Category: Amazon VPC

At re:Invent 2020, AWS introduced  Gateway Load Balancer (GWLB), an AWS service that helps you deploy, scale, and manage third-party virtual network appliances, such as firewalls, intrusion detection and prevention systems, and others. GWLB is a type of load balancer under the Elastic Load Balancing (ELB) family. Other load balancers within the ELB family include […]

When thinking about architecture, it’s very common to come across scenarios where there is no right or wrong answer – the best answer is “it depends”. You must carefully consider the tradeoffs between cost, performance, reliability, and operational efficiency before coming to a decision. A little planning ahead of time can help you avoid numerous […]

Internet Protocol (IP) address management is an essential network planning and management component, and creating a scalable addressing scheme allows your AWS and hybrid network to expand, accommodating the needs of your workloads. Careful consideration for how your IP address space is allocated minimizes the risk of overlapping Classless Inter-Domain Routing (CIDR) blocks, and of […]

It is common to encounter network designs on AWS with resources that belong to multiple AWS accounts. For example, you may have several AWS accounts with Virtual Private Clouds (VPCs) in those accounts connected to an AWS Transit Gateway in a central networking account. You may need to determine or diagnose network reachability between AWS […]

This blog is co-authored by Parrish Gamarra, Principal Network Architect, Johnson & Johnson Introduction Mergers, Acquisitions (M&A), and divestitures are part of many enterprises’ journeys, driven by evolving business goals like expanding into new geographies or to spin off a line of business. Refer to this post for checking your general readiness for M&A with […]

Security is a top priority for AWS and customers running workloads in AWS. The previous post Top 10 security items to improve in your AWS account, covered the top security items that AWS customers should pay special attention to if they want to improve their security posture. High on the list is the need to […]

Introduction With the increasing adoption of IPv6 on AWS, the need to create an easy-to-manage, hierarchical, and scalable IP addressing plan for Amazon Virtual Private Clouds (Amazon VPCs) becomes critical for customers. With IPv4, adding more CIDR blocks to a VPC was driven mainly by the need to increase the address space within a VPC. […]

Introduction Amazon Web Services (AWS) customers are continuously increasing the number of applications and workloads they run on AWS, driven by accelerated cloud adoption and environment expansion. An environment can be considered “Hyperscale” once it supports thousands of application endpoints and tens or hundreds of gigabits of traffic per second. Hyperscale environments on AWS favor […]

Amazon Virtual Private Cloud (Amazon VPC) Flow Logs helps you understand network traffic patterns on AWS by providing network telemetry data about the IP traffic flowing to and from ENIs in your VPC. It lets you perform numerous analytics tasks, such as diagnosing overly restrictive security group rules, monitoring traffic that is reaching an instance, […]

Traditionally, communication service providers (CSPs) in the telecom industry have used a Virtual Routing and Forwarding (VRF) technique to segregate their data center (DC) networks per each network domains; for examples of domain such as Operation, Administration & Management (OAM), signaling, roaming, and user traffic networks. Each VRF domain in the data center must also […]