Network and SD-WAN
We design and run the multi-site network critical operations demand.
Over 1,200 WAN links under management on Fortinet. Application-aware SD-WAN, SASE for remote users, per-application ZTNA and enterprise Wi-Fi — all under continuous NOC monitoring from Chihuahua.
Service catalog
Each component can be contracted separately or as part of the full design.
Multi-site SD-WAN
FortiGate + FortiManager. Application steering, SLA-aware routing, automatic link failover, per-site templates.
SASE
FortiSASE for remote users. Cloud inspection, DLP, CASB, no traffic backhaul to the data center.
ZTNA
Per-application access, not per-network. Device posture verified, federated identity with the client's IdP.
NAC and segmentation
FortiNAC or ClearPass. 802.1X, profiling, automatic quarantine, L2/L3 segmentation by role and device.
Enterprise Wi-Fi
FortiAP, Cisco Meraki, Aruba. Site survey, RF design, HA controllers, continuous performance monitoring.
Data center networking
Spine-leaf, EVPN-VXLAN, HCI integration. Redundant designs with maintenance-window-free migration.
Perimeter and NGFW
FortiGate operation as NGFW: IPS, AV, sandbox, web filter. Rules audited quarterly.
WAN connectivity
Design and procurement of dedicated links, Internet, MPLS, LTE/5G backup. Local ISP negotiation.
How we work
01 · Site survey
Inventory of sites, links, legacy gear, application requirements and RPO/RTO.
02 · Design
SD-WAN topology, IP addressing plan, segmentation, federated identity and application policies.
03 · Lab & procurement
FortiManager validation lab, equipment and link procurement. IT/operations-agreed windows.
04 · Deployment
Per-site cutover during coordinated hours. Rollback plan validated before each migration.
05 · Hand-off to NOC
Operational docs, runbooks, alert list, client contacts and initial KPIs.
06 · 24/7 operation
Monitoring, severity-driven incident management, quarterly improvement and executive reporting.
Operational SLAs
Post hand-off operation commitments. Design and procurement have their own timelines.
| Métrica | Objetivo | Detalle |
|---|---|---|
| Per-link availability | 99.9% | Calculated by calendar month; excludes planned maintenance. |
| Multi-link availability | 99.99% | Sites with at least two links from different carriers. |
| MTTR — operational change | ≤ 4 h | Standard runbook-documented changes. |
| MTTR — major change | ≤ 24 h | Impactful changes with agreed maintenance window. |
| Inter-site latency | Design ≤ 60 ms | National design goal; depends on carrier path. |
| Packet loss | ≤ 0.1% | Measured with FortiManager active probes. |
Stack we operate
- FortiGate
- FortiManager
- FortiAnalyzer
- FortiSwitch
- FortiAP
- FortiSASE
- FortiNAC
- FortiExtender
- Cisco Meraki
- Aruba (HPE)
- Juniper
- Veeam
Frequently asked questions
No. Fortinet is our strong platform through specialization, but we operate mixed designs when that's right for the client. What matters is that the architecture is coherent and operable under SLA.
Yes. We've done MPLS → SD-WAN migrations for clients with 50+ branches without a cutover window. Parallel onboarding and per-site cutover.
Both. Procurement, installation, monitoring, ISP escalation and SLA reports against the client's contracts.
We design LTE/5G backup integrated with SD-WAN. FortiExtender or equivalent with automatic failover and per-application QoS.
FortiManager + FortiAnalyzer + SNMP/syslog monitoring in our own NOC. Alerts to the client per agreed runbook, not to a generic email inbox.
No-commitment network assessment
Site survey and technical proposal in 2 to 4 weeks depending on deployment size. Ends with an actionable plan, BoM and schedule.