High performance software-defined core network

What is claimed is: 1. A method for forwarding packets to a service application hosted on a plurality of service servers, the method comprising: configuring a plurality of points of presence (POPs) at a plurality of sites in a plurality of different geographic regions to form a wide area network (WAN), each POP having at least one data plane forwarding component for forwarding packets to other POPs in order to implement the WAN; configuring a domain name server (DNS) service within the WAN for receiving a DNS request from a remote client for a domain name associated with the service application and identifying at least one service server associated with the service application for the remote client to access; wherein configuring the POPs comprises configuring at least one POP to operate as an ingress POP to receive packets from the remote client and to forward the received packets top another POP that operates as an egress packet that forwards the packets to the service server identified by the DNS service. 2. The method of claim 1 further comprising configuring the DNS server to respond with a network address of the ingress POP for the remote client to connect to in order to reach the identified service server through the WAN. 3. The method of claim 2 , wherein the remote client first sends the DNS request and after receiving an identifier for the service server in response to the DNS request, sends another DNS request for the service server, the DNS server providing the network address of the ingress POP in response to the other DNS request. 4. The method of claim 1 , wherein the service application is a SaaS (Software as a Service) provided by a plurality of service servers. 5. The method of claim 1 , wherein each POP comprises a gateway to process ingress and egress traffic entering and exiting the WAN. 6. The method of claim 5 , wherein each POP further comprises a router to process packets to and from other POPs. 7. The method of claim 6 , wherein the gateways and routers of the POPs are virtual gateways and routers implemented by software. 8. The method of claim 6 further comprising configuring the routers to establish overlay tunnels that serve as virtual links between the routers and that the routers use to forward packets to each other. 9. The method of claim 1 , wherein each POP performs a plurality of services, and the DNS server is a service that is provided by at least one POP. 10. The method of claim 9 , wherein each of a set of services performed at each POP are performed by a virtual machine of the POP. 11. A non-transitory machine readable medium storing a program for defining a wide area network (WAN) through which packets are forwarded to a service application hosted on a plurality of service servers, the program comprising sets of instructions for: configuring a plurality of points of presence (POPs) at a plurality of sites in a plurality of different geographic regions to form the WAN, each POP having at least one data plane forwarding component for forwarding packets to other POPs in order to implement the WAN; configuring a domain name server (DNS) service within the WAN for receiving a DNS request from a remote client for a domain name associated with the service application and identifying at least one service server associated with the service application for the remote client to access; wherein configuring the POPs comprises configuring at least one POP to operate as an ingress POP to receive packets from the remote client and to forward the received packets top another POP that operates as an egress packet that forwards the packets to the service server identified by the DNS service. 12. The non-transitory machine readable medium of claim 11 further comprising a set of instructions for configuring the DNS server to respond with a network address of the ingress POP for the remote client to connect to in order to reach the identified service server through the WAN. 13. The non-transitory machine readable medium of claim 12 , wherein the remote client first sends the DNS request and after receiving an identifier for the service server in response to the DNS request, sends another DNS request for the service server, the DNS server providing the network address of the ingress POP in response to the other DNS request. 14. The non-transitory machine readable medium of claim 11 , wherein the service application is a SaaS (Software as a Service) provided by a plurality of service servers. 15. The non-transitory machine readable medium of claim 11 , wherein each POP comprises a gateway to process ingress and egress traffic entering and exiting the WAN. 16. The non-transitory machine readable medium of claim 15 , wherein each POP further comprises a router to process packets to and from other POPs. 17. The non-transitory machine readable medium of claim 16 , wherein the gateways and routers of the POPs are virtual gateways and routers implemented by software. 18. The non-transitory machine readable medium of claim 16 further comprising a set of instructions for configuring the routers to establish overlay tunnels that serve as virtual links between the routers and that the routers use to forward packets to each other. 19. The non-transitory machine readable medium of claim 11 , wherein each POP performs a plurality of services, and the DNS server is a service that is provided by at least one POP. 20. The non-transitory machine readable medium of claim 19 , wherein each of a set of services performed at each POP are performed by a virtual machine of the POP.