Category: AWS Transit Gateway

This is a joint post co-authored with Abhishek Chawla, Chief Product and Technology Officer; Kartik Manimuthu, Director of Cloud Engineering; and Digvijay, Director of Application Engineering at SMC Global Securities Ltd. SMC Global Securities Ltd. (SMC), established in 1990, is a leading Indian financial services company providing trading, wealth advisory, and financial product distribution services […]

Centralized egress is the principle of using a single, common inspection point for all network traffic destined for the internet. This approach is beneficial from a security perspective because it limits exposure to externally accessible malicious resources, such as malware command and control (C&C) infrastructure. This inspection is generally done by a firewall like AWS […]

Introduction Optimized failover times in hybrid connectivity are critical for meeting availability Key Performance Indicators (KPIs) in modern enterprise workloads. This is particularly important when implementing overlay tunnels over Amazon Web Services (AWS) Direct Connect, such as AWS Site-to-Site VPN using IPSec tunnels, or Connect Attachments using Generic Routing Encapsulation (GRE) tunnels. Proper configuration can […]

Have you ever wondered, “Why did I have this sudden increase in network traffic?” AWS Transit Gateway Flow Logs are a great resource for answering this, but running them continuously can incur processing and storage costs that you don’t need. However, if Flow Logs are run on demand, the traffic anomaly may have already passed […]

In today’s rapidly evolving cloud landscape, network architects, engineers, and cloud teams need to move faster to design, deploy, and manage complex Amazon Web Services (AWS) networking infrastructure at scale. The emergence of generative AI capabilities, particularly Amazon Bedrock and Amazon Q, offers unprecedented opportunities to transform how we approach these challenges and solve them […]

In late 2024 we launched several enhancements to AWS Transit Gateway and AWS Cloud WAN services: Path MTU Discovery (PMTUD) support for Transit Gateway and AWS Cloud WAN Appliance Mode Routing Enhancement for improved Availability Zone (AZ) awareness Per-AZ Amazon CloudWatch Metrics AWS Cloud WAN: Service Insertion Operational Enhancement In this post, we explain how […]

In this post we explore how you can use AWS Cloud WAN Connect with Generic Routing Encapsulation (GRE) Tunnels and Multi-protocol BGP (MP-BGP) for Equal Cost Multi-Path (ECMP) routing of IPv6 networks. We also cover route verification and failover testing best practices. Many Amazon Web Services (AWS) users are increasingly adopting IPv6 and Software-Defined Wide […]

Network incidents can occur at times that may impact latency in AWS Regions , Availability Zones (AZs), and individual infrastructure components, such as server hardware. Users can also experience more latency because of the introduction of network appliances in their traffic path. This post explains some of the best practices that allow you to identify […]

Introduction AWS recently announced the general availability of support for cost allocation tags for AWS Transit Gateway. With cost allocation tags, you can tag your AWS resources and see cost breakouts on a per-tag basis. Previously, Transit Gateway supported cost allocation tags for categorizing and allocating Attachment Hours charges only. With this announcement, you can […]

Customers frequently use on-premises DNS infrastructure to resolve DNS queries for internal domains. In 2018, we announced Amazon Route 53 Resolver endpoints, which enable customers to integrate Route 53 with their on-premises DNS infrastructure for hybrid DNS resolution. In 2023, we improved this integration by providing customers the ability to encrypt DNS queries and responses […]