This brief provides high-level best practices for designing an Amazon VPC network and outlines the most common single-VPC configurations. It also offers guidance on how to size your VPC and subnets. For more details »

This brief describes common configurations and considerations for creating highly available VPN and AWS Direct Connect connections between Amazon VPC and a single data center. For more details »

This brief describes common configurations and considerations for creating highly available VPN and AWS Direct Connect connections between Amazon VPC and multiple data centers, including routing advice for optimizing network path selection in complex network environments. For more details »


Amazon VPC endpoints enable private connections between resources in a VPC and other AWS services. This brief describes a highly available and scalable DNS-based proxy solution that allows you to leverage VPC endpoint capabilities from remote networks. For more details »

This brief describes AWS recommended approaches for creating private connections between Amazon VPC networks in the same region using VPC peering, AWS Direct Connect, or a VPC dedicated to transitive routing. For more details »

This brief describes recommended approaches for creating private connections between AWS regions by routing over AWS or non-AWS networks depending on a customer’s use case and requirements. For more details »

AWS customers with multiple Amazon VPC networks often want to minimize the number of remote connections to AWS. This brief addresses key considerations, recommendations, and common approaches for connecting multiple Amazon VPC networks to on-premises infrastructure using a single VPN connection. For more details »

Learn how to create a global transit hub on the AWS Cloud. This answer provides architectural guidance, networking best practices, and a prescriptive AWS solution using Cisco Cloud Services Router (CSR) 1000V. For more details »

AWS customers who use Multiprotocol Label Switching (MPLS) to connect geographically dispersed company networks often want to incorporate this connectivity into their overall network design. This brief describes common configurations for creating highly available, efficient connections between AWS and an MPLS network. For more details »

Monitoring is an important part of maintaining the reliability, availability, and performance of your VPN connections. This webpage provides guidance to help create a monitoring plan and automated and manual tools for monitoring your VPN connections. For more details »

 


This brief addresses key considerations and recommendations for managing outbound (egress) traffic from Amazon VPC networks. It describes Amazon VPC features for controlling egress traffic and other options including third-party offerings that incorporate additional filtering, monitoring, and traffic-control capabilities. For more details »

This brief gives an overview of the AWS services and features that customers can use to control access to their network resources and to monitor network traffic and configuration changes. It also includes recommendations for third-party products that provide additional network management and monitoring capabilities. For more details »

In the event on a Distributed Denial of Service (DDoS) attack, AWS customers can leverage multiple capabilities to absorb and deflect unwanted traffic while working with AWS support to mitigate the issue. This brief provides general best practices for DDoS security, identifies key AWS services for mitigating DDoS attacks, and describes high-level attack mitigation approaches for common application patterns. For more details »

AWS and AWS Partner Network members offer a comprehensive set of capabilities to help customers secure their Amazon VPC networks. This brief provides an overview of these capabilities, highlighting features for network traffic control, routing, and firewalls, and also includes general best practices for network security. For more details »

Tell us what you think