Networking and Networks have transformed over period of time. Enterprises have realized that public cloud is the strategic direction for their IT infrastructure and applications. The service providers like Amazon, Google and Microsoft are extremely efficient at providing networking, security, compute and storage capabilities in their respective public cloud such as AWS, GCP and Azure. …
Introduction Aviatrix Value for AWS
A cloud network backbone, also known as a cloud backbone, is a high-speed network infrastructure that provides connectivity and communication between cloud data centers and other network endpoints. It acts as the backbone of the cloud computing infrastructure, connecting various resources such as servers, storage, and applications, and enables the seamless transfer of data and …
This is a five-part series of articles examining five critical mistakes organizations face when building a cloud architecture and how those mistakes can lead to soaring costs and inefficient – even risky – data management.
AKS is Azure Kubernetes Service. It is a K8S service managed by Azure. https://learn.microsoft.com/en-us/azure/aks/configure-azure-cni#frequently-asked-questions Q: What source IP do external systems see for traffic that originates in an Azure CNI-enabled pod? A: Systems in the same virtual network as the AKS cluster see the pod IP as the source address for any traffic from the …
Azure AKS Traffic Routing Between VNET or Cluster Read More »
Blackbox NaaS vs. Aviatrix Enterprise NaaS (Shahzad) Some vendors provide a NaaS service that forces enterprise business-critical traffic and data to be transported to their servers, devices, or instances first. Such a foreign NaaS could pose serious security, governance, and audit challenges for enterprises. Due it its limited visibility and control, this type of NaaS …
The C-suite/executive audience needs to understand the importance of networking. Networiking is a broad topic and covers a lot of aspects like security, management, day2 operations etc. Tipping point has reached to them to understand it. It is the food and wanted for any business and business critical applications Do not underestimate the important of …
AWS recently launched a new service called AWS Network Firewall (NWFW). The AWS NWFW will be positioned as L7 NGFW (Next-Generation Firewall) to compete with Palo Alto Network, Check Point, Fortinet, and other firewall vendor’s solutions. It is a new service and it will take some time to steal market share from other established Firewall …
AWS NWFW (Network Firewall) vs Aviatrix ThreatGuard Solution Read More »
GCP Design with Global VPC in Transit and Spoke with same AZ spoke GW distribution GCP Global VPC in Transit and Spoek with different spoke GW AZ distribution GCP Global Spoke VPC Design with Standalone GWs
Every public Cloud is drastically different. The networking and security are 180 degrees apart from each other. We need a normalizer. That normalizer is #Aviatrix. Google Cloud (GCP) The solution described below shows how to implement NLB based ingress in Google Cloud. For this design, credit goes to Adam Stipkovits for deploying and verifying in …
Aviatrix Introduction <Text here> Aviatrix Business Value Joint Solution Brief Next-generation solutions using Aviatrix Secure Cloud Network (SCN) Platform to realize the value of an ‘as-a-Service’ economy. Wipro is an innovation-led Cloud partner for clients through its Aviatrix Secure Cloud Network (SCN) Platform, helping them to accelerate their digital journey, unify insights and amplify workforce …
Software as a Service (SaaS), or as some call it NaaS (Network as a Service) is a trap, 10 steps backward and even worse than the on-prem data center model. Enterprise cannot afford to have another black box, and the SaaS for Cloud Networking is exactly like that. No control, no visibility, and no customization. …
SaaS for Cloud Networking (aka NaaS) is not for Enterprises Read More »
You would assume that the Cloud Application migration should accelerate your digital transformation but it is not true. The reality is that these Cloud Migration are causing lot of headache for enterprise IT, CTO and CISO.
Aviatrix ThreatIQ/ThreatGuard is enabled by default on all Aviatrix gateways. These gateways can front-end the Load Balancers to protect AWS/Azure/GCP/etc. infrastructure. They provide visibility and control as well as a repeatable ingress design. Azure Design #1 Design Notes
Some customers start their Cloud implementation or adoption with a single CSP (Cloud Service Providers such as GCP, Azure, AWS, etc.). Soon they realize that the world is already Multi-Cloud, and there is no going back. The majority of the enterprises know for a fact that they must adopt a multi-cloud strategy, but due to …
DIY Automation Increases Complexity and Cost of Running Cloud Network Read More »
A well-architected framework is critical for enhanced application performance. Applications do not work in silos. The need for enterprise-class networking. A solid, robust, and highly-available networking platform is a must. Aviatrix platform provides enterprise-class networking for the CloudGen workloads. There are five design pillars to keep as a framework. You must keep it handy so …
Cloud Network Well-Architected Framework Design Pillars Read More »
The majority of the content for this blog is taken from the Aviatrix website. Single Site over Single Private Network Circuit Details Single Site over Public Internet Single Site with Redundant Edges over Single Private Network Circuit Single Site Redundant Edges over Redundant Private Network Circuits Single Site connected to Multiple Cloud over Redundant Private …
Log in to the following SAP website https://cal.sap.com/catalog#/applianceTemplates Logon using SAP Universal-ID After you login, you will see additional options in the left hand navigation bar TIP: Sometimes the login does not work, so what you should do is to log in to SAP PartnerEdge or Universal ID website and then click the Login button …
SAP S4/HANA Installation For LAB and Development Work Read More »
Standard Design with Hybrid Connectivity Dedicated Egress FQDN Filtering Design with Network Segmentation Enabled Design with Network and Micro-Segmentation Design Covering Cloud and DC Failover Connectivity
S4/HANA Term Meaning Application Server ABAP Server ABAP Advanced Business Application Programming NetWeaver An integrated technology platform that can support various SAP applications such as ERP, CRM, BW, PI, or SRM Fiori SAP GUI SAP Web Dispatcher The SAP Web dispatcher lies between the Internet and your SAP system. It is the entry point for …
Challenges https://docs.aws.amazon.com/sap/latest/sap-hana/sap-oip-architecture.html SAP AWS Overlay IP Address Concept – Normal State SAP AWS Overlay IP Address Concept – Failover Scenario How this works in a failover scenario, who is going to update the routing table to point to the secondary HANA server Script aka SAP Resource Agent “aws-vpc-move-ip” This script runs inside the HANA DB …
SAP S4/HANA AWS High Availability Challenges with AWS Overlay IP Limitations Read More »
SAP S4/HANA supports the integration with other SAP and 3rd party products. Few examples
Business-critical applications require business-critical infrastructure. Aviatrix Intelligent Cloud Networking™ delivers business-critical cloud networking that supports business-critical applications such as SAP S/4HANA. This post enlightens you with everything you want to know about running a business-critical application on a business-critical infrastructure provided by Aviatrix. Aviatrix Solution Brief for SAP S4/HANA Enterprises https://aviatrix.com/resources/solution-briefs/aviatrix-cloudmigrations-sb2022010 https://aviatrix.com/resources/solution-briefs/upgrade-your-cloud-networking-for-sap-migrations Aviatrix Solution for …
Aviatrix is modern born in the cloud for the cloud security platform. Unlike legacy vendors, Aviatrix Security is bolted on the platform itself. It is a pervasive security platform that also provides a framework for other vendors to integrate. This in turn provides the best possible security posture for the enterprises. This post highlights some …
Aviatrix delivers advanced cloud networking, network security, and operational visibility required by enterprises with cloud-native simplicity and automation. More than 550 customers worldwide leverage Aviatrix and its proven multi-cloud network reference architecture to design, deploy and operate a repeatable network and security architecture that is consistent across any public cloud. Combined with the industry’s first …
Aviatrix Intrusion Prevention System (IPS) Solution for AWS FAQs Read More »
Every CSP (Cloud Service Provider) has certain networking and security limits, restrictions, and considerations. CSPs do their best to publish those limits but oftentimes they are buried under complex documentation structures. It is important for Cloud Network Architect to know about those so he/she can propose a future proof and successful design In this article, …
Introduction Enterprises are demanding to connect to various public cloud services without using the public IP address. They are asking to provide connectivity using the private IP for the following services Every CSP has its offering to cater to this need. Azure Private Link is an example. Google PSC is similar to Azure Private link …
Google Private Service Connect (PSC) Configuration for Google APIs Read More »
Advance mode is for users who want to change the region, naming convention, and subnet scheme. Provide AWS Credentials Before launching the controller, you can change the region and subnet details as shown in the following screenshot. Notes Launch Global Transit (Hub) and two Spokes in AWS Launch Aviatrix Global Transit (Hub) …
Recently I joined an expert panel and shared my opinion for Cloud Compliance and Governance in 2021. Take a listen