Tag: Networking and Content Delivery

With sixth-generation Nitro (Nitro V6) instances, launched in June 2025, the default TCP connection tracking idle timeout changed from 432,000 seconds (5 days) to 350 seconds. Applications that hold idle connections open for long periods, such as database connection pools, Internet of Things (IoT) telemetry, and persistent microservice connections, may experience unexpected connection drops after […]

Today, Amazon CloudFront is launching Invalidation by Cache Tag, a new capability that transforms how developers manage cached content. With this feature, you can invalidate groups of related cached objects using a single invalidation request, regardless of URL structure—making cache management more precise, efficient, and developer-friendly. In this post, we discuss the benefits of this […]

AWS recently announced the general availability of Amazon Web Services (AWS) Load Balancer Controller support for Kubernetes Gateway API. Previously, AWS Load Balancer Controller satisfied Kubernetes Ingress and Service resource requirements by provisioning Application Load Balancer (ALB) and Network Load Balancer (NLB) respectively. With this new capability, you can now define your AWS load balancing […]

This post is written for web developers, DevOps engineers, and security professionals who want to strengthen their application security posture without complex implementations. HTTP security headers represent a critical yet often overlooked layer of defense that can protect your users from common web vulnerabilities such as cross-site scripting (XSS), clickjacking, and man-in-the-middle attacks. They are […]

In part one of this post, we introduced two methods, Amazon CloudFront Functions and Lambda@Edge, for executing custom code at CloudFront edge Locations to modify request origins dynamically. This second post provides step-by-step setup instructions and code samples for implementing the two approaches for a subscription-based routing use case: CloudFront Functions with query string parameters […]

In the modern digital landscape, our lives are inescapably dominated by screens and browsers. From global product launches to flash sales and virtual concerts, events that once drew crowds to physical venues now drive millions of users to digital platforms simultaneously. The rapid rise of digital-first experiences has made the need to dynamically adjust content […]

AWS announced AWS Site-to-Site Concentrator, a new feature that simplifies multi-site connectivity for distributed enterprises. If you’re managing distributed enterprises with numerous remote sites, such as retail stores, restaurant chains, hotels, or healthcare facilities, VPN Concentrator offers a streamlined approach to multi-site connectivity. In this post, We will walk through the key use cases for […]

This post is published in collaboration with Chris Cabel, Senior Director, Global Cloud Solutions at Megaport. As enterprises migrate mission-critical workloads to the cloud, network performance has become a fundamental business requirement. Amazon Web Services (AWS) Direct Connect provides dedicated network connections between on-premises data centers and AWS. This bypasses the public internet to deliver […]

Introduction The AWS WAF Bot Control rule group includes rules for detecting and managing bot threats. These threats range from easily identified common bots through to coordinated targeted bots that evade detection by operating across multiple hosts. Like any other security controls, Amazon Web Services (AWS) WAF Bot Control for Targeted Bots rules can also […]

Managing DNS configurations across multiple Amazon Virtual Private Clouds (Amazon VPCs) and Amazon Web Services (AWS) accounts can be a daunting task for network administrators, especially in complex environments with numerous Private Hosted Zones (PHZs) and Amazon Route 53 Resolver rules. Traditionally, they relied on outbound and inbound Route 53 Resolver endpoints to transport DNS […]