Networking & Content Delivery

Introducing CloudFront Virtual Private Cloud (VPC) Origins: Shield your web applications from public internet

Starting today, Amazon CloudFront introduced CloudFront Virtual Private Cloud (VPC) Origins, a new feature that allows users to use CloudFront to deliver content from applications hosted in a VPC private subnet. VPC Origins eliminates the need for applications to be exposed on the public internet by restricting access solely through users’ CloudFront distributions. This is […]

Anycast routing architecture within the CloudFront platform

Zero-rating and IP address management made easy: CloudFront’s new anycast static IPs explained

Starting today, Amazon CloudFront supports anycast IPs, a set of dedicated IP addresses that the customers can use to access CloudFront POPs for delivery of zero-rated traffic into the network carriers. For end-customers accessing your application, you now can collaborate with network carriers to exempt data charges from your end-customers’ data limits or implement distinct […]

Migrate Amazon ECS service communication to Amazon VPC Lattice

Advanced L7 routing, authentication and authorization using IAM Policies, and deep observability are key capabilities offered by Amazon VPC Lattice. With VPC Lattice now integrated into Amazon Elastic Container Service (Amazon ECS), you can easily migrate service-to-service communication from using internal Elastic Load Balancing (ELB) to VPC Lattice. This allows you to benefit from VPC Lattice […]

Building a global, low-latency NTP services with static IP addresses

Building a global, low-latency NTP service with static IP addresses

As organizations continue to roll out cloud-connected Internet-of-Things (IoT) applications, the need for accurate and reliable time synchronization has become increasingly critical. Although Amazon Web Services (AWS) provides the Amazon Time Sync Service for basic Network Time Protocol (NTP) needs, some IoT scenarios need a custom NTP solution. For example, users want to serve many IoT […]

Securing PartyRock: How we protect Amazon Bedrock endpoints using AWS WAF

PartyRock is an intuitive, hands-on generative AI app-building playground based on Amazon Bedrock. It allows users to experiment with generative AI technologies and build fun applications without coding, such as quiz generators or resume optimizers. Although providing a free generative AI playground online offers immense value to builders, it also presents significant security challenges. In […]

Amazon VPC Lattice DNS migration strategies and best practices

In this post, we review the most common Domain Name System (DNS) strategies to migrate your applications to Amazon VPC Lattice in a phased approach. These options allow you to reduce downtime, minimize overhead, and maintain consistent DNS resolution for your clients and applications on AWS. VPC Lattice is a fully managed end-to-end application networking […]

Accelerate IPv6

Accelerate IPv6 application migration with AWS PrivateLink and dual stack Network Load Balancers UDP support

This post was co-authored by: Ashish Kumar, Senior Product Manager; Blayze Stefaniak, Senior Solutions Architect; Natti Swaminathan, Senior Solutions Architect; and Yogesh Patel, Senior Solutions Architect In this post, we review how you can leverage AWS PrivateLink support for User Datagram Protocol (UDP) services, and accelerate Internet Protocol version 6 (IPv6) migrations with UDP support […]

Improving security and performance with additional DNS resource record types in Amazon Route 53

DNS is a key component of modern computing, a phone book for IP addresses. It is distinct from other protocols in the application stack. Because it is queried early in the request by a client, DNS is well suited to relay application-specific information back to a client as early as possible. This additional data can […]

Optimizing web application user experiences with AWS WAF JavaScript integrations

Optimizing web application user experiences with AWS WAF JavaScript integrations

AWS WAF Bot Control uses CAPTCHA and Challenge actions to undertake a browser interaction before permitting requests to protected resources. These actions can result in a poor user experience because of application errors or unexpected CAPTCHA completion when AWS WAF unexpectedly blocks requests. The AWS WAF JavaScript integrations give you the ability to control these […]