Networking & Content Delivery
Category: AWS PrivateLink
Hosting Internal HTTPS Static Websites with ALB, S3, and PrivateLink
Amazon Simple Storage Service (Amazon S3) is a powerful platform that enables you to do various tasks. One notable feature is the ability to create a bucket with an FQDN, point an alias record to the bucket website endpoint, and immediately get up-and-running with an HTTP static website. If you want to serve HTTPS traffic […]
Approaches to Transport Layer Tenant Routing for SaaS using AWS PrivateLink
In today’s ecosystem, Software as a Service (SaaS) offerings are primarily delivered in a low friction, service-centric approach over the Internet. These services are often mobile applications or websites delivered via a Content Delivery Network (CDN), such as Amazon CloudFront, that in turn issues requests to the backend SaaS platform. As a SaaS provider, your […]
Designing hyperscale Amazon VPC networks
Introduction Amazon Web Services (AWS) customers are continuously increasing the number of applications and workloads they run on AWS, driven by accelerated cloud adoption and environment expansion. An environment can be considered “Hyperscale” once it supports thousands of application endpoints and tens or hundreds of gigabits of traffic per second. Hyperscale environments on AWS favor […]
Providing controlled internet access through centralised proxy servers using AWS Fargate and PrivateLink
In this post we provide a regional solution for controlling outbound internet access to 1000s of Amazon Virtual Private Clouds (VPCs) using AWS Fargate and AWS PrivateLink. It removes the need to manage any proxy servers or to provide Layer 3 connectivity between your VPCs. It also provides an end-to-end deployment pipeline with a simple, […]
Gain usage insights with Amazon CloudWatch metrics and Contributor Insights for AWS PrivateLink
We recently launched Amazon CloudWatch metrics for AWS PrivateLink. This feature publishes metrics for PrivateLink services and endpoints at 1-minute intervals at no cost to you. You can also use CloudWatch Contributor Insights to visualize usage against your PrivateLink services. This blog summarizes PrivateLink metrics, shows the metrics and filters in Amazon CloudWatch, and provides […]
Automating Domain Delegation for Public Applications in AWS
Security is top priority at AWS. Cybersecurity and digital risk management are the primary considerations of customers when ensuring that security and trust are always in place for a secure data and cloud infrastructure. These concerns are even more critical for public internet facing applications, which are accessed using a public domain. In AWS Cloud, […]
Expedite your IPv6 adoption with PrivateLink services and endpoints
AWS now supports IPv6 for AWS PrivateLink services and endpoints. PrivateLink support for IPv6 expedites IPv6 adoption by decoupling the service consumer and service provider IP protocol version. Even if a service provider has not started to support IPv6 for all their back-end services, service consumers can use IPv6 within their VPCs to access the […]
Implement a central ingress Application Load Balancer supporting private Amazon Elastic Kubernetes Service VPCs
Introduction Many organizations deploy Amazon Elastic Kubernetes Service (Amazon EKS) clusters into Amazon Virtual Private Cloud (VPC) environments with direct access to the internet and to other VPCs. Connectivity between the VPC hosting the Amazon EKS cluster and other VPCs is typically created using routed networking services, such as VPC Peering or AWS Transit Gateway. […]
Secure hybrid access to Amazon S3 using AWS PrivateLink
AWS PrivateLink for Amazon S3 enables on-premises applications to privately and securely access Amazon S3 over AWS Direct Connect private virtual interface or AWS Site to Site VPN. The Interface VPC Endpoints for Amazon S3 allow security administrators to control which users can access which data in S3 from on premises and cross-Region using their […]
Application Load Balancer-type Target Group for Network Load Balancer
Application Load Balancer (ALB) is a fully managed layer 7 load balancing service that load balances incoming traffic across multiple targets, such as Amazon EC2 instances. ALB supports advanced request routing features based on parameters like HTTP headers and methods, query string, host and path based routing. ALB also offloads important capabilities including TLS termination, […]