Arelion My Arelion
Home / Knowledge Hub / What is guides / What is network underlay and overlay?

What is network underlay and overlay?

In a complex networking world, the difference between underlay and overlay network technologies and functionality is useful to understand.

Explore our DDoS Mitigation services
What is Enterprise Cybersecurity?
This guide will explain their structure and key differences as well as their role in the overall network architecture. Enterprise networks are continually evolving and over time, they have adopted a variety of different technologies to enhance operational robustness, reliability, and security. During the past decade, most of the publicity and attention has been given to overlay technologies such as cloud applications and software-defined wide area networking (SD-WAN). But underlay networks form the foundation of anything on the overlay, and more and more organizations are recognizing their critical importance. The purpose of this guide is to explain the importance of each component - and their common synergies.

What is an underlay network?

An underlay network essentially consists of the physical infrastructure: including the switches, routers and cables that provide the foundation for all network communication - including the modern Internet. The stability and reliability of this underlay network is crucial for effective network architecture planning, communication and functionality.

Network communication is built on layers 1 to 3 of the OSI model, where technologies such as MPLS (multiprotocol label switching), DWDM (dense wavelength division multiplexing), ethernet, and numerous protocols that comprise the modern Internet are utilized. Understanding the underlay network is essential for optimal network planning, expansion, flexibility and scalability. While MPLS-based transport has been a key technology since the early 1990s, modern underlay networks increasingly rely on optical and ethernet services. These services are particularly attractive to enterprises due to their high capacity, low latency and enhanced security. They are often marketed as 'private connectivity'.

Additionally, direct connectivity to the cloud via optical transport services is ideal for companies managing large volumes of critical traffic, such as those in the gaming, finance, or manufacturing sectors.

Read more

What is an overlay network?

Put simply, an overlay network is a virtual network built on top of another network, which serves as its foundation. This virtual network consists of nodes that are logically and virtually connected, and may exist only on a server, or on a dedicated box at a network site. Overlay networks come with several key attributes and components, including security features such as DDoS mitigation, quality of service (QoS), SD-WAN, encryption, bandwidth control and various protocols (e.g. BGP and VPN). All these elements enhance the communication capabilities of the underlying networks, making them more intelligent and flexible. This higher level of functionality allows for deeper customization, greater network optimization and better performance, as well as enhanced control and security.

 

Underlay network

Overlay network

Definition

The physical network infrastructure, including hardware and physical connections.

A virtual network built on top of an underlay network, using logical connections.

Components

Routers, switches, physical cables, and other hardware.

Virtual nodes, logical links, and software-defined elements.

Functionality

Provides basic connectivity and data transport.

Enhances functionality with features like security, QoS, and encryption.

Flexibility

Less flexible, changes require physical modifications.

Highly flexible, changes can be made through software configurations.

Customization

Limited customization options.

Allows for deep customization and optimization.

Security

Basic security measures, often reliant on physical security.

Advanced security features like DDoS mitigation, encryption and inbuilt firewalls

Protocols

Standard networking protocols (e.g., IP, ethernet).

Additional protocols (e.g., VPN, SD-WAN) for enhanced functionality.

Management

Managed through physical network management tools.

Managed through software-defined networking (SDN) controllers.

Use Cases

Traditional networking environments, data centers, enterprise networks.

Cloud services, virtual private networks (VPNs) and software-defined wide area networks (SD-WAN).

SD-WAN – an overlay that needs a stable underlay

Software-defined wide area networks (SD-WAN) play a crucial role in a company’s network transformation, enabling a secure, flexible and high-performance network platform. The primary objective of SD-WAN is to optimize and abstract the wide area network (WAN), simplifying management and control over network infrastructure - often leveraging Internet access for connectivity. 

SD-WAN is a virtual connectivity solution that decouples network control and management from the data plane, allowing it to function over any type of service-agnostic underlay. This underlay could range from multi-protocol label switching (MPLS) to dedicated Internet access (DIA) services. Essentially, SD-WAN operates as an overlay on top of an existing network infrastructure, enhancing the connectivity and performance across various sites.

Read more

Why SD-WAN on Arelion’s underlay network?

The key benefit of SD-WAN lies in its ability to improve WAN network performance, security, and flexibility through overlays. By combining SD-WAN with Arelion’s global Internet backbone and ethernet LAN services as the underlying network (underlay), businesses gain unmatched control over their traffic. This results in enhanced performance as data travels through Arelion’s #1 global IP backbone. The SD-WAN will only ever be as good as the network or networks it uses as its foundation.

One of the key advantages of using Arelion’s Internet backbone as an underlay is the vast capacity it offers. Additionally, with one of the largest and most robust global IP backbones, Arelion ensures your global WAN is supported with ample bandwidth and a high level of reliability, along with an enviable service level agreement (SLA).

For enterprises undergoing digital transformation, the ability to scale their network is fundamental. A robust and unified Internet underlay provides the necessary bandwidth, broad service coverage, and effective quality of service (QoS) management. 

Read more

Arelion - the #1 underlay network provider

Arelion is considered one of the best Internet backbones in the world.
Let’s dive into 7 reasons why you should choose Arelion as your network underlay: 
  • Global reach and connectivity: Arelion directly connects 70% of global Internet routes, making it one of the most interconnected backbones in the world. This extensive reach ensures that enterprises can access their global WANs with high-speed, low-latency connections - regardless of where they are located or what cloud services they need to access.
  • High-capacity network: Arelion operates the industry’s first full-scale, 400GE (gigabit ethernet)-ready network providing massive capacity to handle large amounts of data traffic efficiently. Our customers utilize the bandwidth they need without compromising on performance.  Arelion does not overbook its network.
  • Advanced segment routing: Cutting-edge segment routing technology help us to optimize the flow of data across our network. This enables faster, more efficient routing of network traffic -reducing latency and improving the overall quality of the network experience for end-users.
  •  Industry-leading performance and reliability:The Arelion backbone is known for its reliability and uptime, which is crucial for businesses that depend on consistent, business-critical connectivity. Our network is designed to minimize downtime and maximize the quality of service. 
  • Resilience and redundancy: Arelion’s backbone is built with multiple points of redundancy. In the event of failure or disruption, the network can reroute traffic through alternate paths with minimal impact on performance, ensuring that businesses experience no service interruption.
  • Security and quality of service (QoS): Our backbone supports advanced security features and offers businesses enhanced control over their traffic. Through Arelion, enterprises can implement stringent QoS management, prioritizing business-critical traffic and ensuring the best possible performance for applications that require low latency and high throughput.
  • Scalability for digital transformation: As businesses embrace digital transformation, rapid scalability is crucial. Arelion’s backbone provides the capacity and flexibility to meet increasing data demands and support global operations—especially in the AI and machine learning era.
Read more

Related services

Service
IP Transit

BGP Transit to Internet content and billions of end-users, with the world’s best-connected backbone, AS1299. 
Service
Ethernet

Configure and shape your network with different topologies using our EVPL and ELAN services.
Service
DIA (IP Connect)

High-speed Internet access without the need for an AS number or BGP Routing.
Service
DDoS Mitigation

Protect your network against DDoS attacks with continuous host-level protection.
Service
Cloud Connect

Direct access to your cloud with a dedicated connection to the major Cloud Service Providers, AWS, Google, Azure, Oracle, and IBM.

    Find more information in the Arelion Knowledge hub

    Whitepaper
    Read our Whitepapers & Reports

    Expert knowledge and invaluable insights to help you navigate your digital journey.
    Guide
    Read a 'What is' guide

    A series of guides about the Internet and other fundamental networking concepts, services and technology.
    Webinar
    Join a Webinar session

    Check out our expert hosted webinars diving deep into the latest topics within connectivity. 
    Podcast
    Listen to the Connectivity Podcast

    The world of networking has never been more exciting. Today, the Internet and network services play a critical role in our lives - individuals and businesses alike. 
    Blogpost
    Read a network blogpost

    Our thoughts and deeds. From industry trends to geeky networks stuff. 
    Event
    Discover upcoming events

    Discover our upcoming events – around the world or in the comfort of your own home office.

      Can't find what you need?

      Contact our experts for help. You can dismiss this message if you'd like. Otherwise, scroll down to see what we offer.

      Contact us It's okay, just scrolling.
      Available 24/7

      Award-winning Customer Experience

      At Arelion, our award-winning customer experience lies at the heart of everything we do. We work hard to deliver the best customer care in the business. We’re committed to making your experience so good, you don’t even know we’re here.

      Contact Customer Support
      Products & services Enterprise solutions Our network About us Career Sustainability
      Customer Support Offices Legal Knowledge hub Arelion blog Events
      What is IP Transit? What is the Internet backbone? What is Ethernet? What is DWDM? What is A2P messaging? What is Cloud Connect? What is a DDoS attack? What is EVPN?