Category: Networking & Content Delivery

This three-part series explores design patterns and strategies to enhance application resiliency through multi-cluster deployment on Amazon Elastic Kubernetes Service (EKS). In this first part, we address a common challenge when using a Network Load Balancer (NLB) in multi-cluster environments. Organizations increasingly rely on Kubernetes—whether through Amazon Elastic Kubernetes Service (EKS) or self-managed clusters on […]

Centralized egress is the principle of using a single, common inspection point for all network traffic destined for the internet. This approach is beneficial from a security perspective because it limits exposure to externally accessible malicious resources, such as malware command and control (C&C) infrastructure. This inspection is generally done by a firewall like AWS […]

IPv6 adoption continues to accelerate worldwide as organizations move beyond the limitations of IPv4 address space. At Amazon Web Services (AWS), we’ve long supported IPv6 from end users to our Amazon CloudFront network, helping end users reduce latency, improve performance, and reach on modern mobile networks. Now, we are excited to take it a step […]

Amazon Route 53 powers mission-critical DNS services for millions of applications worldwide, and protecting your DNS infrastructure is an important step for securing your applications.. An unintended DNS configuration change or deletion can disrupt the availability of your applications and impact your business operations causing lost revenue and more. To help safeguard your DNS from […]

Amazon VPC Route Server enables dynamic routing within Amazon Virtual Private Cloud (Amazon VPC) using Border Gateway Protocol (BGP). You can use Amazon VPC Route Server for effective and intelligent traffic control between cloud applications and on-premises systems. Amazon VPC Route Server uses BGP to provide advanced control over traffic paths, especially for failures, and […]

Users implement multi-account strategies to support multiple teams to deploy workloads. This post is for Amazon Web Services (AWS) administrators and network engineers who need to manage DNS permissions across multiple teams with shared Amazon Route 53 private hosted zone or public hosted zones. There may be situations where multiple teams shared the same hosted […]

Introduction We recently announced that Amazon Route 53 Resolver Endpoint supports Domain Name System (DNS) delegation, allowing you to delegate authority for a subdomain from your on-premises infrastructure to Route 53 and vice versa. Previously, to implement DNS delegation and maintain a unified private DNS namespace across on-premises and in Amazon Web Services (AWS) environments, […]

Introduction Optimized failover times in hybrid connectivity are critical for meeting availability Key Performance Indicators (KPIs) in modern enterprise workloads. This is particularly important when implementing overlay tunnels over Amazon Web Services (AWS) Direct Connect, such as AWS Site-to-Site VPN using IPSec tunnels, or Connect Attachments using Generic Routing Encapsulation (GRE) tunnels. Proper configuration can […]

Under RISE with SAP, establishing network connectivity to the RISE with SAP Amazon Virtual Private Cloud (Amazon VPC) on Amazon Web Services (AWS) is your responsibility. Traditionally, users have relied on AWS Site-to-Site VPN, AWS Direct Connect, Amazon VPC peering, or AWS Transit Gateway to connect their on-premises networks and existing AWS accounts to the […]

Introduction As cloud adoption grows, software-as-a-service (SaaS) providers on AWS are increasingly using Amazon Web Services (AWS) PrivateLink to securely deliver services to their customers. PrivateLink enables seamless, private connectivity between VPCs without exposing applications to the public internet, which makes sure of strong security and consistent network performance. However, what if you want to offer this […]