Cloud Security – High Performance Encryption (HPE) Aviatrix builds high-performance encrypted networks by default. The solution is called Aviatrix HPE… Read More »Google Cloud Interconnect High Performance Encryption
Cloud Security – Service Insertion and Chaining Automated and Policy-based service insertion and chaining have always been a real pain… Read More »Palo Alto VM-Series Design and Deployment in Google Cloud
Following are two popular design choice The topology shows the Palo Alto VM-Series as example but exact design works with… Read More »Cloud Firewall Service Insertion Design – Ingress Traffic
AWS VPC Ingress Routing allows customers to insert (or service chain) a security appliance/gateway or firewall for the traffic flows… Read More »Protect Ingress Traffic with AWS Guard Duty and Aviatrix IPS Security Appliance
Recently I joined an expert panel and shared my opinion for Cloud Compliance and Governance in 2021. Take a listen… Read More »Cloud Networking and Security Predictions For 2021
Draft Introduction Aviatrix Firewall Network Services (FireNet) simplify the Next Generation Firewall Insertion and Operations. FireNet is the simplest, highest… Read More »GCP FireNet
Kickstart deploys cloud and multi-cloud networks in minutes without any effort. Once the hub/spoke transit network is built in the… Read More »Aviatrix Kickstart – Spin up Cloud Networks in Minutes – UI Mode
Business Objective An important security requirement for GCP VPCs is to effectively control remote user access in a policy based… Read More »LAB6 – GCP Remote User VPN / Client VPN
Objective ACE Enterprise in GCP wants to connect to different partners to consume SaaS services. These partners could be present… Read More »LAB5 – Overlapping Subnet / IP (Duplicate IP) Solution in GCP
This lab will demonstrate how to provide Fully Qualified Domain Name (FQDN) based Egress Filtering security using Aviatrix. Only those… Read More »LAB4 – GCP FQDN Based Egress Security
It is important to provide security compliance and fulfill audit requirements by using various methods and network segmentation is one… Read More »LAB3 – GCP Multi-Cloud Network Segmentation (MCNS)
In this lab, we will build the hub and spoke network in GCP. All the GCP VPCs and their respective… Read More »LAB2 – GCP Multi-Cloud Network Transit / Hub-Spoke
Introduction This document is the lab guide for GCP Test Flight Project. Anyone with basic GCP knowledge is the audience.… Read More »LAB1 – Google Cloud and Aviatrix Testing/POC LAB Guide
In some situation it might be desired to send a subset of DNS traffic from on-prem to cloud. One example… Read More »Selective DNS Traffic Forwarding From On-Prem to Cloud
Introduction GCP shared VPC allows an organization to share or extend its vpc-network (you can also call it subnet) from… Read More »GCP Shared VPC Transit Design and Deploy For Enterprises
This pattern is more suited for small deployments, PoC or lab setup where the networking is kept very simple. The… Read More »Aviatrix Spoke GW and Workload VMs in Same GCP Shared VPC Subnets
Problem Statement By default GCP Compute Service Account permissions are wide open with the Editor role. Here is how you… Read More »Onboarding GCP Project in Aviatrix Controller with Restricted Access
Aviatrix controller provides unified control and management plane for Google Cloud. Aviatrix allows enterprises to on-board hundreds of GCP projects/accounts… Read More »GCP Least Privileged and Restricted Permission for Aviatrix