Enhancing Network Management with VPC Prefix Lists
The newly introduced Amazon Virtual Private Cloud (VPC) Prefix Lists functionality simplifies the creation of uniform security postures and routing behaviors. A Prefix List consists of a set of CIDR blocks that can be utilized to configure VPC security groups, VPC route tables, and AWS Transit Gateway route tables, and it can be shared with other resources. This feature streamlines the management of network security and routing, allowing for more efficient operations.
Integrating External Multicast Services with AWS
by Rachel Adams and Eric Thompson
on 03 SEP 2020
in Advanced (300), Amazon VPC, AWS Transit Gateway, Networking & Content Delivery, Technical How-to
Introduction
Numerous enterprise clients and telecom providers implement IP Multicast in their networks for services like video transcoding, financial trading platforms, and multimedia broadcast multicast systems (MBMS). As more customers transition their on-premises workloads to the cloud, there is a growing necessity to not only develop multicast applications on AWS but also to integrate them seamlessly into existing infrastructures. For further insights, you may check out this other blog post here.
Zendesk’s Global Mesh Network: Reducing Operational Costs with AWS Transit Gateway
by Mark Johnson and Sarah Lee
on 31 AUG 2020
in Amazon VPC, AWS Transit Gateway, Networking & Content Delivery
This entry features a discussion by our guest Sarah Lee, Principal Engineer at Zendesk and active participant in the AWS Community Builders program. Her focus is on designing scalable and reliable networks for Zendesk’s global operations, alongside Mark Johnson, an AWS Networking Solutions Architect. Zendesk, a prominent CRM company, is dedicated to enhancing customer relationships across a diverse clientele.
Building a Global Network Using AWS CDK and AWS Transit Gateway Inter-Region Peering
by David Brown and Michael Smith
on 29 MAY 2020
in Advanced (300), Amazon VPC, AWS Cloud Development Kit, AWS Transit Gateway, Networking & Content Delivery, Python
An Amazon VPC is a dedicated segment of the AWS cloud. Many of our largest enterprise clients maintain global networks comprising VPCs that require communication across various AWS Regions and even different AWS accounts. Although this process may seem intricate, AWS Transit Gateway Inter-Region peering facilitates a much simpler connection.
Automating DNS Infrastructure with Route 53 Resolver Endpoints
by Jason White and Kevin Adams
on 29 MAY 2020
in Advanced (300), Amazon Route 53, Amazon VPC, AWS CloudFormation, Resource Access Manager (RAM)
Introduction
DNS name resolution is essential for on-premises and cloud networks alike. For clients operating hybrid networks, additional infrastructure and configuration are necessary for private DNS resolution to function effectively across environments. However, establishing this DNS infrastructure in a multi-account setup can be complex. In this article, we demonstrate how to automate the process.
Scaling Your Remote Access VPN on AWS
by Emma Thompson and Victor Martinez
on 30 APR 2020
in Advanced (300), Amazon VPC, AWS Client VPN, AWS Global Accelerator, AWS Transit Gateway, AWS VPN, Customer Solutions, Networking & Content Delivery
AWS enables the extension of existing on-premises remote access VPN solutions into the cloud. This capability not only allows access to AWS resources but also to on-premises assets through hybrid connectivity. VPN clients leverage AWS internet access as an entry point while benefiting from the scalability of Amazon EC2 to manage demand effectively.
Utilizing VPC Flow Logs for EKS Network Communication Analysis
by Brian Wilson
on 17 APR 2020
in Amazon Athena, Amazon Elastic Kubernetes Service, Amazon VPC, Networking & Content Delivery, Technical How-to
Introduction
Capturing and analyzing traffic within Amazon EKS and Kubernetes (K8s) clusters is crucial. This skill proves particularly useful during incident responses and troubleshooting networking issues related to nodes, pods, or services in your cluster. Amazon simplifies the capture and query processes with Amazon VPC Flow Logs and Amazon Athena, allowing administrators to effectively monitor and analyze traffic flow.
Securing VPC Egress with IDS/IPS via Transit Gateway
by Lisa Green and Michael Brown
on 14 JAN 2020
in Advanced (300), Amazon VPC, AWS CloudFormation, AWS Transit Gateway, Networking & Content Delivery, Top Posts
In a typical enterprise network, customers may have VPCs distributed across multiple accounts within an AWS Region to effectively segment workloads. This segmentation can take various forms based on the organization’s structure, security policies, business functions, and operational models. The reasons for segmentation can differ, influenced by security and regulatory requirements or cost considerations. For more excellent resources, check out this link.
Integrating Third-Party Firewall Appliances into AWS
by Andrew Lewis
on 10 JAN 2020
in Advanced (300), Amazon VPC, AWS Transit Gateway, Intermediate (200), Networking & Content Delivery
Update October 11, 2020 – While the implementations discussed in this article remain valid, it was written prior to the introduction of Gateway Load Balancer, which is specifically designed for integrating firewalls and other virtual network appliances into your AWS ecosystem. For comprehensive guidance on the latest practices, visit this site.
Leave a Reply