Category: Networking & Content Delivery

As the global threat landscape shifts and evolves, AWS services that help protect our customers from those threats also evolve to meet their needs. One type of threat that has changed considerably over the past few years is Distributed Denial of Service (DDoS). DDoS attacks have evolved from targeting lower network layers (Layers 3 and […]

As organizations increasingly adopt IPv6 to address public IPv4 exhaustion, private IPv4 scarcity—especially in large-scale networks—and the need to support IPv6-only clients, securing both IPv4 and IPv6 traffic becomes critical. We can apply consistent traffic inspection for inbound and outbound flows in Amazon Virtual Private Clouds (Amazon VPCs) to maintain security. In this post, we […]

In this post, we explore how you can use Amazon VPC Lattice to expose shared services and resources across an organization while maintaining security and governance. We cover key architecture concepts, security best practices, and considerations for deploying VPC Lattice in production environments. As organizations grow, managing access to shared services across multiple environments—such as […]

In our previous post External Connectivity to Amazon VPC Lattice, we discussed how your applications could consume VPC Lattice services from clients external to Amazon Web Services (AWS), as well as cross-Region patterns. At re:Invent 2024, AWS made three significant announcements in the application networking space: releasing the VPC resources capability for AWS PrivateLink, support for accessing these resources […]

Introduction AWS Cloud WAN enables organizations to build and manage a global network across multiple AWS Regions. Through AWS Cloud WAN service insertion, you can integrate security appliances, either AWS-managed (such as AWS Network Firewall) or third-party solutions, to inspect and control traffic between network segments or outbound to the internet. Although AWS Cloud WAN […]

Cross-origin resource sharing (CORS) is a security feature implemented by web browsers that controls which web pages or web applications are allowed to make requests to a different domain or origin. In other words, CORS is a mechanism that prevents a web page hosted on one domain from making requests for resources from a different […]

Note: This post references the use of multi-tenant or shared distributions, which has recently released more formalized support through SaaS Manager for CloudFront. Check out the latest blog to see how multiple domain delivery can leverage SaaS Manager. Amazon CloudFront is the AWS native Content Delivery Network (CDN) that reduces latency, improves availability, and secures […]

In late 2024 we launched several enhancements to AWS Transit Gateway and AWS Cloud WAN services: Path MTU Discovery (PMTUD) support for Transit Gateway and AWS Cloud WAN Appliance Mode Routing Enhancement for improved Availability Zone (AZ) awareness Per-AZ Amazon CloudWatch Metrics AWS Cloud WAN: Service Insertion Operational Enhancement In this post, we explain how […]

We are excited to announce the general availability of Amazon Route 53 authoritative Domain Name System (DNS) service for public hosted zones in AWS GovCloud (US). You can now create and manage public hosted zones in AWS GovCloud (US) to manage DNS for internet-facing applications and create alias records with targets to AWS services such […]

This blog is co-authored with Jenny Zhou, Principal Enterprise Architect at United Airlines In this blog, we will explore how United Airlines implemented an enterprise-wide resilience program using Amazon Web Services (AWS). United Airlines, a major U.S. airline headquartered in Chicago, Illinois, announced its United Next plan in 2021. United Next is the airline’s plan […]