What does this AWS Solutions Implementation do?
The Serverless Transit Network Orchestrator solution adds automation to AWS Transit Gateway. This solution provides the tools necessary to automate the process of setting up and managing transit networks in distributed AWS environments. It creates a web interface to help control, audit, and approve (transit) network changes. This solution supports both AWS Organizations and standalone AWS account types.
Serverless Transit Network Orchestrator version 2.0 supports AWS Transit Gateway inter-Region peering and Amazon VPC prefix lists. Customers can establish peering connections between transit gateways to extend connectivity and build global networks spanning multiple AWS Regions. Version 2.0 also gives customers the ability to automatically register AWS Transit Gateway with Network Manager. This lets customers visualize and monitor their global network from a single dashboard rather than toggling between Regions from the AWS Console.
You can use this solution with the default deployment template, or customize it to meet your specific use case.
AWS Solutions Implementation overview
The diagram below presents the architecture you can automatically deploy using the solution's implementation guide and accompanying AWS CloudFormation templates.
Serverless Transit Network Orchestrator architecture
This solution includes an AWS CloudFormation template (aws-transit-network-orchestrator-hub) you deploy in the account you want to act as the hub in the solution’s hub-and-spoke model. This template launches all the components necessary to automatically connect your VPCs to AWS Transit Gateway.
The hub template launches AWS Lambda functions, AWS Step Functions, Amazon DynamoDB, Amazon EventBridge, Amazon Simple Notification Service (Amazon SNS), AWS Resource Access Manager (AWS RAM), and AWS Transit Gateway. The template also deploys a Transit Network Management web interface that consists of Amazon Simple Storage Service (Amazon S3), Amazon CloudFront, AWS AppSync, and Amazon Cognito.
The solution also includes a template (aws-transit-network-orchestrator-spoke) you deploy in spoke accounts. This template deploys an Amazon CloudWatch Events rule that monitors VPC and subnet tags.
Note: To subscribe to RSS updates, you must have an RSS plug-in enabled for the browser you are using.
Cross-account and cross-Region automation
Web user interface
Flexible account support
Browse our library of AWS Solutions Implementations to get answers to common architectural problems.
Find AWS certified consulting and technology partners to help you get started.
Browse our portfolio of Consulting Offers to get AWS-vetted help with solution deployment.