What does this AWS Solution do?

The Serverless Transit Network Orchestrator (STNO) solution adds automation to AWS Transit Gateway. This solution provides the tools necessary to automate the process of setting up and managing transit networks in distributed AWS environments. A web interface is created to help control, audit, and approve (transit) network changes. STNO supports both AWS Organizations and standalone AWS account types.

You can use this solution out-of-the-box or customize the solution to meet your specific use case.

AWS Solution overview

The diagram below presents the architecture you can automatically deploy using the solution's implementation guide and accompanying AWS CloudFormation templates.

serverless-transit-network-orchestrator-architecture
 Click to enlarge

Serverless Transit Network Orchestrator architecture

This solution includes an AWS CloudFormation template (aws-transit-network-orchestrator-hub) you deploy in the account you want to act as the hub in the solution’s hub-and-spoke model. This template launches all the components necessary to automatically connect your VPCs to AWS Transit Gateway.

The hub template launches AWS Lambda functions, AWS Step Functions, Amazon DynamoDB, Amazon EventBridge, Amazon Simple Notification Service (Amazon SNS), AWS Resource Access Manager (AWS RAM), and AWS Transit Gateway. The template also deploys a Transit Network Management web interface that consists of Amazon Simple Storage Service (Amazon S3), Amazon CloudFront, AWS AppSync, and Amazon Cognito.

The solution also includes a template (aws-transit-network-orchestrator-spoke) you deploy in spoke accounts. This template deploys an Amazon CloudWatch Events rule that monitors VPC and subnet tags.

Serverless Transit Network Orchestrator

Version 1.0
Last updated: 11/2019
Author: AWS

Estimated deployment time: 25 min

Use the button below to subscribe to solution updates.

Note: To subscribe to RSS updates, you must have an RSS plug-in enabled for the browser you are using.  

Features

Cross-account and cross-region automation

Automate the process of setting up and managing transit networks in distributed AWS environments.

Web interface

Deploy a web user interface to control, audit, and approve transit network changes.

Tagging Management

Use the Transit Network Management web user interface to either accept or reject tag requests when manual approval is required.

Flexible account support

Automate both AWS Organizations and standalone AWS account types.
Product-Page_Standard-Icons_01_Product-Features_SqInk
Explore all AWS Solutions

Browse our portfolio of AWS-built solutions to common architectural problems.

Learn more 
Next-Steps-Icon_Find-a-Partner-B
Find a Partner

Find AWS certified consulting and technology partners to help you get started.

Learn more 
Product-Page_Standard-Icons_03_Start-Building_SqInk
Start building in the console

Sign-up and start exploring our services.

Get started