Networking & Content Delivery

Tag: Networking and Content Delivery

Improve web application availability with CloudFront and Route53 hybrid origin failover

Earlier this year, we released technical guidance regarding three advanced design patterns for highly available applications using Amazon CloudFront and Amazon Route 53. In this post, we dive deeper into CloudFront origin failover, Amazon Route 53 DNS failover, and the hybrid origin failover approach to further enhance the availability of your web applications. We also […]

Amazon CloudFront introduces Origin Access Control (OAC)

Amazon CloudFront is a global content delivery network that securely delivers applications, websites, videos, and APIs to viewers across the globe in milliseconds. Using CloudFront, customers can access different types of origin services to suit their use cases. One of the performant architectures customers adopt is to use Amazon S3 as the origin to host […]

Restricting access on HTTP API Gateway Endpoint with Lambda Authorizer

Customers use Amazon API Gateway APIs for critical production applications ranging from simple HTTP proxies to full-blown API management with request transformation, authentication, and validation. Starting in 2019, HTTP APIs have provided an enhanced alternative to the traditional API Gateway REST APIs, with HTTP APIs offering up to 60% latency reduction, 71% cost reduction, and […]

Deploying multi-region applications in AWS using AWS Global Accelerator

In this post, we’ll discuss how you can improve customer performance and increase resiliency for your multi-region applications with AWS Global Accelerator. We will also provide a walkthrough that helps you set up Global Accelerator to handle traffic management and traffic routing for multi-region application endpoints in both Active-Active as well as Active-Standby deployments. Global […]

How Repsol manages and monitors their AWS network with dashboards, alarms and automation

Large enterprises often deploy workloads on Amazon Web Services (AWS) using multiple accounts. This helps isolate workloads, manage permissions more easily, and simplifies cost allocation. However, managing a multi-account environment can make your network topology more complex and requires additional monitoring and automation. At Repsol, a global multi-energy company present throughout the entire value chain, […]

Using AWS SSO with AWS Client VPN for authentication and authorization

AWS Client VPN  is a simple solution that allows users to connect from anywhere to their AWS environments, a capability that has become important to almost every organization over the last year. Single sign-on (SSO) is used widely across organizations of all sizes to authenticate and authorize their users’ access to enterprise applications and IT […]

Bring Your IPv6 Address Space to Amazon VPC IP Address Manager (IPAM)

Introduction Every device, resource, and workload connected to an Internet Protocol-based network depends on its IP address to communicate. The public and private IPv4 addressing space exhaustion, organizational mandates, and the need to provide service availability to IPv6-only clients drive an increasing number of organizations to adopt IPv6 in their environments. A well-managed IP address […]

Test Automation of multicast IoT devices at Doppelio using IGMP v2 and the AWS Transit Gateway

Context IoT solutions today are both complex and business critical. At the same time, testing them thoroughly proves difficult because of the need to apply conditions of load, network, sensor behavior, and others. To address these, “Doppelio” – a SaaS-based IoT test automation solution was built as it helps alleviate IoT test limitations. It does […]

Leveraging AWS PrivateLink for volumetric data processing

AWS PrivateLink provides private, secure connectivity between VPCs, AWS services, and your on-premises networks, without exposing your traffic to the public internet. AWS PrivateLink offers three primary benefits to customers. First, it provides a way for two parties to establish private connectivity without requiring an Internet Gateway (IGW), thereby helping both parties to deploy airtight […]