Category: Amazon VPC

Introduction Defining and provisioning standardized virtual private cloud (VPC) patterns across an enterprise poses several challenges for many customers. These challenges include ensuring self-service capabilities, meeting security and compliance requirements, and maintaining adherence to those requirements. Traditionally, when an application team wants to provision a VPC in their workload account, it is requested through a […]

Amazon Virtual Private Cloud (Amazon VPC) endpoints are comprised of gateway and interface endpoints that enable users to privately access supported Amazon Web Services (AWS) services and VPC endpoint services powered by AWS PrivateLink. They offer several benefits for organizations looking to enhance their cloud infrastructure’s security, performance, and cost efficiency. In an earlier post, Reduce […]

In this post, we examine how Druva, a SaaS vendor offering cloud data protection and management solutions, implemented AWS PrivateLink to secure data transfers between Druva’s customers using Amazon Web Services (AWS) and Druva virtual private cloud (VPC). PrivateLink establishes private connectivity between VPCs, Amazon hosted services, and on-premises networks using VPC endpoints. This provides […]

As organizations expand their cloud footprint, IP address management and planning grow increasingly complex. Without the ability to easily understand IP resources across the enterprise, network management tasks supporting business needs such as expansions, mergers, acquisitions, and service discontinuations can be time-consuming and challenging. For those critical networking tasks, a visualized map of your entire […]

Introduction As generative artificial intelligence (generative AI) continues to evolve, the demand for more powerful and efficient computing resources grows, along with the need to manage exponentially increasing amounts of data. Datasets used for training generative AI models are typically measured in terabytes (TB), orders of magnitude bigger than traditional machine learning (ML) datasets whose […]

Anyone who has worked with Microsoft Active Directory Domain Services (AD DS) and domain-joined workloads in the past likely knows how critical proper DNS resolution is to healthy operations. Even if you haven’t worked with AD DS workloads, if you are reading this post, you have likely heard of some outage that was caused by […]

In this blog post, we present an augmented approach of managing AWS Cloud WAN segments in a secure, scalable, and on-demand way. When your organization increases the number of AWS accounts and AWS Regions in use, operational and security complexities related with admitting new user-created virtual private clouds (Amazon VPCs) to the network also increase—from […]

In May 2024, Amazon Web Services (AWS) launched a new feature for internet-facing Application Load Balancers. This enhancement allows you to provision an internet-facing Application Load Balancer without needing public IPv4 addresses, enabling clients to connect using only IPv6 addresses. To connect, clients resolve the AAAA DNS records assigned to the Application Load Balancer. The […]

Update: June 28, 2024 – Corrections were made to Figure 5 and the subsequent packet walkthrough.  AWS Cloud WAN is a managed wide-area networking (WAN) service that you can use to build and operate wide area networks that connect your data centers and branch offices, as well as your Amazon Virtual Private Cloud (Amazon VPC) […]

In this blog post, we explore a scenario in which Goldman Sachs, wanted to transfer ownership of several of its key network components between teams in a controlled and seamless manner. Specifically, we take a deep dive on migrating traffic between Direct Connect gateways while maintaining end-to-end connectivity. As a multinational investment bank and financial […]