Will SD-WAN entirely replace MPLS in 5 years?

No, but the ratio shifts. Critical regulated links (BFSI core, government) keep MPLS. Most other traffic moves. By 2030 most enterprise WAN spend will be SD-WAN-led with MPLS as a premium reliability tier on specific legs.

Is managed SD-WAN better than DIY?

For most enterprises in India, yes — your carrier already has the technology + Indian-context support. DIY makes sense if you have a strong network team and want fine-grained control. Most BFSI run managed; most tech companies DIY.

How do I size a branch broadband for SD-WAN?

Total expected concurrent user traffic + VoIP/video reservation + 50% headroom. A 50-user branch with VoIP, video, and SaaS: 200-500 Mbps primary + LTE backup is typical 2026 sizing. Always provision for the failure case (one path down, all traffic on the other).

Does SD-WAN replace my firewall?

For perimeter security at branches, increasingly yes — modern SD-WAN edges (Fortinet, Cisco Meraki MX) include full NGFW. For data centres and HQ, separate firewalls remain typical. The integrated edge is sufficient for branch sizes; central concentrators justify dedicated firewalls.

What about 5G as primary WAN transport?

Increasingly viable for branches, especially Tier-2/3 cities where fibre is patchy. Indian carriers (Jio, Airtel) offer enterprise 5G with QoS guarantees. Pair with broadband for diversity; do not rely solely on 5G for production-critical traffic until the operator SLA matures further.

How long does an SD-WAN migration take?

For a 50-200-branch enterprise: 9-18 months end to end (planning, pilot, full rollout). The pilot phase (5-10 branches) usually runs 2-3 months; learnings reshape the broader deployment. Plan for parallel-running with MPLS for at least one carrier-billing cycle on each branch.

Will my BFSI regulator object to SD-WAN?

They will scrutinise. Documenting the SLA equivalence (or improvement), the security posture, and the operator track record matters. Many large Indian banks have approved SD-WAN deployments now; the path is well-trodden. The defensible strategy is to keep MPLS on regulated-critical legs and use SD-WAN to lower cost and improve flexibility on the rest.

MPLS vs SD-WAN — Indian Enterprise WAN Architecture

Read as

Last updated: May 1, 2026

MPLS is the legacy carrier-grade WAN — expensive, predictable, low-jitter, with operator-managed L3 VPNs. SD-WAN overlays multiple cheaper transports (broadband, LTE, 5G, MPLS) with software-defined policy, dynamic path selection, and integrated security. The Indian enterprise WAN is migrating fast: every BFSI and large enterprise is at some stage of MPLS reduction + SD-WAN expansion. This module covers MPLS fundamentals, SD-WAN architecture, the major vendors (Cisco Viptela, VMware/Velocloud, Versa, Fortinet), and the realistic migration path.

For two decades, “the corporate WAN” meant MPLS — leased L3 VPNs from Tata, Airtel, Sify, Reliance, BSNL connecting branches to headquarters and data centres. MPLS works well; it is also expensive, slow to provision, and rigidly policy-controlled by the carrier. SD-WAN — software-defined WAN — promises the same predictability over cheaper, more flexible transports plus integrated security. This module covers both worlds and the migration path that most Indian enterprises are now actively executing.

MPLS — what it actually is and why carriers like it

Multiprotocol Label Switching (RFC 3031) attaches small “labels” to packets at the carrier edge. Inside the carrier network, switches forward by label rather than IP — fast, simple, with operator-controlled paths. MPLS L3VPN uses VRFs (Module 13) per customer; each customer’s prefixes live in their own routing table, isolated from other customers on the same physical infrastructure. The customer-facing edge router (CE) talks BGP or static routes to the provider edge (PE); inside the carrier, BGP-VPN distributes routes; LDP or RSVP-TE assigns labels.

Why customers liked itpredictable latency and jitter, SLA-backed, the carrier handles reachability — the enterprise just connects branches and lets the carrier worry about paths.

Why it is being replacedcost (10-20× per Mbps versus broadband), provisioning lead times (weeks for new branches), and inflexibility (carrier-controlled, slow to adapt to traffic patterns).

Want this for your team?

Custom team training + practitioner advisory

Beyond the free academy — we run private workshops, vCISO advisory, and red-team exercises tailored to your stack. For Indian SMBs scaling past their first hire.

Book team training call Replies in 4 working hrs · India-only · Senior consultants

MPLS, SD-WAN, and the Indian Enterprise WAN

MPLS — what it actually is and why carriers like it

Custom team training + practitioner advisory

Other modules in this track

Networking Fundamentals — OSI, TCP/IP, and Why Layers Actually Matter

Packet Analysis with Wireshark — From “Open the PCAP” to Diagnosing Real Incidents

Network Protocols Deep Dive — ARP, DHCP, ICMP, DNS, HTTP and the Trust They Assume