SlideShare a Scribd company logo

Black Belt Tips for Cloud Network Operations - AWS Summit Sydney

Amazon Web Services
Amazon Web Services

Black Belt Tips makes a comeback for the sixth consecutive year. How you used the AWS platform last year should be different to how you utilise it today. In this session we will review the new networking features like Amazon VPC sharing and AWS Transit Gateway. Learn how to architect shared networks, hybrid connectivity, and have network observability at scale. Take your Cloud Operations to the next level with the curated set of tips and network perspective in mind.

1 of 45
S U M M I T SYDNEY
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Black belt tips for cloud network operations Evgeny Vaganov Solutions Architect Amazon Web Services
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Select difficulty level: Basic Normal Hard Black Belt
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Select difficulty level: Basic Normal Hard Black Belt
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Networking baseline • Different protocols: IP, TCP/UDP/ICMP • DNS and basic routing • Tuple – used to refer to a “number set” of things. • A TCP connection is identified by a 5-tuple. TCP/IP Packet IPHeaderTCP
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Private subnetPrivate subnet Public subnetPublic subnet Edge Location VPC AWS Region Availability Zone A Auto Scaling group Availability Zone B Auto Scaling group NAT Gateway NAT Gateway Instance Instance Instances Instances Internet gateway You should already know about AWS
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS networking beyond one VPC Shared Services VPC VPC VPC VPC VPC VPC VPC VPC VPCVPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPC VPC VPC VPC VPC VPC
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Access application! Accessing your application is not this straightforward Intro to cloud networking
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Local ISP Network A B C D E F It can take many networks to reach the application Paths to and from the application may differ Each hop impacts performance and can introduce risk Intro to cloud networking
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Intro to cloud networking Private Public
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Introducing AWS Global Accelerator 1
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Network Edge Location Local ISP Leverage the Global AWS Network Resulting in improved performance 166 Points of Presence In 65 cities across 29 countries Amazon CloudFront AWS Global Accelerator Introducing AWS Global Accelerator
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Static anycast IP addresses 1.2.3.4 2.3.4.5 3.4.5.6
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Static anycast IP addresses 1.2.3.4 2.3.4.5 3.4.5.6
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Static anycast IP addresses 1.2.3.4 2.3.4.5 3.4.5.6 Cache 192.0.2.1
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Global Accelerator 192.0.2.1 192.0.2.1 192.0.2.1
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Global Accelerator
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Compartmentalisation AKA fault isolation 192.0.2.0/24 Network Zone A 198.51.100.0/24 Network Zone B Anycast BGP announcements
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Optimal endpoint selection 5 tuple Protocol: UDP/TCP Src IP: 1.2.3.4 Dest IP: 5.6.7.8 Src Port: 32759 Dest Port: 80 Region : us-east-1 Region : eu-west-1 Optimal region Hash (5 tuple)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Optimal endpoint selection: Client affinity 5 tuple Protocol: UDP/TCP Src IP: 1.2.3.4 Dest IP: 5.6.7.8 Src Port: 32759 Dest Port: 80 Region : us-east-1 Region : eu-west-1 Optimal region Hash (2 tuple)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Comparison AWS Global Accelerator Amazon CloudFront Supported protocols Any TCP & UDP HTTP/HTTPS Deployed in Edge Locations Yes Yes Caching of static content, TLS termination, Lambda@Edge No Yes Anycast IP address Yes No AWS WAF integration No Yes Target support EIP, ELB Any public IP, S3
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Summary www.example.com 3.3.3.3 AWS Global Accelerator Endpoint A Endpoint B 1. Helps create a more robust architecture 2. Increases network stability 3. Provides automatic health checking and routing AWS © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T X
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Critical criteria for the Cloud Network
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Critical criteria for the Cloud Network AWS Transit Gateway Easily scale connectivity across VPCs, accounts and on-premises networks
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T VPN connectionCustomer gateway Amazon VPC Amazon VPC AWS Direct Connect Gateway VPC peering VPC peering VPC peering Amazon VPC Amazon VPCVPC peering VPN connection VPN connection VPC peering Before AWS Transit Gateway
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T With AWS Transit Gateway Transit Gateway Amazon VPCAmazon VPC Amazon VPCAmazon VPC Customer gateway VPN connection AWS Direct Connect Gateway* Available Q2 2019
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Critical criteria for the Cloud Network
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Critical criteria for the Cloud Network VPC sharing Easily share VPC networks between AWS accounts, providing central oversight and control for networking engineers
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T VPC sharing Avoid creating a single large VPC and sharing it with an entire organization. Instead, use VPC sharing together with Transit Gateway and AWS Private Link
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Before Amazon VPC sharing VPC Infra Prod Acc Finance Prod Acc Ops Prod Acc VPC VPC VPC 10.1.0.0/16 10.2.0.0/16 10.4.0.0/1610.3.0.0/16 Digital Prod Acc Dev1 Dev2 UAT STG VPC VPC VPC VPC Instances Amazon Redshift AWS lambdaELB Instances Amazon RDS
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T After Amazon VPC sharing VPC Infra Prod Acc Finance Prod Acc Ops Prod Acc VPC 10.1.0.0/16 10.2.0.0/16 Digital Prod Acc Dev1 Dev2 UAT STG VPC Instances Amazon Redshift AWS lambdaELB Instances Amazon RDS Participant Participant ParticipantOwner Owner Owner Participant Participant
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Inline services Inside the account At the VPC Advanced architecture considerations Account Account Account Account VPN AWS Direct Connect * Route Tables Route Tables Transit Gateway Account Account Account Available Q2 2019 Transit Gateway http://tiny.cc/aws-sdwan IKEv2
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T 100.64.0.0/16 Outbound VPC SNAT SNAT Outbound services VPC Transit Gateway VPC Route Domain 10.1.0.0/16 10.2.0.0/16 Outbound Route Domain Spoke route table Outbound VPC route table VPC A VPC B ECMP VPN BGP advertisement Route Destination 10.2.0.0/16 Local 0.0.0.0/0 tgw-xxxxxxxxx Route Destination 100.64.0.0/16 Local 10.0.0.0/8 tgw-xxxxxxxxx 0.0.0.0/0 igw-xxxxxxxxx BGP prefix Next hop 0.0.0.0/0 Local IP 0.0.0.0/0 Outbound VPC VPN 10.1.0.0/16 vpc-att-a 10.2.0.0/16 vpc-att-b Apply SNAT outbound to the internet SNAT Use cases:
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T http://bit.ly/fortinet-tgw
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T http://bit.ly/paloalto-tgw
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Summary
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Network debugging within Amazon VPC AWS Systems Manager SSM Automation AWSSupport-SetupIPMonitoringFromVPC VPC Amazon CloudWatch Logs Amazon CloudWatch Dashboard http://bit.ly/net-debug
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Network debugging within Amazon VPC VPC Corporate data center http://bit.ly/net-debug
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon CloudWatch Log Insights Amazon CloudWatch Logs VPC Flow logs AWS CloudTrail Amazon Route 53 AWS Lambda Custom Logs Amazon CloudWatch Logs Insights Users
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Thank you! S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Evgeny Vaganov evgeny@amazon.com

Recommended

AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...Amazon Web Services
 
AWS networking fundamentals
AWS networking fundamentalsAWS networking fundamentals
AWS networking fundamentalsAmazon Web Services
 
Planning advanced AWS networking architectures - SVC304 - Chicago AWS Summit
Planning advanced AWS networking architectures - SVC304 - Chicago AWS SummitPlanning advanced AWS networking architectures - SVC304 - Chicago AWS Summit
Planning advanced AWS networking architectures - SVC304 - Chicago AWS SummitAmazon Web Services
 
AWS VPC Fundamentals- Webinar
AWS VPC Fundamentals- WebinarAWS VPC Fundamentals- Webinar
AWS VPC Fundamentals- WebinarAmazon Web Services LATAM
 
AWS Summit Auckland - Fundamentals of Networking in AWS
AWS Summit Auckland - Fundamentals of Networking in AWSAWS Summit Auckland - Fundamentals of Networking in AWS
AWS Summit Auckland - Fundamentals of Networking in AWSAmazon Web Services
 
Peering in an IP World - Technology Requirements (3-nov, 2009)
Peering in an IP World - Technology Requirements (3-nov, 2009)Peering in an IP World - Technology Requirements (3-nov, 2009)
Peering in an IP World - Technology Requirements (3-nov, 2009)steve ulrich
 
DevNetOps: Automating large-scale hybrid cloud architectures - AWS Summit Cap...
DevNetOps: Automating large-scale hybrid cloud architectures - AWS Summit Cap...DevNetOps: Automating large-scale hybrid cloud architectures - AWS Summit Cap...
DevNetOps: Automating large-scale hybrid cloud architectures - AWS Summit Cap...Amazon Web Services
 
Framework for Delivering IPTV Services over Satellite Networks
Framework for Delivering IPTV Services over Satellite Networks Framework for Delivering IPTV Services over Satellite Networks
Framework for Delivering IPTV Services over Satellite NetworksAJAL A J
 

Recommended

AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...Amazon Web Services
 
AWS networking fundamentals
AWS networking fundamentalsAWS networking fundamentals
AWS networking fundamentalsAmazon Web Services
 
Planning advanced AWS networking architectures - SVC304 - Chicago AWS Summit
Planning advanced AWS networking architectures - SVC304 - Chicago AWS SummitPlanning advanced AWS networking architectures - SVC304 - Chicago AWS Summit
Planning advanced AWS networking architectures - SVC304 - Chicago AWS SummitAmazon Web Services
 
AWS VPC Fundamentals- Webinar
AWS VPC Fundamentals- WebinarAWS VPC Fundamentals- Webinar
AWS VPC Fundamentals- WebinarAmazon Web Services LATAM
 
AWS Summit Auckland - Fundamentals of Networking in AWS
AWS Summit Auckland - Fundamentals of Networking in AWSAWS Summit Auckland - Fundamentals of Networking in AWS
AWS Summit Auckland - Fundamentals of Networking in AWSAmazon Web Services
 
Peering in an IP World - Technology Requirements (3-nov, 2009)
Peering in an IP World - Technology Requirements (3-nov, 2009)Peering in an IP World - Technology Requirements (3-nov, 2009)
Peering in an IP World - Technology Requirements (3-nov, 2009)steve ulrich
 
DevNetOps: Automating large-scale hybrid cloud architectures - AWS Summit Cap...
DevNetOps: Automating large-scale hybrid cloud architectures - AWS Summit Cap...DevNetOps: Automating large-scale hybrid cloud architectures - AWS Summit Cap...
DevNetOps: Automating large-scale hybrid cloud architectures - AWS Summit Cap...Amazon Web Services
 
Framework for Delivering IPTV Services over Satellite Networks
Framework for Delivering IPTV Services over Satellite Networks Framework for Delivering IPTV Services over Satellite Networks
Framework for Delivering IPTV Services over Satellite NetworksAJAL A J
 
Transforming the Metro
Transforming the MetroTransforming the Metro
Transforming the MetroADVA
 
BGP and Traffic Engineering with Akamai
BGP and Traffic Engineering with AkamaiBGP and Traffic Engineering with Akamai
BGP and Traffic Engineering with AkamaiInternet Society
 
Best Practices on Migrating to 802.11ac Wi-Fi
Best Practices on Migrating to 802.11ac Wi-FiBest Practices on Migrating to 802.11ac Wi-Fi
Best Practices on Migrating to 802.11ac Wi-FiAruba, a Hewlett Packard Enterprise company
 
Introducing the ADVA MicroMux™
Introducing the ADVA MicroMux™Introducing the ADVA MicroMux™
Introducing the ADVA MicroMux™ADVA
 
Transforming Packet Networks With Open Optical Transport
Transforming Packet Networks With Open Optical TransportTransforming Packet Networks With Open Optical Transport
Transforming Packet Networks With Open Optical TransportADVA
 
Ceragon 15P-OX-F-18-TH
Ceragon 15P-OX-F-18-THCeragon 15P-OX-F-18-TH
Ceragon 15P-OX-F-18-THsavomir
 
21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark Tinka21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark TinkaMyNOG
 
Verizon Selects Ensemble Connector to Deliver VNS uCPE
Verizon Selects Ensemble Connector to Deliver VNS uCPEVerizon Selects Ensemble Connector to Deliver VNS uCPE
Verizon Selects Ensemble Connector to Deliver VNS uCPEADVA
 
Traffic Engineering for CDNs
Traffic Engineering for CDNsTraffic Engineering for CDNs
Traffic Engineering for CDNsMyNOG
 
Layer 1 Encryption in WDM Transport Systems
Layer 1 Encryption in WDM Transport SystemsLayer 1 Encryption in WDM Transport Systems
Layer 1 Encryption in WDM Transport SystemsADVA
 
IWAN Lab Guide
IWAN Lab GuideIWAN Lab Guide
IWAN Lab Guidejww330015
 
Breakout - Airheads Macau 2013 - WLAN Management & Troubleshooting with AirWave
Breakout - Airheads Macau 2013 - WLAN Management & Troubleshooting with AirWaveBreakout - Airheads Macau 2013 - WLAN Management & Troubleshooting with AirWave
Breakout - Airheads Macau 2013 - WLAN Management & Troubleshooting with AirWaveAruba, a Hewlett Packard Enterprise company
 
Soracom services for smart cities and homes feb2018
Soracom services for smart cities and homes feb2018Soracom services for smart cities and homes feb2018
Soracom services for smart cities and homes feb2018Soracom Global, Inc.
 
Adva Cloud Computing Final
Adva Cloud Computing FinalAdva Cloud Computing Final
Adva Cloud Computing FinalChris O'Neal
 
Making NFV Easy
Making NFV EasyMaking NFV Easy
Making NFV EasyADVA
 
Direct Detect Optical Layer for Ultimate DCI Flexibility
Direct Detect Optical Layer for Ultimate DCI FlexibilityDirect Detect Optical Layer for Ultimate DCI Flexibility
Direct Detect Optical Layer for Ultimate DCI FlexibilityADVA
 
Deploying Virtualized Services Over Legacy Networks
Deploying Virtualized Services Over Legacy NetworksDeploying Virtualized Services Over Legacy Networks
Deploying Virtualized Services Over Legacy NetworksDaniel Sproats
 
White Box Optics: Will It Kill or Encourage Innovation?
White Box Optics: Will It Kill or Encourage Innovation?White Box Optics: Will It Kill or Encourage Innovation?
White Box Optics: Will It Kill or Encourage Innovation?ADVA
 
Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...
Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...
Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...ADVA
 
Pure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural BroadbandPure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural BroadbandADVA
 
Securely Deliver Applications with AWS - SVC305 - Anaheim AWS Summit
Securely Deliver Applications with AWS - SVC305 - Anaheim AWS SummitSecurely Deliver Applications with AWS - SVC305 - Anaheim AWS Summit
Securely Deliver Applications with AWS - SVC305 - Anaheim AWS SummitAmazon Web Services
 
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAmazon Web Services
 

More Related Content

What's hot

Transforming the Metro
Transforming the MetroTransforming the Metro
Transforming the MetroADVA
 
BGP and Traffic Engineering with Akamai
BGP and Traffic Engineering with AkamaiBGP and Traffic Engineering with Akamai
BGP and Traffic Engineering with AkamaiInternet Society
 
Introducing the ADVA MicroMux™
Introducing the ADVA MicroMux™Introducing the ADVA MicroMux™
Introducing the ADVA MicroMux™ADVA
 
Transforming Packet Networks With Open Optical Transport
Transforming Packet Networks With Open Optical TransportTransforming Packet Networks With Open Optical Transport
Transforming Packet Networks With Open Optical TransportADVA
 
Ceragon 15P-OX-F-18-TH
Ceragon 15P-OX-F-18-THCeragon 15P-OX-F-18-TH
Ceragon 15P-OX-F-18-THsavomir
 
21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark Tinka21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark TinkaMyNOG
 
Verizon Selects Ensemble Connector to Deliver VNS uCPE
Verizon Selects Ensemble Connector to Deliver VNS uCPEVerizon Selects Ensemble Connector to Deliver VNS uCPE
Verizon Selects Ensemble Connector to Deliver VNS uCPEADVA
 
Traffic Engineering for CDNs
Traffic Engineering for CDNsTraffic Engineering for CDNs
Traffic Engineering for CDNsMyNOG
 
Layer 1 Encryption in WDM Transport Systems
Layer 1 Encryption in WDM Transport SystemsLayer 1 Encryption in WDM Transport Systems
Layer 1 Encryption in WDM Transport SystemsADVA
 
IWAN Lab Guide
IWAN Lab GuideIWAN Lab Guide
IWAN Lab Guidejww330015
 
Soracom services for smart cities and homes feb2018
Soracom services for smart cities and homes feb2018Soracom services for smart cities and homes feb2018
Soracom services for smart cities and homes feb2018Soracom Global, Inc.
 
Adva Cloud Computing Final
Adva Cloud Computing FinalAdva Cloud Computing Final
Adva Cloud Computing FinalChris O'Neal
 
Making NFV Easy
Making NFV EasyMaking NFV Easy
Making NFV EasyADVA
 
Direct Detect Optical Layer for Ultimate DCI Flexibility
Direct Detect Optical Layer for Ultimate DCI FlexibilityDirect Detect Optical Layer for Ultimate DCI Flexibility
Direct Detect Optical Layer for Ultimate DCI FlexibilityADVA
 
Deploying Virtualized Services Over Legacy Networks
Deploying Virtualized Services Over Legacy NetworksDeploying Virtualized Services Over Legacy Networks
Deploying Virtualized Services Over Legacy NetworksDaniel Sproats
 
White Box Optics: Will It Kill or Encourage Innovation?
White Box Optics: Will It Kill or Encourage Innovation?White Box Optics: Will It Kill or Encourage Innovation?
White Box Optics: Will It Kill or Encourage Innovation?ADVA
 
Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...
Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...
Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...ADVA
 
Pure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural BroadbandPure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural BroadbandADVA
 

What's hot (20)

Transforming the Metro
Transforming the MetroTransforming the Metro
Transforming the Metro
 
BGP and Traffic Engineering with Akamai
BGP and Traffic Engineering with AkamaiBGP and Traffic Engineering with Akamai
BGP and Traffic Engineering with Akamai
 
Best Practices on Migrating to 802.11ac Wi-Fi
Best Practices on Migrating to 802.11ac Wi-FiBest Practices on Migrating to 802.11ac Wi-Fi
Best Practices on Migrating to 802.11ac Wi-Fi
 
Introducing the ADVA MicroMux™
Introducing the ADVA MicroMux™Introducing the ADVA MicroMux™
Introducing the ADVA MicroMux™
 
Transforming Packet Networks With Open Optical Transport
Transforming Packet Networks With Open Optical TransportTransforming Packet Networks With Open Optical Transport
Transforming Packet Networks With Open Optical Transport
 
Ceragon 15P-OX-F-18-TH
Ceragon 15P-OX-F-18-THCeragon 15P-OX-F-18-TH
Ceragon 15P-OX-F-18-TH
 
21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark Tinka21st Century iBGP Route Reflection by Mark Tinka
21st Century iBGP Route Reflection by Mark Tinka
 
Verizon Selects Ensemble Connector to Deliver VNS uCPE
Verizon Selects Ensemble Connector to Deliver VNS uCPEVerizon Selects Ensemble Connector to Deliver VNS uCPE
Verizon Selects Ensemble Connector to Deliver VNS uCPE
 
Traffic Engineering for CDNs
Traffic Engineering for CDNsTraffic Engineering for CDNs
Traffic Engineering for CDNs
 
Layer 1 Encryption in WDM Transport Systems
Layer 1 Encryption in WDM Transport SystemsLayer 1 Encryption in WDM Transport Systems
Layer 1 Encryption in WDM Transport Systems
 
IWAN Lab Guide
IWAN Lab GuideIWAN Lab Guide
IWAN Lab Guide
 
Breakout - Airheads Macau 2013 - WLAN Management & Troubleshooting with AirWave
Breakout - Airheads Macau 2013 - WLAN Management & Troubleshooting with AirWaveBreakout - Airheads Macau 2013 - WLAN Management & Troubleshooting with AirWave
Breakout - Airheads Macau 2013 - WLAN Management & Troubleshooting with AirWave
 
Soracom services for smart cities and homes feb2018
Soracom services for smart cities and homes feb2018Soracom services for smart cities and homes feb2018
Soracom services for smart cities and homes feb2018
 
Adva Cloud Computing Final
Adva Cloud Computing FinalAdva Cloud Computing Final
Adva Cloud Computing Final
 
Making NFV Easy
Making NFV EasyMaking NFV Easy
Making NFV Easy
 
Direct Detect Optical Layer for Ultimate DCI Flexibility
Direct Detect Optical Layer for Ultimate DCI FlexibilityDirect Detect Optical Layer for Ultimate DCI Flexibility
Direct Detect Optical Layer for Ultimate DCI Flexibility
 
Deploying Virtualized Services Over Legacy Networks
Deploying Virtualized Services Over Legacy NetworksDeploying Virtualized Services Over Legacy Networks
Deploying Virtualized Services Over Legacy Networks
 
White Box Optics: Will It Kill or Encourage Innovation?
White Box Optics: Will It Kill or Encourage Innovation?White Box Optics: Will It Kill or Encourage Innovation?
White Box Optics: Will It Kill or Encourage Innovation?
 
Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...
Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...
Real-Time 200Gbit/s PAM4 Transmission Over 80km SSMF Using Quantum-Dot Laser ...
 
Pure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural BroadbandPure-Play Virtualization for Rural Broadband
Pure-Play Virtualization for Rural Broadband
 

Similar to Black Belt Tips for Cloud Network Operations - AWS Summit Sydney

Securely Deliver Applications with AWS - SVC305 - Anaheim AWS Summit
Securely Deliver Applications with AWS - SVC305 - Anaheim AWS SummitSecurely Deliver Applications with AWS - SVC305 - Anaheim AWS Summit
Securely Deliver Applications with AWS - SVC305 - Anaheim AWS SummitAmazon Web Services
 
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAmazon Web Services
 
Exploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS SummitExploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS SummitAmazon Web Services
 
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS SummitExploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS SummitAmazon Web Services
 
Fundamentals of AWS networking - SVC303 - Atlanta AWS Summit
Fundamentals of AWS networking - SVC303 - Atlanta AWS SummitFundamentals of AWS networking - SVC303 - Atlanta AWS Summit
Fundamentals of AWS networking - SVC303 - Atlanta AWS SummitAmazon Web Services
 
AWS Networking Fundamentals - SVC304 - Anaheim AWS Summit
AWS Networking Fundamentals - SVC304 - Anaheim AWS SummitAWS Networking Fundamentals - SVC304 - Anaheim AWS Summit
AWS Networking Fundamentals - SVC304 - Anaheim AWS SummitAmazon Web Services
 
AWS networking fundamentals - SVC211 - São Paulo AWS Summit
AWS networking fundamentals - SVC211 - São Paulo AWS SummitAWS networking fundamentals - SVC211 - São Paulo AWS Summit
AWS networking fundamentals - SVC211 - São Paulo AWS SummitAmazon Web Services
 
Introduction to AWS Global Accelerator - SVC211 - Chicago AWS Summit
Introduction to AWS Global Accelerator - SVC211 - Chicago AWS SummitIntroduction to AWS Global Accelerator - SVC211 - Chicago AWS Summit
Introduction to AWS Global Accelerator - SVC211 - Chicago AWS SummitAmazon Web Services
 
Introduction to the AWS Well-Architected Framework and AWS WA Tool - SVC214-R...
Introduction to the AWS Well-Architected Framework and AWS WA Tool - SVC214-R...Introduction to the AWS Well-Architected Framework and AWS WA Tool - SVC214-R...
Introduction to the AWS Well-Architected Framework and AWS WA Tool - SVC214-R...Amazon Web Services
 
Delivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS SummitDelivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS SummitAmazon Web Services
 
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...AWS Summits
 
Migliora la disponibilità e le prestazioni delle tue applicazioni con Amazon ...
Migliora la disponibilità e le prestazioni delle tue applicazioni con Amazon ...Migliora la disponibilità e le prestazioni delle tue applicazioni con Amazon ...
Migliora la disponibilità e le prestazioni delle tue applicazioni con Amazon ...Amazon Web Services
 
Networking and Edge Services on AWS
Networking and Edge Services on AWSNetworking and Edge Services on AWS
Networking and Edge Services on AWSAmazon Web Services
 
Network visibility into the traffic traversing your AWS infrastructure - SVC2...
Network visibility into the traffic traversing your AWS infrastructure - SVC2...Network visibility into the traffic traversing your AWS infrastructure - SVC2...
Network visibility into the traffic traversing your AWS infrastructure - SVC2...Amazon Web Services
 
Securely deliver applications with AWS - SVC305 - Atlanta AWS Summit
Securely deliver applications with AWS - SVC305 - Atlanta AWS SummitSecurely deliver applications with AWS - SVC305 - Atlanta AWS Summit
Securely deliver applications with AWS - SVC305 - Atlanta AWS SummitAmazon Web Services
 
Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...
Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...
Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...Amazon Web Services
 
Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta...
Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta...Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta...
Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta...Amazon Web Services
 
Advanced Architectures with AWS Transit Gateway
Advanced Architectures with AWS Transit GatewayAdvanced Architectures with AWS Transit Gateway
Advanced Architectures with AWS Transit GatewayAmazon Web Services
 
AWS re:Invent 2018: [NEW LAUNCH] AWS Transit Gateway & Transit VPCs, Ref Arch...
AWS re:Invent 2018: [NEW LAUNCH] AWS Transit Gateway & Transit VPCs, Ref Arch...AWS re:Invent 2018: [NEW LAUNCH] AWS Transit Gateway & Transit VPCs, Ref Arch...
AWS re:Invent 2018: [NEW LAUNCH] AWS Transit Gateway & Transit VPCs, Ref Arch...Amazon Web Services
 

Similar to Black Belt Tips for Cloud Network Operations - AWS Summit Sydney (20)

Securely Deliver Applications with AWS - SVC305 - Anaheim AWS Summit
Securely Deliver Applications with AWS - SVC305 - Anaheim AWS SummitSecurely Deliver Applications with AWS - SVC305 - Anaheim AWS Summit
Securely Deliver Applications with AWS - SVC305 - Anaheim AWS Summit
 
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
 
Exploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS SummitExploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
 
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS SummitExploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
 
Fundamentals of AWS networking - SVC303 - Atlanta AWS Summit
Fundamentals of AWS networking - SVC303 - Atlanta AWS SummitFundamentals of AWS networking - SVC303 - Atlanta AWS Summit
Fundamentals of AWS networking - SVC303 - Atlanta AWS Summit
 
AWS Networking Fundamentals - SVC304 - Anaheim AWS Summit
AWS Networking Fundamentals - SVC304 - Anaheim AWS SummitAWS Networking Fundamentals - SVC304 - Anaheim AWS Summit
AWS Networking Fundamentals - SVC304 - Anaheim AWS Summit
 
AWS Networking Fundamentals
AWS Networking FundamentalsAWS Networking Fundamentals
AWS Networking Fundamentals
 
AWS networking fundamentals - SVC211 - São Paulo AWS Summit
AWS networking fundamentals - SVC211 - São Paulo AWS SummitAWS networking fundamentals - SVC211 - São Paulo AWS Summit
AWS networking fundamentals - SVC211 - São Paulo AWS Summit
 
Introduction to AWS Global Accelerator - SVC211 - Chicago AWS Summit
Introduction to AWS Global Accelerator - SVC211 - Chicago AWS SummitIntroduction to AWS Global Accelerator - SVC211 - Chicago AWS Summit
Introduction to AWS Global Accelerator - SVC211 - Chicago AWS Summit
 
Introduction to the AWS Well-Architected Framework and AWS WA Tool - SVC214-R...
Introduction to the AWS Well-Architected Framework and AWS WA Tool - SVC214-R...Introduction to the AWS Well-Architected Framework and AWS WA Tool - SVC214-R...
Introduction to the AWS Well-Architected Framework and AWS WA Tool - SVC214-R...
 
Delivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS SummitDelivering applications securely with AWS - SVC303 - Chicago AWS Summit
Delivering applications securely with AWS - SVC303 - Chicago AWS Summit
 
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...
AWS Networking – Advanced Concepts and new capabilities | AWS Summit Tel Aviv...
 
Migliora la disponibilità e le prestazioni delle tue applicazioni con Amazon ...
Migliora la disponibilità e le prestazioni delle tue applicazioni con Amazon ...Migliora la disponibilità e le prestazioni delle tue applicazioni con Amazon ...
Migliora la disponibilità e le prestazioni delle tue applicazioni con Amazon ...
 
Networking and Edge Services on AWS
Networking and Edge Services on AWSNetworking and Edge Services on AWS
Networking and Edge Services on AWS
 
Network visibility into the traffic traversing your AWS infrastructure - SVC2...
Network visibility into the traffic traversing your AWS infrastructure - SVC2...Network visibility into the traffic traversing your AWS infrastructure - SVC2...
Network visibility into the traffic traversing your AWS infrastructure - SVC2...
 
Securely deliver applications with AWS - SVC305 - Atlanta AWS Summit
Securely deliver applications with AWS - SVC305 - Atlanta AWS SummitSecurely deliver applications with AWS - SVC305 - Atlanta AWS Summit
Securely deliver applications with AWS - SVC305 - Atlanta AWS Summit
 
Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...
Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...
Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...
 
Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta...
Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta...Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta...
Deploying AWS IoT-managed devices in an industrial setting - SVC302 - Atlanta...
 
Advanced Architectures with AWS Transit Gateway
Advanced Architectures with AWS Transit GatewayAdvanced Architectures with AWS Transit Gateway
Advanced Architectures with AWS Transit Gateway
 
AWS re:Invent 2018: [NEW LAUNCH] AWS Transit Gateway & Transit VPCs, Ref Arch...
AWS re:Invent 2018: [NEW LAUNCH] AWS Transit Gateway & Transit VPCs, Ref Arch...AWS re:Invent 2018: [NEW LAUNCH] AWS Transit Gateway & Transit VPCs, Ref Arch...
AWS re:Invent 2018: [NEW LAUNCH] AWS Transit Gateway & Transit VPCs, Ref Arch...
 

More from Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateAmazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSAmazon Web Services
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareAmazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAmazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWSAmazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckAmazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without serversAmazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceAmazon Web Services
 

More from Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 

Black Belt Tips for Cloud Network Operations - AWS Summit Sydney

  • 1. S U M M I T SYDNEY
  • 2. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Black belt tips for cloud network operations Evgeny Vaganov Solutions Architect Amazon Web Services
  • 3. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Select difficulty level: Basic Normal Hard Black Belt
  • 4. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Select difficulty level: Basic Normal Hard Black Belt
  • 5. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Networking baseline • Different protocols: IP, TCP/UDP/ICMP • DNS and basic routing • Tuple – used to refer to a “number set” of things. • A TCP connection is identified by a 5-tuple. TCP/IP Packet IPHeaderTCP
  • 6. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Private subnetPrivate subnet Public subnetPublic subnet Edge Location VPC AWS Region Availability Zone A Auto Scaling group Availability Zone B Auto Scaling group NAT Gateway NAT Gateway Instance Instance Instances Instances Internet gateway You should already know about AWS
  • 7. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS networking beyond one VPC Shared Services VPC VPC VPC VPC VPC VPC VPC VPC VPCVPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPCVPCVPCVPCVPCVPCVPCVPC VPC VPC VPC VPC VPC VPC
  • 8. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 9. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Access application! Accessing your application is not this straightforward Intro to cloud networking
  • 10. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Local ISP Network A B C D E F It can take many networks to reach the application Paths to and from the application may differ Each hop impacts performance and can introduce risk Intro to cloud networking
  • 11. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Intro to cloud networking Private Public
  • 12. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Introducing AWS Global Accelerator 1
  • 13. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Network Edge Location Local ISP Leverage the Global AWS Network Resulting in improved performance 166 Points of Presence In 65 cities across 29 countries Amazon CloudFront AWS Global Accelerator Introducing AWS Global Accelerator
  • 14. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Static anycast IP addresses 1.2.3.4 2.3.4.5 3.4.5.6
  • 15. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Static anycast IP addresses 1.2.3.4 2.3.4.5 3.4.5.6
  • 16. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Static anycast IP addresses 1.2.3.4 2.3.4.5 3.4.5.6 Cache 192.0.2.1
  • 17. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Global Accelerator 192.0.2.1 192.0.2.1 192.0.2.1
  • 18. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Global Accelerator
  • 19. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Compartmentalisation AKA fault isolation 192.0.2.0/24 Network Zone A 198.51.100.0/24 Network Zone B Anycast BGP announcements
  • 20. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Optimal endpoint selection 5 tuple Protocol: UDP/TCP Src IP: 1.2.3.4 Dest IP: 5.6.7.8 Src Port: 32759 Dest Port: 80 Region : us-east-1 Region : eu-west-1 Optimal region Hash (5 tuple)
  • 21. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Optimal endpoint selection: Client affinity 5 tuple Protocol: UDP/TCP Src IP: 1.2.3.4 Dest IP: 5.6.7.8 Src Port: 32759 Dest Port: 80 Region : us-east-1 Region : eu-west-1 Optimal region Hash (2 tuple)
  • 22. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Comparison AWS Global Accelerator Amazon CloudFront Supported protocols Any TCP & UDP HTTP/HTTPS Deployed in Edge Locations Yes Yes Caching of static content, TLS termination, Lambda@Edge No Yes Anycast IP address Yes No AWS WAF integration No Yes Target support EIP, ELB Any public IP, S3
  • 23. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Summary www.example.com 3.3.3.3 AWS Global Accelerator Endpoint A Endpoint B 1. Helps create a more robust architecture 2. Increases network stability 3. Provides automatic health checking and routing AWS © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T X
  • 24. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 25. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Critical criteria for the Cloud Network
  • 26. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Critical criteria for the Cloud Network AWS Transit Gateway Easily scale connectivity across VPCs, accounts and on-premises networks
  • 27. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T VPN connectionCustomer gateway Amazon VPC Amazon VPC AWS Direct Connect Gateway VPC peering VPC peering VPC peering Amazon VPC Amazon VPCVPC peering VPN connection VPN connection VPC peering Before AWS Transit Gateway
  • 28. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T With AWS Transit Gateway Transit Gateway Amazon VPCAmazon VPC Amazon VPCAmazon VPC Customer gateway VPN connection AWS Direct Connect Gateway* Available Q2 2019
  • 29. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Critical criteria for the Cloud Network
  • 30. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Critical criteria for the Cloud Network VPC sharing Easily share VPC networks between AWS accounts, providing central oversight and control for networking engineers
  • 31. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T VPC sharing Avoid creating a single large VPC and sharing it with an entire organization. Instead, use VPC sharing together with Transit Gateway and AWS Private Link
  • 32. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Before Amazon VPC sharing VPC Infra Prod Acc Finance Prod Acc Ops Prod Acc VPC VPC VPC 10.1.0.0/16 10.2.0.0/16 10.4.0.0/1610.3.0.0/16 Digital Prod Acc Dev1 Dev2 UAT STG VPC VPC VPC VPC Instances Amazon Redshift AWS lambdaELB Instances Amazon RDS
  • 33. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T After Amazon VPC sharing VPC Infra Prod Acc Finance Prod Acc Ops Prod Acc VPC 10.1.0.0/16 10.2.0.0/16 Digital Prod Acc Dev1 Dev2 UAT STG VPC Instances Amazon Redshift AWS lambdaELB Instances Amazon RDS Participant Participant ParticipantOwner Owner Owner Participant Participant
  • 34. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T
  • 35. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Inline services Inside the account At the VPC Advanced architecture considerations Account Account Account Account VPN AWS Direct Connect * Route Tables Route Tables Transit Gateway Account Account Account Available Q2 2019 Transit Gateway http://tiny.cc/aws-sdwan IKEv2
  • 36. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T 100.64.0.0/16 Outbound VPC SNAT SNAT Outbound services VPC Transit Gateway VPC Route Domain 10.1.0.0/16 10.2.0.0/16 Outbound Route Domain Spoke route table Outbound VPC route table VPC A VPC B ECMP VPN BGP advertisement Route Destination 10.2.0.0/16 Local 0.0.0.0/0 tgw-xxxxxxxxx Route Destination 100.64.0.0/16 Local 10.0.0.0/8 tgw-xxxxxxxxx 0.0.0.0/0 igw-xxxxxxxxx BGP prefix Next hop 0.0.0.0/0 Local IP 0.0.0.0/0 Outbound VPC VPN 10.1.0.0/16 vpc-att-a 10.2.0.0/16 vpc-att-b Apply SNAT outbound to the internet SNAT Use cases:
  • 37. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T http://bit.ly/fortinet-tgw
  • 38. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T http://bit.ly/paloalto-tgw
  • 39. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Summary
  • 40. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 41. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Network debugging within Amazon VPC AWS Systems Manager SSM Automation AWSSupport-SetupIPMonitoringFromVPC VPC Amazon CloudWatch Logs Amazon CloudWatch Dashboard http://bit.ly/net-debug
  • 42. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Network debugging within Amazon VPC VPC Corporate data center http://bit.ly/net-debug
  • 43. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon CloudWatch Log Insights Amazon CloudWatch Logs VPC Flow logs AWS CloudTrail Amazon Route 53 AWS Lambda Custom Logs Amazon CloudWatch Logs Insights Users
  • 44. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 45. Thank you! S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Evgeny Vaganov evgeny@amazon.com