Category: *Post Types

AWS Site-to-Site VPN is a fully-managed performant, scalable, secure, and highly-available way to connect your on-premises users and workloads to AWS. When using Site-to-Site VPN you can connect to both Amazon Virtual Private Clouds (Amazon VPCs) with two tunnels per connection for increased redundancy. For even greater performance with sites further from your AWS Region(s), […]

Amazon CloudFront is a global content delivery network (CDN) that makes it easy to deliver websites, videos, apps, and APIs securely and at high speeds with low latency. You can use CloudFront to reduce latency by delivering data through 400+ globally dispersed Points of Presence (PoPs) and improve security with traffic encryption, access controls, and […]

In this post, you’ll learn how to secure and accelerate the delivery of Drupal-based websites using Amazon CloudFront, AWS Web Application Firewall (AWS WAF), and Amazon CloudFront Functions. CloudFront is a content delivery network service (CDN) offering improved security and acceleration of the content served through it. This is true for static cacheable content and […]

In 2020, we launched Gateway Load Balancer (GWLB), allowing you to deploy in-line inspection and filtering of packets. Various customers are leveraging this service to implement firewalls, intrusion detection, and network monitoring appliances in a centralized location. The ability to use multiple GWLB endpoints installed in workload VPCs allows distributed access to these centralized inspection […]

It is common to encounter network designs on AWS with resources that belong to multiple AWS accounts. For example, you may have several AWS accounts with Virtual Private Clouds (VPCs) in those accounts connected to an AWS Transit Gateway in a central networking account. You may need to determine or diagnose network reachability between AWS […]

This blog is co-authored by Parrish Gamarra, Principal Network Architect, Johnson & Johnson Introduction Mergers, Acquisitions (M&A), and divestitures are part of many enterprises’ journeys, driven by evolving business goals like expanding into new geographies or to spin off a line of business. Refer to this post for checking your general readiness for M&A with […]

At IMDb, we run a Federated GraphQL Gateway on AWS Lambda that backs our website and apps and handles over 10,000 peak TPS. For more information about how we built that, see our three posts: building GraphQL on Lambda, managing federated schemas, and monitoring and tuning. As our website adds more features that call GraphQL […]

In December 2019, we announced our first Local Zone in Los Angeles. As a refresher, AWS Local Zones are a type of infrastructure deployment that place compute, storage, database, and other AWS services close to large population, industry, and IT locations. Local Zones extend the capabilities of an AWS Region – what we called “parent” […]

AWS has just announced the release of a new internet monitoring service, Amazon CloudWatch Internet Monitor. Performance and availability over the internet are key insights that can help you deliver a bar-raising user experience for your AWS applications. User experience can be greatly impacted by internet events outside your control that can go unnoticed. Creating […]

Many network appliances define idle connection timeout to terminate connections after an inactivity period. For example, appliances like NAT Gateway, Amazon Virtual Private Cloud (Amazon VPC) Endpoints, and Network Load Balancer (NLB) currently have a fixed idle timeout of 350 seconds. Packets sent after the idle timeout expired aren’t delivered to the destination. Some applications or […]