Netify have released our 2024 SD-WAN comparison blog article

HPE Aruba SD WAN & SASE Cybersecurity Solutions

Sector, Company Type, and Location:Healthcare  |  Retail  |  Education  |  Financial Services  |  Government  |  Hospitality  |  Sport  |  Vendor  |  Europe  |  Asia  |  South Africa  |  UK  |  North America  |  Africa
Tags & Search Filters:SD WAN  |  ZTNA  |  DIY SD WAN services  |  Internet leased lineand 9 more tags  |  FWaaS  |  MPLS  |  Security service edge  |  Next-Generation Firewalls  |  Featured on Gartner  |  WAN optimisation  |  Global private backbone  |  Network Virtualiaation  |  Support for 4G/5G

The HPE Aruba SD-WAN edge platform replaces conventional routers, unifying SD-WAN, firewall, segmentation, routing and application visibility and control in a single platform.

HPE Aruba SD WAN & SASE Cybersecurity Solutions

HPE Aruba SD WAN Solution: Comparisons, Review, Benefits, Use Cases, Pros & Cons

Author: Netify Research Team

If you have questions about HPE Aruba and how their capability is aligned to your needs, email the Netify research team. UK: North America:

(Please use the UK email for ROW - Rest of the World - questions or inquiries)

Resources and Downloadable Content

Request the very latest HPE Aruba SD WAN & SASE sales PDF directly from your local account team. Please check your junk folder if not received.

Complete your details to arrange a demo of HPE Aruba. You will receive contact requesting available dates and times - please check your junk folder if not received.

Request your local in-country sales contact. You will receive details as soon as possible - please check your junk folder if not received.


Netify Review

Good choice for clients looking to optimize their WAN across large, global networks, due to HPE Aruba’s known ability to offer support for complex services using their wide range of powerful features. These features may be excessive for small-medium national businesses.

HPE Aruba does not offer their own SASE security solutions, therefore meaning that businesses will have to seek SASE from a third party. However, HPE Aruba is known to integrate well with their SASE partners (Zscaler is an example) enabling them to provide a single seamless end-to-end solution. Further, HPE Aruba have a strong history with WAN optimization, making them a good choice for companies who are already using the technology but are interested in boosting it’s performance.

Marketplace Assistance

Are you an IT decision maker building your own SD WAN or SASE Cybersecurity shortlist?

Take our 90 second assessment quiz to find out which top 3 vendors or managed providers are a match for your answers.


About HPE Aruba

HPE Aruba is a North American SD WAN vendor based in California. They also offer solutions in Europe, the Middle East, Africa, and Asia-Pacific Countries. HPE Aruba delivers support across hybrid WAN architectures, including DIA, MPLS and VPLS. They offer SD WAN solutions such as WAN Optimization, WAN Edge Security (not SASE) and Cloud App Performance solutions. These solutions include their Aruba EdgeConnect, Aruba Orchestrator and Aruba Boost WAN Optimization products (See What is the HPE Aruba SD WAN Solution?). The company was formerly known as Silver Peak before its acquisition by Aruba (Hewlett Packard Enterprise Company) and is predicted by Gartner to have over 2000 SD WAN customers, focusing its product offering towards large global firms. HPE Aruba is noted to be a good fit for complex requirements due to the comprehensive features offered by their SD WAN platform. Services are procured mainly via their partners due to the expertise required to deliver solutions. For the fifth consecutive year, HPE Aruba was named a Leader in the 2022 Gartner® Magic Quadrant for SD WAN.

Pros & Cons

What are the pros and cons of HPE Aruba SD WAN & SASE Cybersecurity?

List of the pros and cons associated with HPE Aruba SD WAN and SASE security.


  • Native support to Amazon VPC as an AWS Transit Gateway Partner.
  • EdgeConnect software available from Microsoft Azure Marketplace. 
  • HPE Aruba are widely known for their ability to deliver WAN Optimization solutions. This is available via their Aruba Boost (See, What is the HPE Aruba SD WAN Solution?).
  • Ensures diversity & resiliency with uptime offering sub-millisecond failover.
  • Offers support for complex services via a feature rich capability.


  • Heavy reliance on third party partners for service management and security.
  • Limited functionality and resources allocated to remote users.
  • Limited support in Europe, Africa and Asia due to lean presence in these markets.

Comparison: HPE Aruba vs VeloCloud vs Viptela SD WAN & security

Consider the points below to compare HPE Aruba vs VeloCloud vs Viptela SD WAN and SASE security.

HPE Aruba

  • HPE Aruba is a suitable choice for clients with complex requirements. 
  • HPE Aruba offer SD WAN and SASE with managed services from MSP partners. 
  • HPE Aruba offers connectivity to AWS, Azure, Oracle Cloud and Google Cloud. 


  • VeloCloud can support Small-Medium Enterprises as well as large multinational corporations with over 1,000 sites. 
  • VeloCloud offer SD WAN. Their SASE solution is offered via an OEM agreement with Menlo Security.
  • VeloCloud's offering is fully integrated with AWS and has connectivity to Azure built-in. Connectivity to Google Cloud is also offered. 


  • Viptela is more aligned with large enterprises with the resources to utilize the solution effectively. 
  • Viptela's SD WAN offering can be deployed physically, virtually or from the cloud. Their SASE solution can be deployed on-site of via the cloud. 
  • Viptela cloud interconnect uses a cloud-agnostic backbone to connect site-to-site and multi-cloud services. 

Similar Vendors

Top 3 similar SD WAN Vendors

Click the Vendors logo to find out more about each respective SD WAN solution.


What is the HPE Aruba SD WAN Solution?

HPE Aruba’s SD WAN solution is primarily comprised of three main components: 

Aruba EdgeConnect is HPE Aruba’s SD WAN solution. This can be implemented as either physical or virtual appliances, which allows it to support most public clouds (Refer to How Does HPE Aruba Access Cloud Vendors?). Aruba EdgeConnect supports hybrid WAN architecture, which includes: DIA, MPLS, VPLS and all underlay types. 

The second major component of the HPE Aruba SD WAN solution is the Aruba Orchestrator. This part of the solution is designed to act as a central administration console, providing insight into legacy and cloud applications. The orchestrator uses business intent (See, Business Intent Overlays) to assign policies that secure and control all WAN traffic in the network. It also features policy automation, which creates a more efficient deployment of multiple branch offices, enabling consistent policies across applications.

The final component is Aruba Boost. This is an optional WAN Optimization performance pack, which is designed to improve the performance of latency-sensitive applications such as VoIP, whilst reducing the transmission of repetitive data across the WAN, all combined into a single SD WAN platform (See, Pros list). 

The Silver Peak SD WAN offering includes a number of key features, which include: 

Configuration-Based Key Features:

  • Business Intent Overlays: HPE Aruba’s Business Intent Overlays are built on an application-specific virtual WAN overlay model. This means that each overlay has it’s own specific bonding policy, and clients are able to customize link prioritization and traffic steering policies based on various different criteria. 
  • Tunnel Bonding: This allows users to configure multiple physical WAN transport services, forming a single logical overlay connection. 
  • Routing: HPE Aruba supports Layer 2 and Layer 3 open networking protocols which include; VLAN (802.1Q) , LAG (802.3ad), IPv4 and IPv6 forwarding, GRE, IPsec, VRRP, WCCP, PBR, BGP (version 4), OSPF.

Security-Based Key Features:

  • Intrusion Detection Service (IDS)/Intrusion Prevention Service (IPS): HPE Aruba offer their First-packet iQ Application Classification security product, which is designed to identify applications on the first packet and deliver trusted SaaS and web traffic directly to the internet, whilst diverting unknown and suspicious traffic to the data center firewall or IDS/IPS.
  • Zone-Based Stateful Firewall: is a firewall-based granular security policy, which is able to create end-to-end zones that can be used for multiple application groups, users and virtual overlays. This allows HPE Aruba to push configuration updates to sites in line with business intent, using simple templates to create unique zones that enforce granular perimeter security policies across LAN-WAN-LAN and LAN-WAN-Data Center user cases.
  • WAN Hardening: HPE Aruba offers WAN hardening to secure branch offices. This means that each WAN overlay is secured edge-to-edge via 256-bit advanced encryption standard (AES) encrypted tunnels - with the option to deploy Aruba EdgeConnect direct to the internet without the need for multiple dedicated firewalls.
  • IPSec: the Aruba EdgeConnect product offers Automated integration and orchestration. This enables enterprises to automate and accelerate the integration of HPE Aruba security partner’s advanced services, that include: Check Point, Forcepoint, McAfee, Netskope, Palo Alto Networks, Symantec, Zscaler, and secure DNS (e.g. Infoblox), all of which utilize private secure encrypted IPsec tunnels.

Performance-Based Key Features:

  • Local Internet Breakout: HPE Aruba’s First-Packet iQ product is designed to eliminate wasted bandwidth and performance bottlenecks, by enabling intelligent traffic steering. 
  • Cloud Intelligence: offers clients real-time updates on the best performing path to reach a wide range of Software-as-a-Service (SaaS) applications. The platform chooses the most efficient way to connect users into the SaaS, whilst also providing automated daily updates of the application, IP address database. Because of this, Aruba EdgeConnect makes sure appliances can keep pace with SaaS and web address changes. 
  • Path Conditioning: designed to boost application performance, path conditioning creates performance levels similar to a private-line, delivered over the public internet.
  • High Availability: Aruba EdgeConnect provides fault tolerance on both WAN (network) and equipment sides. These appliances are connected using a High Availability (HA) by allowing tunnels over each underlay.
Service Providers

Which service providers offer HPE Aruba SD WAN and SASE cybersecurity?

Filter by tag, location, and service type:
(Select any number of tags)

EuropeAsiaSouth AfricaUKNorth AmericaAfricaSD WANZTNADIY SD WAN servicesInternet leased lineFWaaSMPLSFile analysisSecurity service edgeCloud workload protection

What is the HPE Aruba SASE security solution?

Aruba offer their Aruba Edge-to-Cloud Security service, which offers clients zero trust and SASE frameworks. The Aruba SASE service offers clients Unified Threat Management and Dynamic Segmentation, with web filtering, IDS and application-aware firewalls for SD WAN and integration with cloud security vendors. The Aruba EdgeConnect SD WAN solution (see, What is the HPE Aruba SD WAN solution?) integrates with cloud security vendors to make cloud-based security services easier to introduce to pre-existing network and security infrastructures. SASE also includes Zero Trust Network Access (ZTNA), Cloud Access Security Broker (CASB), Firewall as a Service (FWaaS), Secure Web Gateway (SWG), obfuscation/privacy services and threat prevention/detection. Further security products include:

  • Zero Trust Security: Aruba Zero Trust Security is designed to enforce the same controls for campus and branch networks and extend them to remote workers. The solution allows clients to enable IT access using identity and roles, whilst customizing access privileges as needed based on real-time threat data and offers visibility into the network. Zero Trust Security for SD WAN extends from the Edge to the cloud and offers clients security for branch locations with dynamic segmentation, Intrusion Detection Systems and Intrusion Prevention Systems (IDS/IPS) and a built-in firewall.
  • Edge Services Platform (ESP): Aruba ESP allows organizations to adopt an end-to-end network architecture with SD WAN, switching, AIOps and WLAN with built-in security. The solution leverages SASE and Zero Trust security foundations. 
  • Aruba ClearPass Policy Manager: The Aruba ClearPass Policy Manager is designed to integrate with third-party security architectures, with the ability to automatically update solutions and change access rights when a user or device connects to the network. ClearPass Policy Manager is also designed to secure IT resources using role-based access policies, continuous attack response and centralized user and device authentication. 
  • Unified Threat Management for SD WAN: Offers Edge and cloud-based security controls for improved performance and lowered costs for cloud and broadband connections. 
  • Device Discovery and Profiling: ClearPass Device Insight offers visibility into unidentified and unmanaged devices accessing a client’s network. 
  • Policy Enforcement Firewall (PEF): Aruba offer clients their next generation role-based user, device and application PEF. This offers users automated Dynamic Segmentation functionality in ant Aruba environment for wired and wireless access security. 
  • Aruba Central: Aruba Central is a cloud networking solution that serves as a central management and orchestration console for Aruba ESP. The service provides visibility into branch, campus and remote office locations. The solution includes a security dashboard with threat intelligence data, IDS/IPS alerts and the capability to correlate with incident management capabilities.

Funding Rounds

Cloud Vendors

How does HPE Aruba access cloud vendors?

HPE Aruba’s offering is able to access Cloud vendors through third parties such as, Oracle Cloud, AWS, Azure or Google’s Cloud Platform. HPE Aruba offers the ability to activate Aruba Orchestrator, Aruba EdgeConnect and Aruba VX facilities directly into the Azure backbone via the Azure marketplace. HPE Aruba is also an AWS Transit Gateway Connect and Network Manager Partner. HPE Aruba is able to deploy applications and new use cases in a simple and coherent manner through its integration with cloud vendors. HPE Aruba’s offering benefits from an exceptionally high bandwidth between EdgeConnect and AWS Transit Gateway. AWS Transit Gateway Network Manager can be used for branch automation, and Amazon VPC offers native support for EdgeConnect.

Cloud Access

Cloud Access

Amazon Web Services25
Microsoft Azure25
Google Cloud25
Oracle Cloud25
WAN Acceleration and Optimization

Does HPE Aruba offer WAN acceleration and optimization?

HPE Aruba offers WAN acceleration and optimization through the optional Aruba Boost performance package. Aruba Boost increases latency by encompassing multiple networks under a single SD WAN network to improve performance.

Remote Users

How does HPE Aruba support remote users?

HPE Aruba does not include particular support for remote users however it is recommended to use Aruba Boost in areas where the client site is remote or at a large distance from the company’s datacenter to negate the effects of high latency. Aruba Boost is flexible so WAN optimization does not have to cover the full network.

Managed, co-managed & DIY services

What is the HPE Aruba managed, co-managed and DIY services solution?

HPE Aruba offers primarily DIY managed SD WAN, with the deployment and installation of SD WAN solutions provided by partner resellers such as Axians and Xalient. HPE Aruba’s offering can be co-managed by service provider partners such as NTT Global or Verizon. HPE Aruba do not provide a managed services solution and instead rely on service partners. 




What Reporting and Management is available via the HPE Aruba Portal?

The HPE Aruba portal is web based and enables customers to access technical specs, software updates and an online knowledge base. The HPE Aruba portal tracks SaaS provider network traffic and integrates Azure vWAN and AWS transit gateway manager. Support access is included as part of the EdgeConnect license. The HPE Aruba portal offers historical reporting and real time monitoring, via single screen administration, with the capability to produce bandwidth costs savings reports. The features and functionality of the HPE Aruba portal are further enhanced when used in conjunction with Microsoft Azure Virtual WAN or AWS Transit Gateway Network Manager.

Years Active

Number of years trading

HPE Aruba20
Cisco Viptela10
Cisco Meraki16
Service Level Agreement

What is the HPE Aruba SLA?

Below is a table displaying the main focus points of the HPE Aruba Service Level Agreement (SLA).

Priority (P1-P4)




A total or partial loss of key operational functions.

Up to 30 minutes 


The network experiences issues which hinder operations but do not cause a total loss of services. 

Up to 60 minutes 


A significant loss of performance which may require additional tweaking. Can also be a critical or major issue that happens in an idle or controlled test environment. 

Up to 4 hours 


Standard support issues. 

Up to 24 hours 

Frequently Asked Questions
HPE Aruba Service Providers
What is the HPE Aruba SD WAN architecture?
Ask a question

Send your local contact from HPE Aruba a message, this form will reach HPE Aruba directly.

Contact HPE Aruba
Complete the form to get in touch with a representative from HPE Aruba.

Download the the complete guide to 10 SD WAN solutions.

The most comprehensive top 10 guide we have ever created.

Similar Companies

There are no results matching your selection.


Deployment Region

North America42%
Europe, Middle East and Africa30%
Latin America8%
Proposition Focus

Proposition Focus


Industry Coverage


Other Focus

Remote users2
AWS Integration8
Site Deployment8
List your business

List your business with Netify Learn More →


Geographic Focus


Please complete the form to ask a question or send a message directly to HPE Aruba. Netify have carefully curated global sales contacts based on your IP location. If you do not receive contact, please check your junk folder.

Book a demo of the HPE Aruba SD WAN and SASE security capability over Zoom or Teams. Learn about their management portal, deployment, SLA and support. You will receive an email asking for times/dates, please check your junk folder if not received.

A Netify Vendor Briefing is a 30 minute Zoom research session for IT decision makers, and an opportunity to learn about the vendors products, services and business strategies specifically or a related technology or market. We'll also discuss their competitors and which other solutions your business should consider. If you do not receive contact, please check your junk folder.

Netify is the first dedicated global SD WAN & SASE comparison marketplace.

List Your Business