AWS re:Invent 2023
Simplify Optimize and Enhance Aws Network Management Cop220

Title

AWS re:Invent 2023 - Simplify, Optimize, and Enhance AWS Network Management (COP220)

Summary

  • Presenter: Stoll Moeller
  • Company: Aviatrix
  • Founded: 2014
  • Customers: Over 500 enterprise customers, including over 50 of the Fortune 500 in 25 countries
  • Scale: Supports environments ranging from 10 to 5,000 VPCs
  • Product: A distributed system that provides networking, embedded telemetry, and security across multiple cloud environments (AWS, Azure, Google, Oracle, Alibaba)
  • Key Features:
    • Simplifies operations with dynamic topology maps, real-time NetFlow analysis, and troubleshooting tools
    • Enhances security with ThreatIQ, partnerships with Palo Alto, Check Point, Fortinet, and a distributed cloud firewall
    • Reduces costs by optimizing infrastructure with smaller instance types and eliminating per-gigabyte charges on NAT gateways
  • Distributed Cloud Firewall: Introduced in May, leverages visibility of all traffic to enforce policies and supports IDS, vulnerability scanning, URL filtering, and micro-segmentation
  • Cost Savings Example: A customer with 290 VPCs saved 33% on compute costs and achieved 14x performance improvement by switching to Aviatrix's distributed model
  • NAT Gateway Savings: Aviatrix's NAT gateway can replace expensive AWS NAT gateways, potentially saving millions per year
  • Deployment: Non-disruptive, with a gradual progression from replacing NAT gateways to full distributed firewall capabilities
  • Demos and Cost Analysis: Available at Aviatrix's booth (#890) at re:Invent 2023

Insights

  • Multi-Cloud Support: Aviatrix's solution is designed to work across multiple cloud providers, offering a consistent networking and security experience. This is particularly relevant for organizations with multi-cloud strategies.
  • Embedded Security: By integrating security directly into the network fabric, Aviatrix provides enhanced visibility and control over traffic, which is crucial for detecting and mitigating threats in real-time.
  • Cost-Effectiveness: The distributed cloud firewall and NAT gateway solutions by Aviatrix can lead to significant cost savings for enterprises by optimizing resource usage and eliminating certain charges associated with native cloud services.
  • Advanced Networking: Aviatrix supports advanced networking features like BGP, which is important for organizations with complex routing requirements, including hybrid cloud scenarios.
  • Ease of Troubleshooting: The tools provided by Aviatrix, such as dynamic topology mapping and the ability to replay network changes, simplify the process of diagnosing and resolving network issues.
  • Scalability: The distributed system architecture is proven to scale up to environments with thousands of VPCs, which is essential for large enterprises.
  • Gradual Adoption: Aviatrix's approach allows for incremental implementation, enabling organizations to start with specific use cases like egress filtering and progressively adopt more features as they become comfortable with the system.
Simplify Governance Third Party Assessments Using Aws Marketplace Mkt201Simplifying Cost Optimized Cyber Response Recovery at Massive Scale Stg104