As enterprises increasingly migrate their applications to the cloud, the demand for secure and cost-effective Wide Area Networking (WAN) solutions for data transmission between branches and data centers grows. Among these solutions, Software-Defined Wide Area Networking (SD-WAN) has emerged as a promising approach. However, existing SD-WAN implementations largely rely on IPSec tunnels for data encryption between edge routers, resulting in drawbacks such as extended setup times and limited throughput. Additionally, the SD-WAN control plane rarely takes both latency and monetary cost into consideration when determining routes between nodes, resulting in unsatisfactory Quality of Service (QoS). We propose WirePlanner, an SD-WAN solution that employs a novel algorithm for path discovery, optimizing both latency and cost, and configures WireGuard tunnels for secure and efficient data transmission. WirePlanner considers two payment methods: Pay-As-You-Go, where users pay for a fixed amount of bandwidth over a certain duration, and Pay-For-Data-Transfer, where users pay for the volume of transmitted data. Given an underlay topology of edge routers and a user-defined budget constraint, WirePlanner identifies a path between nodes that minimizes latency and remains within the budget, while utilizing WireGuard for secure data transmission.

翻译：随着企业日益将应用迁移至云端，对分支机构与数据中心间数据传输的安全、经济高效的广域网解决方案的需求不断增长。在各类解决方案中，软件定义广域网已成为一种颇具前景的方案。然而，现有SD-WAN实现主要依赖IPSec隧道对边缘路由器间的数据进行加密，导致部署时间长、吞吐量受限等不足。此外，SD-WAN控制平面在确定节点间路由时鲜少同时考虑延迟和货币成本，导致服务质量不理想。我们提出WirePlanner——一种SD-WAN解决方案，该方案采用新颖的路径发现算法以优化延迟和成本，并配置WireGuard隧道实现安全高效的数据传输。WirePlanner支持两种计费方式：按需付费，即用户为固定时段内的固定带宽付费；以及按量传输付费，即用户按传输数据量付费。给定边缘路由器底层拓扑及用户定义的预算约束，WirePlanner可在预算范围内确定节点间最小延迟路径，并利用WireGuard实现安全数据传输。