Networking & Content Delivery
Inspecting network traffic between Amazon VPCs with AWS Cloud WAN
Update: As of June 11 2024, the Service Insertion feature of AWS Cloud WAN allows users to easily insert firewalls and other security solutions into the traffic flow within a Cloud WAN environment. Rather than manually configuring the underlying routing required to insert these security services, as described in this blog, Service Insertion provides a managed offering that handles this […]
Migrating sub 1 Gbps hosted connection to use AWS Transit Gateway – Part 1
Introduction This blog will describe the recommended migration approach for migrating existing hybrid connectivity architectures with sub 1 Gbps AWS Direct Connect hosted connections to AWS Transit Gateway. It will provide you with a target architecture along with step-by-step prescriptive guidance on how to migrate from your existing state. Key benefits you can derive from […]
Migrating sub 1 Gbps hosted connection to use AWS Transit Gateway – Part 2
Introduction Since the launch of AWS Transit Gateway, customers have been asking to use transit virtual interface (Transit VIF) on sub 1 Gbps AWS Direct Connect hosted connections. In this post, we describe how to migrate an existing environment that uses sub 1Gbps Direct Connect hosted connections, Transit Gateway, and transit VPC for hybrid connectivity. […]
Build secure multi-account multi-VPC connectivity for your applications with Amazon VPC Lattice
Introduction In this blog post, we will discuss how you can use Amazon VPC Lattice to connect your services securely, and monitor communication flows, in a simple and consistent way across instances, containers, and serverless, in a multi-account and multi-Virtual Private Cloud (VPC) environment. We’ll define the new constructs VPC Lattice leverages to enable application […]
Tag-based invalidation in Amazon CloudFront
In this post, we demonstrate how to implement tag-based invalidation in Amazon CloudFront with Lambda@Edge, Amazon DynamoDB, AWS Lambda, and AWS Step Functions. This post provides you with a reference architecture and sample code artifacts to help you deploy and test tag-based invalidation. Let’s look at some use cases where tagging pages together might be […]
Optimize SEO with Amazon CloudFront
Search Engine Optimization (SEO) is the practice of optimizing your website to rank higher on search engine results pages. Since organic search is a primary way for viewers to discover online content, a solid SEO strategy involves optimizing your web application and maintaining good performance. As more than 92% of the internet searches happen on […]
Growing AWS internet peering with 400 GbE
Performance is a key driver of the design of the AWS global infrastructure. AWS has the largest global network infrastructure footprint of any cloud provider, and this footprint is expanding continuously to help our customers deliver better end-user experiences, rapidly expand operations to virtually any region or country, and meet their data locality and sovereignty […]
Monitoring AWS Global Network Performance
As an AWS customer, you might often want to understand the performance of the AWS Global Network. Visibility into how the AWS Global Network is performing at any given time can help you plan expansions into new AWS Regions and Availability Zones (AZs), as well as streamline troubleshooting of performance-related incidents. Today, I’m happy to […]
Limiting requests to a web application using a Gatekeeper Solution
Many types of organizations encounter DDOS attacks daily. DDoS, or Distributed Denial of Service, is an attack pattern that generates fake traffic to overwhelm organisation’s properties (websites, APIs, applications, etc.) and make it unavailable to legitimate users. They majority of these attacks involve a huge burst of fake traffic that exhausts the application’s resources (Memory […]
Centralized outbound inspection architecture in AWS Cloud WAN
An update was made on October 15, 2024: With the release of Service Insertion for AWS Cloud WAN, customers can now create centralized inspection architectures without the need for static routes. Refer to the AWS Cloud WAN service documentation for service insertion for details. AWS Cloud WAN helps you build a unified network that connects […]