Skip to main content

Aviatrix builds on existing AWS relationship, with Service Ready solutions for the new AWS Gateway Load Balancer (GWLB)

Aviatrix, an Amazon Web Services (AWS) Technology Partner, is a leader in solving enterprise customers’ complex networking, security, visibility and multi-cloud needs. Built upon the Aviatrix Cloud Network Platform, Aviatrix products integrate with a number of AWS APIs and services, enabling customers to centrally launch, control and interact with AWS services while delivering network security and operational visibility across a cloud transit network.

Aviatrix Makes Security Service Insertion Better for Your AWS VPCs

Today, we are happy to announce Aviatrix Firewall Network Service (FireNet) support for the new AWS Gateway Load Balancer (GWLB). Aviatrix FireNet Service is very popular with enterprise customers, allowing them to easily deploy, scale, service chain and operate next generation firewalls and security appliances from Check Point, F5, Fortinet, Palo Alto Networks and others in AWS environments. Aviatrix FireNet connects virtual appliances to a customer’s cloud transit network. This connection maximizes performance and visibility and automates route propagation to connected application environments (e.g. VPCs).  Traffic is routed through these security appliances for inspection to enforce corporate and regulatory security policies.

How it Works

Aviatrix FireNet now leverages GWLB and AWS Gateway Load Balancer Endpoint (GWLBE) to scale and manage  appliances that  support GENEVE encapsulation. GWLB provides a high-performance connection to virtual appliances, eliminates the need for Source Network Address Translation (SNAT) and allows customers to add or remove appliances for scaling or in response to health checks without impacting existing sessions. The Aviatrix Controller automates attachment of GWLB, and their associated GWLBE, and all connected appliances to an Aviatrix Transit/FireNet Gateway.

Once connected, the Aviatrix Controller will then automate the propagation of routes to application environments, for example updating VPC route tables to direct traffic through the GWLB and on to the appropriate connected firewall appliance. Aviatrix customers, with existing FireNet deployments, are able to both maintain direct connections to deployed appliances and easily insert GWLB into the transit network design when they are ready to make the change.

Enterprise-Class Cloud Networking

This is just the latest example of Aviatrix’s work with AWS, based on an architecture that leverages many of the AWS cloud service constructs, including Amazon Elastic Compute Cloud (Amazon EC2), Amazon Simple Storage Service (Amazon S3), Amazon VPC Route Tables, Amazon VPC Ingress Routing, Amazon Route 53, Amazon GuardDuty, AWS Direct Connect, AWS Global Accelerator, Amazon Simple Queue Service (Amazon SQS), AWS Lambda, and many more. Our shared enterprise customers then work with Aviatrix to deliver on complex enterprise network, security, visibility and multi-cloud requirements that leverage the Aviatrix cloud network platform and CoPilot, the Aviatrix visibility platform.

Stay tuned for even more exciting capabilities we will be unveiling together at re:Invent 2020.