Category: Networking & Content Delivery

Introduction Exposing Internet-facing applications requires careful consideration of what security controls are needed to protect against external threats and unwanted access. These security controls can vary depending on the type of application, size of the environment, operational constraints, or required inspection depth. For some scenarios, running Network Access Control Lists (NACL) and Security Groups (SG) […]

AWS customers regularly use the ability to reference another security group in the same Amazon Virtual Private Cloud (VPC), or a peered VPC in the same Region, as a dynamic reference. This ability allows customers who have highly ephemeral workloads to adopt the practice of least privilege more easily. We do not currently support security […]

AWS Direct Connect makes it easy to establish a dedicated network connection from your premises to AWS. With the launch of a new AWS Direct Connect location in the NextDC S2 Sydney data center, you can now establish dedicated 100 Gbps and encrypted connections with resiliency across two Sydney locations. Equinix SY3, an existing location in Sydney, also […]

In this two-part blog series, you will learn how to use email addresses and domain names for user authentication. With this method, you restrict credentials-free user access to a static website. In this second part of the blog series, you will learn how to implement the authorization mechanism. In the previous blog post, you learnt […]

In this two-part blog series, you will learn how to use email addresses and domain names for user authentication. With this method, you restrict credentials-free user access to a static website. In this first blog, you will learn how to implement the authentication mechanism. In the second blog post, you will learn how to implement […]

Since the inception of IP networks, network engineers and operators have sought systems, solutions, and procedures to help them efficiently plan and manage IP spaces. AWS recently launched a new service named Amazon VPC IP Address Manager (IPAM) to make it easier for you to plan, track, and monitor IP addresses for your AWS workloads. […]

As enterprises move to the Cloud, having a reliable network connection to their on-premises data centers is fundamental. In this post, I show how to monitor your AWS Direct Connect links and initiate remediation (including automatic failover) when degradation in end-to-end path quality (packet loss, high latency) is detected. Multiple Direct Connect links at separate […]

Introduction Every device, resource, and workload connected to an Internet Protocol-based network depends on its IP address to communicate. The public and private IPv4 addressing space exhaustion, organizational mandates, and the need to provide service availability to IPv6-only clients drive an increasing number of organizations to adopt IPv6 in their environments. A well-managed IP address […]

Introduction AWS customers in different industries have applications that require extremely high availability that run across several AWS Regions so that they can meet latency and business continuity requirements. Amazon Route 53 Application Recovery Controller (Route 53 ARC) supports high availability by allowing customers to continuously audit the recovery readiness of their applications and centrally […]

This is the second in a two-part blog post series about using the recently launched Amazon Route 53 Application Recovery Controller (Route 53 ARC) service. In Part 1, we introduced a single-Region stack, and set up Route 53 ARC features like routing controls, readiness checks, and safety rules to simplify recovery. In this post, we add a […]