Category: Networking & Content Delivery

Security teams managing multi-account Amazon Web Services (AWS) environments face significant operational challenges when implementing consistent access controls. Traditional approaches necessitate duplicating VPN infrastructure, managing separate bastion hosts in each account, and maintaining fragmented security policies across multiple applications. This operational overhead increases infrastructure costs and attack surfaces. This post walks you through implementing AWS […]

Modernizing financial networks: Huatai Securities’ multicast implementation on AWS Note: This post is published in collaboration with Zhonghai Hu, Senior Architect at Huatai Securities and Ricky Chu, Infrastructure Project Manager, at Huatai Financial Holdings (Hong Kong). Huatai Securities Co., Ltd., a technology-driven securities group founded in 1991, is committed to transforming China’s securities industry through […]

In this post, we examine the ability for Amazon VPC IP Address Manager (IPAM) to automate prefix lists updates with prefix list resolver. This new feature uses the IPAM database to generate groups of IP addresses based on connectivity requirements and automates connectivity configurations by propagating IP addresses to Amazon Web Services (AWS) resources, such […]

It’s 2 AM when your phone alerts you to failing customer transactions in the North Virginia Region. As a network operator managing an Imaging platform on Amazon Web Services (AWS), you’re faced with troubleshooting an architecture that spans multiple Amazon Virtual Private Cloud (Amazon VPC), uses AWS Transit Gateway for interconnectivity, and runs many microservices. […]

Managing DNS query logging across multiple Amazon Virtual Private Clouds (VPCs) has long been a significant challenge for enterprise teams. The traditional approach required manual configuration of DNS query logging for each VPC individually, creating a cascade of operational problems. This fragmented process led to inconsistent implementation across different environments, compliance gaps due to missed […]

Geo-restriction is a critical security control for blocking traffic from high-risk regions. Learn how to implement geographic filtering using Amazon CloudFront, Route 53, AWS WAF, and AWS Network Firewall—and discover when to use each service for your specific architecture needs.

In this post, we demonstrate how to distribute Amazon VPC IP Address Manager (IPAM) costs from the IPAM owner account to the member accounts in AWS Organizations and implement chargeback. We walk through analyzing IPAM usage in AWS Cost Explorer from both member and management accounts. Furthermore, we cover key considerations and best practices for communication and […]

Discover how Rivian optimized network visibility using AWS Transit Gateway Flow Logs. Their innovative solution proactively identifies unrouteable traffic in multi-region & multi-account AWS environments, transforming reactive monitoring into automated detection. Learn how they reduced troubleshooting time and enhanced collaboration between app and network teams using server-less architecture.

Note: This post is published in collaboration with Liav Arnon, DevSecOps Engineer at XM Cyber | on Sep, 17th 2025 in Networking & Content Delivery, Advanced (300) XM Cyber is a leader in Exposure Management, helping enterprises identify and remediate attack vectors before they can be exploited. Providing context-driven exposure insights across the entire attack […]

Enterprises are building distributed applications that span multiple cloud environments to optimize for resilience, data locality, and specialized services communication. These architectures require consistent, private, and high-performance network connectivity between clouds without exposing traffic to the public internet. Amazon Web Services (AWS) announced AWS Interconnect – multicloud, a new capability that enables private, managed Layer […]