Author name: netJoints

Azure AKS Traffic Routing Between VNET or Cluster

AKS is Azure Kubernetes Service. It is a K8S service managed by Azure. https://learn.microsoft.com/en-us/azure/aks/configure-azure-cni#frequently-asked-questions Q: What source IP do external systems see for traffic that originates in an Azure CNI-enabled pod? A: Systems in the same virtual network as the AKS cluster see the pod IP as the source address for any traffic from the …

Azure AKS Traffic Routing Between VNET or Cluster Read More »

Aviatrix Intrusion Prevention System (IPS) Solution for AWS FAQs

Aviatrix delivers advanced cloud networking, network security, and operational visibility required by enterprises with cloud-native simplicity and automation. More than 550 customers worldwide leverage Aviatrix and its proven multi-cloud network reference architecture to design, deploy and operate a repeatable network and security architecture that is consistent across any public cloud. Combined with the industry’s first …

Aviatrix Intrusion Prevention System (IPS) Solution for AWS FAQs Read More »

Aviatrix’s Check Point CloudGuard Related Features

There are many features Aviatrix has developed for our Firewall partners to help achieve compliance, lower TCO, and enhanced application security needs. The following table is a list of some of the important features for Check Point CloudGuard deployment. There are some very specific ones for Check Point, and then there are some features applicable …

Aviatrix’s Check Point CloudGuard Related Features Read More »

Cloud to On Premise Data Center Active/Standby Firewall Design and Deployment

Problem Statement As enterprises moving their applications into the cloud, they are following the best practice to deploy their virtual NGFW in the Cloud using Aviatrix’s active/active, centralized, uncompromised, cost optimized an dpolicy-based Firewall Service Insertion (FireNet) solution as shown in the following diagram Some enterprises want to keep using their on-premise physical NGFW until …

Cloud to On Premise Data Center Active/Standby Firewall Design and Deployment Read More »

GCP High Performance Encryption

Aviatrix Gateway VM Type Throughput n1-highcpu-4 3.12Gbps n1-highcpu-8 6.54Gbps n1-highcpu-16 11.58Gbps n1-highcpu-32 19.97Gbps How does Aviatrix GCP HPE work? Aviatrix HPE utilizes native peering and multiple tunnels to provide higher throughput GCP HPE can also work with /24 subnet scheme. Controller builds native peering GCP Transit Gateway Details Following is the output from the Aviatrix …

GCP High Performance Encryption Read More »

Install BlockChain Quorum Node on AWS EC2 Instance

Prerequisites GoQuorum installed Tessera A running network Install GoQuorum [ec2-user@ip-10-101-91-122 ~]$ sudo yum update[ec2-user@ip-10-101-91-122 ~]$ sudo yum install git[ec2-user@ip-10-101-91-122 ~]$ sudo yum install go [ec2-user@ip-10-101-91-122 ~]$ sudo git clone https://github.com/ConsenSys/quorum.git Cloning into ‘quorum’… remote: Enumerating objects: 11, done. remote: Counting objects: 100% (11/11), done. remote: Compressing objects: 100% (7/7), done. remote: Total 99524 (delta 4), …

Install BlockChain Quorum Node on AWS EC2 Instance Read More »

Deploying BlockChain Quorum on AWS EC2 Instance

Introduction Quorum is an enterprise blockchain platform. Quorum is a privacy-centric fork of Ethereum client “geth” with several protocol level enhancements to support enterprise business needs. Quorum is an open-source project. The very nature of blockchain or distrubuted ledger provides a secure, shardd platform for decentralized applications (DAPPs) and data. It is cryptographically secure, auditable …

Deploying BlockChain Quorum on AWS EC2 Instance Read More »

Aviatrix Kickstart – Spin up Cloud Networks in Minutes – CLI Mode

Kickstart deploys cloud and multi-cloud networks in minutes without any efforts. Once the hub/spoke transit network is built in the cloud, it will act as core networking layer on which one can add more use-cases as needed later. The light weight automation script deploys Aviatrix controller and an Aviatrix transit architecture in AWS (and optionally …

Aviatrix Kickstart – Spin up Cloud Networks in Minutes – CLI Mode Read More »

Check Point CloudGuard IaaS in AWS with Quick Failover

Introduction Aviatrix release 6.0 introduced Firewall Instances Health Check Enhancement. This enhancement checks a firewall instance’s health by pinging its LAN interface from the connecting Aviatrix FireNet gateway. An alternative option to check health through firewall’s management interface. ICMP health check to the Firewall LAN interface improves firewall failure detection time and detection accuracy. This …

Check Point CloudGuard IaaS in AWS with Quick Failover Read More »