What to look for when creating secure, auditable peering within AWS VPCs?

Learning Center | Answers | Site-to-Cloud, VPN & Network Encryption

How to move workloads to the cloud for highly regulated companies?

Can Aviatrix provide access for client sites to on-premise SaaS services via AWS?

How can Aviatrix help support temporary cloud workloads?

How to load balance hybrid environments using AWS NLB and ALB with Aviatrix Cloud Gateway?

How should I encrypt data-in-motion between my data center and the AWS Global Transit VPC?

How to map RFC 1918 IP addresses to public IP spaces using Aviatrix?

How to route floating IP addresses across multiple AWS AZs for NetApp Services?

How can cloud app providers use Aviatrix to connect with their customers?

How do I resolve conflicts with data center IP and public cloud IP address ranges using Aviatrix?

What should I understand about overcoming AWS and Azure networking limits?

How can I use Aviatrix to secure remote user access to AWS VPCs?

How to use AWS Workspaces as jumphosts for secure remote access?

How can I use Aviatrix to connect one site with another using IPsec VPN?

What to look for when creating secure, auditable peering within AWS VPCs?

Is Amazon inter-region peering encrypted?

How does Aviatrix help overcome the 100 routes limit for AWS Routing Tables?

How do I connect to partner networks from my public Cloud (AWS, Azure or GCP)?

Why does it matter?

There is a need for application segmentation depending on security rules, business units, cost centers and mission criticality. Thus, smaller VPCs are preferred. This leads to a comprehensive connectivity requirement across VPCs.
There is a need for central security enforcement that implements firewall policies for cross VPC traffic.
There is a need for enterprise grade encryption based on private keys when communicating across VPCs.

What to look for?

For maximum cloud infrastructure agility, there is a need for orchestration of connectivity, route table updates, and firewall policies and active monitoring.
Should be able to use non-shared keys for encryption.
Should be able to visualize and log packet statistics for mission critical application traffic.
Should be able to monitor and alert on peering status.
Should be easy to troubleshoot with advanced capabilities like packet capture.

for more information please contact us at [email protected]