Joining the networks together!
Topology Cisco-CSR-DC———->Packet Fabric Router ———>DX/ER/GCI—–> The packet fabric is already setup with Pre-shared key IKEv2 IPSec Route Based VPN
Cloud and SaaS has eaten the SD-WAN lunch and SD-WAN did not compliant 🙂 SD-WAN submitted to CSP SD-WAN party is over too soon Cloud is the Network and Cloud is the WAN NCC. vWAN,…
GCP Global VPC as HUB for Transit Routing GCP Global VPC is a great technology and really a powerful concept but it is not a good design choice for enterprise networks. It is a loaded…
Cloud Security – High Performance Encryption (HPE) Aviatrix builds high-performance encrypted networks by default. The solution is called Aviatrix HPE or Aviatrix Insane mode. GCP HPE across Google Cloud Interconnect The Google Cloud Interconnect (GCI)…
Cloud Security – Service Insertion and Chaining Automated and Policy-based service insertion and chaining have always been a real pain point for enterprise GCP customers. Native solutions are not adequate and 3rd party vendors’ solutions…
Following are two popular design choice The topology shows the Palo Alto VM-Series as example but exact design works with Check Point, FortiNet and other firewalls as well. Centralized VPC Sandwich LB Design Dedicated Ingress…
This Webinar was recorded when Aviatrix 6.0 was released. Great refresher and evergreen foundation.
This is the session I did with Check Point team
In the cloud era, the role of network security architect has become more critical than it has ever been. Complexity and human errors have always been the banes of security professionals. As enterprise cloud computing…
AWS VPC Ingress Routing allows customers to insert (or service chain) a security appliance/gateway or firewall for the traffic flows coming from the Internet and going towards the public-facing applications such as a web server.…
Recently I joined an expert panel and shared my opinion for Cloud Compliance and Governance in 2021. Take a listen What I talked about can be summarized in the following bullet points The role of…
Draft Introduction Aviatrix Firewall Network Services (FireNet) simplify the Next Generation Firewall Insertion and Operations. FireNet is the simplest, highest performance, best scale-out architecture for next generation firewalls in the cloud. Following are some of…
Kickstart deploys cloud and multi-cloud networks in minutes without any effort. Once the hub/spoke transit network is built in the cloud, it will act as a core networking layer on which one can add more…
Business Objective An important security requirement for GCP VPCs is to effectively control remote user access in a policy based manner. The cloud and the COVID-19 pandemic makes most users “remote.” Not only for employees…
Objective ACE Enterprise in GCP wants to connect to different partners to consume SaaS services. These partners could be present in physical DC or Branches, or in VPC/VNET in the cloud such as GCP/AWS/Azure/etc. ACE…
This lab will demonstrate how to provide Fully Qualified Domain Name (FQDN) based Egress Filtering security using Aviatrix. Only those FQDNs will be allowed which are permitted in the configured policy. Egress FQDN Filtering Overview…
It is important to provide security compliance and fulfill audit requirements by using various methods and network segmentation is one of them. Providing Network Security segmentation is a critical business requirement. Aviatrix MCNS is helping…