ManagedWay
Client Login
← Case studies
Global cybersecurity vendor

A multi-continent anycast edge, seven years and counting

Their cloud security platform routes customer traffic to the nearest endpoint via BGP anycast. We provide the network and facilities that anycast runs on,across four datacenters and two continents.

Color-coded fiber jumpers and silver cable management in a tym2 patch panel
The challenge

Anycast at scale is more than IP addresses

They needed a globally distributed edge for their cloud security platform. Customer traffic had to land at the nearest endpoint and be filtered there,close to the source, before it traversed the open internet to the protected origin.

BGP anycast solves the routing problem on paper. In practice it requires presence in multiple markets, peering in each, transit mix in each, and ops continuity across the whole footprint. They needed one operator who could provide all of it,and a single technical contact who would still be there in five years.

What we did

One contract. Four datacenters. Two continents.

We allocated anycast IP space from our own ARIN block,starting with a single /24 in 2018 and growing to a /21 over time as their customer base expanded. We originate the BGP from each PoP and operate the peering.

We sourced and qualified four datacenters,Chicago, Los Angeles, Reston, and Amsterdam,including the European facilities we don't own. We negotiated and provisioned the Cogent and Telia cross-connects at each, and we run the network operations on top: firmware updates, maintenance windows, ticket response.

They run the security stack. We run the network and facilities under it.

Anycast architecture across four PoPs (LAX, CHI, RTV, AMS). Each site runs the same stack: customer's security platform (WAF, DDoS, email scanning) on top of ManagedWay's BGP, transit, cross-connect, and facility. The /21 is advertised from every site and BGP routes each user to the closest.
Outcome

Seven years live, still scaling

The anycast footprint has scaled from a single /24 in 2018 to a /21 today,1,024 IPs of routable security edge. The geographic footprint has stayed at four PoPs across two continents, expanded carefully as their traffic profile demanded.

One vendor relationship covers all four sites. The same primary technical contact has held both sides of the relationship since day one. That continuity is the part of the case study that doesn't fit in a table.

Got a project? Let's talk it through.

We'll work out what would actually fit. If that's not us, we'll point you to who.

Get a QuoteTour a Facility