Networking & Content Delivery

Reminder: Amazon S3 and Amazon CloudFront service certificates migrating to Amazon Trust Services starting March 23, 2021

This is a reminder that Amazon S3 and Amazon CloudFront are migrating their default TLS certificates from DigiCert to Amazon Trust Services, beginning on March 23, 2021. In 2018, AWS announced a broad migration of AWS services’ TLS certificates to our own Certificate Authority, Amazon Trust Services (ATS). Your action may be required to ensure your applications continue normal operation after this […]

Read More

Improve your website availability with Amazon CloudFront

In this blog post, you will learn about the features of Amazon CloudFront that help you avoid unexpected failures and improve website availability. When using CloudFront with your website, one of the inherent benefits is the ability to cache content. This helps to reduce the load on the origin server (the web server from which […]

Read More
Influencing Traffic over Hybrid Networks using Longest Prefix Match

Influencing Traffic over Hybrid Networks using Longest Prefix Match

Introduction Many organizations use hybrid networks to connect on-premises data centers to the cloud. These networks often use both AWS Direct Connect and private WAN MPLS links to connect data centers to cloud resources and to each other. With multiple connections, organizations need to be able to control the path that network traffic will follow […]

Read More

CloudFront Migration Series (Part 3): OLX Europe, The DevOps Way

Business and scale at OLX Group At OLX Group, we operate the fastest-growing network of trading platforms globally. Serving 300 million people every month in 30+ countries around the world, OLX Group helps buy and sell cars, find housing, get jobs, buy and sell household goods, and much more. With more than 20 well-loved local […]

Read More

Configuring DNSSEC signing and validation with Amazon Route 53

AWS has announced the availability of DNS Security Extensions (DNSSEC) signing on public zones and validation for Amazon Route 53 Resolver. DNSSEC is a specification that provides data integrity assurance for DNS and helps customers meet compliance mandates (FedRAMP and security standards such as NIST, for example). When you enable DNSSEC signing for your hosted […]

Read More

On-the-fly video conversion with Amazon CloudFront, Lambda@Edge, and AWS Elemental MediaConvert

Introduction: Whether your media library includes long form featured movies or short form “how-to” clips, the popularity of each video asset is typically set by your viewers preference. In order to deliver your online video content, AWS offers multiple solutions that you can use to automate your media supply chain, and streamline your content distribution. […]

Read More

Using CloudFront Origin Shield to protect your origin in a multi-CDN deployment

This blog details how Amazon CloudFront’s recently announced Origin Shield can enhance your multi-CDN media workload by minimizing the load on our your origin. This reduction in origin load can improve your origin’s availability, reduce its operating costs, and even improve general performance for your viewers.

Read More

Customize 403 error pages from Amazon CloudFront Origin with Lambda@Edge

AWS Web Application Firewall (AWS WAF) is commonly used to protect HTTP and HTTPS requests forwarded to Amazon CloudFront. When you are using this approach, default 403 error pages do not distinguish whether the error came from AWS WAF or the CloudFront Origin. As an AWS WAF and Amazon CloudFront user, you may want to […]

Read More

Measuring AWS Global Accelerator performance and analyzing results

On the AWS networking team, we’re often asked by customers who use AWS Global Accelerator to provide guidance around how to test and measure the network performance of their applications. To share this information more broadly, we decided to write this blog post. In this post, we discuss the factors that impact network performance and […]

Read More

How AWS is helping to secure internet routing

The internet works reliably, in large part, on the basis of a key technology called Border Gateway Protocol (BGP). BGP is a means by which all junction points on the internet (routers) communicate with each other to dynamically establish the correct (and correctly weighted) paths that network packets should follow to traverse the global networking […]

Read More