Category: Networking & Content Delivery

In this post, we dive into how at Silverflow we adopted AWS Cloud WAN and how we used standard DevOps practices, to manage our global network in a compliant and secure way. At Silverflow, our mission to bring payments into the modern era also necessitated that we rethink our network from the ground up. Every […]

In this post, we provide prescriptive guidance for building resilient and scalable multi-tenant Software-as-a-Service (SaaS) network architectures to address common challenges such as managing overlapping IP addresses, complex CIDR planning, and scaling connectivity to thousands of customers. We explore multiple architectural approaches using Amazon VPC Lattice with TCP resources, and conclude with detailed implementation guidance […]

Many organizations need to maintain strict private network communications between their AWS resources across different Regions, particularly when handling sensitive data or meeting compliance requirements. To optimize performance and minimize costs, it’s an architectural best practice to maintain data flows within AWS’s private network, even when using public IP addresses. However, regulated industries and enterprises […]

Amazon Web Services (AWS) Site-to-Site VPN is a fully managed service that allows you to create a secure connection between your data center or branch office and your AWS resources using IP Security (IPSec) tunnels. It provides critical connectivity for a variety of workloads: connecting on-premises workloads to the cloud, connecting devices to the cloud, and […]

This is a joint post co-authored with Abhishek Chawla, Chief Product and Technology Officer; Kartik Manimuthu, Director of Cloud Engineering; and Digvijay, Director of Application Engineering at SMC Global Securities Ltd. SMC Global Securities Ltd. (SMC), established in 1990, is a leading Indian financial services company providing trading, wealth advisory, and financial product distribution services […]

This three-part series explores design patterns and strategies to enhance application resiliency through multi-cluster deployment on Amazon Elastic Kubernetes Service (EKS). In this first part, we address a common challenge when using a Network Load Balancer (NLB) in multi-cluster environments. Organizations increasingly rely on Kubernetes—whether through Amazon Elastic Kubernetes Service (EKS) or self-managed clusters on […]

Centralized egress is the principle of using a single, common inspection point for all network traffic destined for the internet. This approach is beneficial from a security perspective because it limits exposure to externally accessible malicious resources, such as malware command and control (C&C) infrastructure. This inspection is generally done by a firewall like AWS […]

IPv6 adoption continues to accelerate worldwide as organizations move beyond the limitations of IPv4 address space. At Amazon Web Services (AWS), we’ve long supported IPv6 from end users to our Amazon CloudFront network, helping end users reduce latency, improve performance, and reach on modern mobile networks. Now, we are excited to take it a step […]

Amazon Route 53 powers mission-critical DNS services for millions of applications worldwide, and protecting your DNS infrastructure is an important step for securing your applications.. An unintended DNS configuration change or deletion can disrupt the availability of your applications and impact your business operations causing lost revenue and more. To help safeguard your DNS from […]

Amazon VPC Route Server enables dynamic routing within Amazon Virtual Private Cloud (Amazon VPC) using Border Gateway Protocol (BGP). You can use Amazon VPC Route Server for effective and intelligent traffic control between cloud applications and on-premises systems. Amazon VPC Route Server uses BGP to provide advanced control over traffic paths, especially for failures, and […]