Networking & Content Delivery

Rapidly recover from application failures in a single AZ

Today we would like to introduce “zonal shift”, a new capability of Amazon Route 53 Application Recovery Controller (ARC) that is built-into Amazon Elastic Load Balancers (Amazon ELBs) and available in preview. Performing a zonal shift enables you to achieve rapid recovery from application failures within a single Availability Zone (AZ). In this post, we’ll […]

Implementing long-running TCP Connections within VPC networking

Many network appliances define idle connection timeout to terminate connections after an inactivity period. For example, appliances like NAT Gateway, Amazon Virtual Private Cloud (Amazon VPC) Endpoints, and Network Load Balancer (NLB) currently have a fixed idle timeout of 350 seconds. Packets sent after the idle timeout expired aren’t delivered to the destination. Some applications or […]

Achieving traffic segmentation in multi-AWS Region environments using AWS Transit Gateway and AWS Cloud WAN

Achieving traffic segmentation in multi-AWS Region environments using AWS Transit Gateway and AWS Cloud WAN

In June 2022, we announced AWS Cloud WAN in general availability, a managed wide area networking (WAN) service that makes it easy for you to build, manage, and monitor a global network connecting your resources across your AWS Regions and on-premises environments. With Cloud WAN, you have a central place to create and manage your […]

Use CloudFront continuous deployment to safely validate CDN changes

Content delivery networks (CDN) like Amazon CloudFront are often the front door for users and devices to connect to websites or applications. A change to your CDN configuration could result in a complete outage with limited visibility into the cause of the issue. Today’s existing industry solutions for providing the testing of CDN configuration changes […]

Analyzing stale security group rules using serverless architecture

Security is a top priority for AWS and customers running workloads in AWS. The previous post Top 10 security items to improve in your AWS account, covered the top security items that AWS customers should pay special attention to if they want to improve their security posture. High on the list is the need to […]

Architect dual stack Amazon VPC with multiple IPv6 CIDR blocks

Introduction With the increasing adoption of IPv6 on AWS, the need to create an easy-to-manage, hierarchical, and scalable IP addressing plan for Amazon Virtual Private Clouds (Amazon VPCs) becomes critical for customers. With IPv4, adding more CIDR blocks to a VPC was driven mainly by the need to increase the address space within a VPC. […]

Image Optimization using Amazon CloudFront and AWS Lambda

Image Optimization using Amazon CloudFront and AWS Lambda Images are usually the heaviest components of a web page, both in terms of bytes and number of HTTP requests. Optimizing images on your website is critical to improve your users’ experience, reduce delivery costs and enhance your position in search engine ranking. For example, Google’s Largest […]

Approaches to Transport Layer Tenant Routing for SaaS using AWS PrivateLink

In today’s ecosystem, Software as a Service (SaaS) offerings are primarily delivered in a low friction, service-centric approach over the Internet. These services are often mobile applications or websites delivered via a Content Delivery Network (CDN), such as Amazon CloudFront, that in turn issues requests to the backend SaaS platform. As a SaaS provider, your […]

Introducing AWS Gateway Load Balancer Target Failover for Existing Flows

Introduction: AWS Gateway Load Balancer (GWLB) is an Elastic Load Balancing (ELB) service that allows customers to insert third-party virtual appliances such as firewall, intrusion detection and prevention systems (IDS/IPS), network observability and others, transparently into the traffic path. Application Load Balancer (ALB) and Network Load Balancer (NLB) are reverse proxies and traffic is routed […]