Optimize Connections with Intelligent Routing

Digital Transformation with SaaS/Cloud


Traditionally most business applications were running on the private servers in the HQ, and MPLS that routes all traffics to the center site made this model quite efficient.

Traditional MPLS topology
Traditional MPLS topology

However, with adopting more and more SaaS and private/public cloud applications, we need new technologies that can efficiently and dynamically route different traffics either to the center site or to the cloud directly.

SD-WAN is the solution to make the complex routing scheme simple and intuitive. Based on traditional load balancing and failover functions, SD-WAN further improves user experience by focusing on interface and application quality.

Auto VPN

DrayTek SD-WAN solution provides the easiest way to setup VPN tunnels from scratch.


  • Select the Hub device
  • Done! VigorACS will automatically create one IPSec tunnel from each Spoke to the Hub.

Full Mesh

  • Done! VigorACS will automatically design and create one IPSec tunnel between each router.

Intelligent VoIP Optimization

From the start of each VoIP call to the end, SD-WAN provides intelligent VoIP optimization.

Based on the Interface quality, SD-WAN intelligently assign the best-quality WAN for VoIP traffics. So whenever making a new call, SD-WAN makes sure you are calling via the best WAN.

VoIP Live Failover

Although already sending via best-quality WAN, SD-WAN still keep monitoring on each live call, and failover to secondary VoIP WAN if still meeting poor call quality.
Every call is logged with MOS score and sent Interface for Network Admin’s reference.

Application Visibility

Gain insights into the data usage across the entire network.

Usage Ranking

In-depth application insights with ranking by application and user ranking

Full Traffic Control with SD-WAN Route Policy

Application/Domain Route Policy

SD-WAN provides complete routing control by allowing Network Admin to specify the desired route for selected applications/domains to make sure the specific routing scenarios can be accomplished.


Failover to another interface when original interface offline,
and failback when possible.

Application Route Policy

Full Control of NAT and Routing

The matched sessions can be NATed or Routed, all under your control. Specially useful if having private/MPLS WAN (requires routed) and direct Internet access (required NATed) at the same time.

In the following scenario, by creating 2 policies to different destinations, VoIP (SIP/RTP) from the same IP phone in branch office can be routed via MPLS WAN when calling the other IP phone in HQ, and NATed via 2nd WAN to the Internet directly.

Components and Topology

Edge Routers Providing Edge Computing
  • Edge routers are physical routers installed in HQ and Branches.
  • Router models selection for different WAN types, including DSL and LTE.
  • Establishing VPN tunnels (IPSec by default) from branches to HQ to form Hub-n-Spoke or Mesh topology.
  • Receiving SD-WAN configurations from VigorACS 3, performing edge computing according to SD-WAN policies, and uploading data to VigorACS3 for monitoring.
VigorACS 3 Server as Orchestrator
  • VigorACS 3 is the central software where network administrators perform configurations, provisioning, and monitoring activity.
  • Multitenant capability made xSP services easy.

Edge Router Models

Vigor2865 Series
Vigor2866 Series
Vigor2927 Series
Wired WAN 1 x RJ-11 DSL WAN (ADSL2 35b)
1 x GbE WAN
1 x RJ-11 DSL WAN (G.Fast)
1 x GbE WAN
2 x GbE WAN
Wireless WAN (Varies by models) Wireless 2.4GHz, Wireless 5GHz, Built-in dual LTE SIM Slot, USB Dongle
VPN Tunnels 32 50
Max. NAT Sessions 60k
Firmware for SD-WAN v4.2.0 or later v4.3.2 or later v4.2.0.1 or later


NETWORK computing

Click the link below to learn the full DrayTek SD-WAN solution