Networking & Content Delivery

Introducing Amazon CloudWatch Metrics for AWS Direct Connect virtual interfaces

AWS Direct Connect (DX) recently launched support for virtual interface (VIF) metrics in Amazon CloudWatch. With this new enhancement, CloudWatch can now track metrics at the DX VIF level and provide greater insight into utilization. You can set up alarms based on metrics and trigger actions to remediate problems. I’ve heard from many customers that […]

Read More

Authenticate AWS Client VPN users with SAML

Introduction Authenticating users to applications and services on the web and at scale can be challenging. Having a separate set of credentials for each application is not an efficient approach. It is difficult to manage for IT departments and doesn’t provide a good experience for users. A common way to solve this challenge is to use […]

Read More

Serving SSE-KMS encrypted content from S3 using CloudFront

Introduction A best practice for your web applications is to use Amazon S3 to store content and Amazon CloudFront to deliver it to users. When building this way, AWS Well-Architected Framework recommends protecting your data at rest and in transit. Encryption is one of protection controls AWS provides you to reduce the risks of unauthorized access, loss, […]

Read More
AWS Global Accelerator with CloudFormation

Using AWS CloudFormation with AWS Global Accelerator

AWS Global Accelerator is a networking service that helps you achieve lower latency, greater performance, and higher availability for internet traffic between your users’ client devices and your applications running on AWS. By using AWS CloudFormation with Global Accelerator, customers can use the power of infrastructure as code to build Global Accelerator deployments in a safe, secure, and repeatable manner. This blog […]

Read More
Scale your Remote VPN on AWS

Scale your Remote Access VPN on AWS

AWS gives you the ability to extend existing on-premises remote access VPN solutions to the cloud. This not only allows access to resources within AWS, but using hybrid connectivity, also to on-premises resources. VPN clients use AWS internet connectivity as an entry point, and the flexibility of Amazon EC2 to scale capacity behind remote access […]

Read More

Using VPC Flow Logs to capture and query EKS network communications

Introduction Capturing and querying Amazon EKS and Kubernetes (K8s) cluster traffic is an important skill to possess. It is especially useful during incident-response and when troubleshooting networking issues surrounding nodes, pods, or services in your cluster. Amazon makes it easier to perform capture and query tasks with Amazon VPC Flow Logs and Amazon Athena. Administrators can use Amazon VPC Flow Logs to […]

Read More
Using AWS Client VPN to scale your work from home capacity

Using AWS Client VPN to scale your work from home capacity

Traditional on-premises VPN services are fixed in capacity and difficult to scale up, or down, in a rapid and on-demand fashion. Hardware constraints, licensing, and bandwidth can all be factors that prevent traditional client VPN services from scaling to meet the needs of a rapidly growing mobile workforce. Fortunately, the elasticity of cloud and pay-as-you-go […]

Read More

Using Microsoft Active Directory MFA with AWS Client VPN

You can now enable multi-factor authentication (MFA) for users connecting to an AWS Client VPN endpoint. This solution is ideal for organizations that want additional security when remote users are accessing AWS or on-premises resources. MFA improves the authentication process by requiring more than a user name, password, and certificate (the first factor). MFA requires […]

Read More

Centralized logging platform for EC2 instances over AWS PrivateLink

Introduction Running enterprise applications and workloads requires visibility and insight. Debugging errors or investigating a security incident in your application across hundreds of log files on hundreds of servers is time consuming and complicated. A common approach to resolve this problem is building a centralized logging platform that collects and aggregates different types of logs […]

Read More

Achieve up to 60% better performance for internet traffic with AWS Global Accelerator

If you offer applications such as gaming, media, mobile, or financial applications, you need consistent, low latency for a great user experience. AWS Global Accelerator helps you to achieve lower latency by improving performance for internet traffic between your users’ client devices and your applications running on AWS. It uses the AWS global network to […]

Read More