not sent to the centralized control system , but is transmitted directly between the BI.ZONE CyberEdge equipment at the client's sites.
View an SD-WAN solution with built-in security features
On March 25, 2021, the strategic digital risk management company BI.Zone introduced BI.ZONE Secure SD-WAN, a Russian SD-WAN solution that supports GOST encryption. The product helps to reduce costs and cope with the limitations of human resources when connecting a new site, as well as prevent leaks of confidential information. This approach is designed to solve the problems of the traditional network, simplify the inventory of IT assets, and ensure more reliable and stable communication between sites.
The product is included in the register of Russian software, so it is suitable even for those companies that keep the course on import substitution and use only domestic solutions. Also, for some organizations, the advantage will be the ability to work according to the service model with outsourcing of network security management tasks.
With BI.ZONE Secure SD-WAN, you can significantly reduce digital risks by simplifying the process of configuring security policies and minimizing the number of points where errors can be made. The more devices in the infrastructure, the less stable it becomes to failures and failures, because due to an accident on one of them, a whole site becomes inaccessible. The product avoids this and ensures the stability of the IT infrastructure.
data protection For those transmitted between sites, BI.ZONE Secure SD-WAN uses current ones, algorithms enciphering including domestic ones. Previously, BI.ZONE specialists developed their own WireGuard protocol specification. You can get acquainted with it on. GitHub
The distributed part of the BI.ZONE Secure SD-WAN product is presented in the form of proprietary network servers delivered to the site. The device replaces all types of network equipment and allows you to optimize performance and costs, as well as automate most manual operations. In addition, the system is resistant to emerging errors both external (failures of communication channels, actions of intruders) and internal (errors of administrators).
BI.ZONE Secure SD-WAN installation does not require special knowledge. To connect the site, you need to take only three steps:
- Create a new site in the management interface from the template
- generate a new device activation link;
- Connect to BI.ZONE CyberEdge via LAN or Wi-Fi and follow the activation link.
Then the network server itself will contact the centralized management system, and within a few minutes the site will be connected.
| | BI.ZONE Secure SD-WAN reduces the cost of providing stable communication with distributed sites. This is facilitated by an intelligent communication channel selection system with the best quality. Our solution minimizes cybersecurity risks with virtual networking features, such as a firewall. We laid the foundation for the principle of simplicity, that is, the solution can be used from the first minutes without deep immersion in the documentation. In addition, BI.ZONE Secure SD-WAN is completely our development, and we have taken care of the quality of each part, "emphasizes Muslim Mezhlumov, director of the BI.ZONE managed services block. | |
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |