Category: Networking & Content Delivery

Introduction AWS Verified Access enables customers to provide VPN-less, secure access to their corporate applications. We released it as a preview during AWS re:Invent 2022. Today, we are happy to announce that this service is now generally available (GA). Built using AWS Zero Trust principles, customers can use Verified Access to reduce the risks associated […]

This post presents recommendations and best practices when migrating your existing VPCs from Amazon Virtual Private Cloud (VPC) Peering to AWS Transit Gateway. It includes a migration walkthrough and considerations that you can address to improve your odds of a seamless migration. This post also details common networking testing and bench-marking tools such as iPerf […]

There are many things to consider when connecting your Amazon Virtual Private Clouds (Amazon VPCs) to third-party applications running in data centers outside AWS. You need connections that are secure and scalable, especially when the third-party vendor uses a multi-tenant architecture. With multi-tenant services, where they have many of their customers sharing the same system, […]

Customers frequently use Elastic Load Balancing (ELB) load balancers and Amazon EC2 Auto Scaling groups (ASG) to build scalable, resilient workloads. When configured correctly, Amazon ELB health checks help make your workload more resilient to failures in your workload components behind the load balancer. However, you may need to make tradeoffs for handling different failure […]

Whether you’re serving dynamic content from an Amazon Elastic Load Balancer (Amazon ELB), Amazon Elastic Compute Cloud (Amazon EC2) instances, Amazon API Gateway, or AWS Lambda to the end users on the Internet, you can improve the performance and security, and optimize the cost of your content delivery by using Amazon CloudFront as your content delivery network (CDN). […]

Update: As of June 11 2024, the Service Insertion feature of AWS Cloud WAN allows users to easily insert firewalls and other security solutions into the traffic flow within a Cloud WAN environment. Rather than manually configuring the underlying routing required to insert these security services, as described in this blog, Service Insertion provides a managed offering that handles this […]

Introduction This blog will describe the recommended migration approach for migrating existing hybrid connectivity architectures with sub 1 Gbps AWS Direct Connect hosted connections to AWS Transit Gateway. It will provide you with a target architecture along with step-by-step prescriptive guidance on how to migrate from your existing state. Key benefits you can derive from […]

Introduction Since the launch of AWS Transit Gateway, customers have been asking to use transit virtual interface (Transit VIF) on sub 1 Gbps AWS Direct Connect hosted connections. In this post, we describe how to migrate an existing environment that uses sub 1Gbps Direct Connect hosted connections, Transit Gateway, and transit VPC for hybrid connectivity. […]

Introduction In this blog post, we will discuss how you can use Amazon VPC Lattice to connect your services securely, and monitor communication flows, in a simple and consistent way across instances, containers, and serverless, in a multi-account and multi-Virtual Private Cloud (VPC) environment. We’ll define the new constructs VPC Lattice leverages to enable application […]

In this post, we demonstrate how to implement tag-based invalidation in Amazon CloudFront with Lambda@Edge, Amazon DynamoDB, AWS Lambda, and AWS Step Functions. This post provides you with a reference architecture and sample code artifacts to help you deploy and test tag-based invalidation. Let’s look at some use cases where tagging pages together might be […]