SlideShare a Scribd company logo

AWS Direct Connect

Download as PPTX, PDF
Amazon Web Services
Amazon Web Services

Notes on the "AWS Direct Connect" presentation.

1 of 30
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS Direct Connect Camil Samaha
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Agenda • Introduction • Technical overview • Use cases • Billing • Questions
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 What is AWS Direct Connect? Corporate data centerAWS Cloud Virtual Private Cloud 1 Gb/s 10 Gb/s SESAmazon Glacier Elastic Beanstalk SQS Amazon EMR Amazon Redshift EC2 Direct Connect
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Why use AWS Direct Connect? • Consistent network performance – You choose the data that utilizes the dedicated connection – You decide how the data is routed, which can provide a more consistent network experience over Internet-based connections
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Why use AWS Direct Connect? • Elastic – You can specify the configuration that meets your needs – You can easily provision multiple connections if you need more capacity
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Why use AWS Direct Connect? • Lower bandwidth costs – Consistent cost at $0.02 / GB for data leaving us- east-1 – Costs vary by region $0.000 $0.050 $0.100 First 10TB Next 40TB Next 100TB Next 350TB Direct Internet
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Technical perspective • 10Gbps and 1Gbps service from AWS • Sub-1Gbps service from Direct Connect partners • 802.1Q, 1500B MTU • Connection (i.e., port) is the basic unit of Direct Connect • Virtual Interface built per VLAN on a connection • eBGP peering for route exchange
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 High-level overview VLAN Y VLAN X Virtual private cloud 1 Virtual private cloud 2 Virtual private cloud N … Public endpoints RegionDirect Connect location Private VIF 1 VLAN Z VLAN N AWS Direct Connect router Customer router Each interface can be associated with a different AWS account (hosted virtual interfaces)
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 How to connect • Select Direct Connect location(s) – Direct Connect locations are associated with a region – Direct Connect locations are not necessarily adjacent to the region – 15 current Direct Connect locations: US, EU, Asia Pacific, China, South America
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 How to connect • Order transport to Direct Connect location(s) – Point to point (DWDM, private line, Ethernet virtual private line) – Multipoint/Mesh (IP-VPN / MPLS or VPLS) • Request LOA/CFA in the Direct Connect console – “Create a Connection” for specific region and location – LOA/CFA sent to primary email address – LOA/CFA valid for 90 days from issuance • Order cross-connect to AWS port – Order must be made by the Direct Connect location provider’s customer – If using a partner, typically the partner is responsible; they have the relationship
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Create a connection
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 A word about LOA/CFA • Standard telecom interconnection approach – Used for hoteling/meet-me/peering • Letter of Authorization – Authorizes provider to cross-connect customer to AWS – Customer provides the LOA to the Direct Connect location provider • Connecting Facility Assignment – Indicates where the cross-connect should terminate – Specific to the AWS end of the connection
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 How to connect • Build virtual interface(s) (VIF) – Public VIF looks like a private Internet connection to AWS; no VGW, public IPs – Private VIF attaches to a VPC; connects to a single VGW, private IPs – VGW can have multiple VIFs attached (from different connections) – Hosted VIFs are singletons built by a provider, assigned to your account
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Ethernet is Ethernet Direct Connect location AWS Direct Connect router AWS cloud Remote corp office Customer router Customer IPVPN / MPLS Demarc Local corp data center Customer router
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Public virtual interfaces (VIFs) • Customer – Selects an unused VLAN for the VIF – Provides public IP addresses for VIF endpoints – Identifies planned route announcements – Provides public or private Autonomous System Number (ASN) – Specifies BGP authentication key – Determines VIF account assignment • AWS – Confirms customer owns routes and ASN (if in public range) – Announces local region routes • At US Direct Connect locations, all US region routes announced
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Private Virtual Interfaces (VIFs) • Customer: – Selects an unused VLAN for the VIF – Provides IP addresses for VIF endpoints – Specifies to which VGW in the Direct Connect local region to attach – Provides public or private Autonomous System Number (ASN) – Specifies BGP authentication key – Determines VIF account assignment • AWS – Announces CIDR of VPC associated with the VGW – Propagates received customer routes to VPC
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Single router, single port, single region Customer routers Customer internal network AWS Direct Connect routers • Multiple public VIFs allowed on connection • Multiple private VIFs allowed on connection Direct Connect location Region Instances Amazon S3 Public traffic Private traffic
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Dual router, dual port, single region Customer routers Customer internal network AWS Direct Connect routers • Active / active links via BGP multi-pathing • Active / passive also an option • AWS ensures different router if same facility • Can use different facilities and carriers • Customer can affect return path selection • AS-PATH prepend* • More-specific route DX location(s) Region Amazon S3 Instances Public traffic Private traffic
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Single router, single port + VPN backup Customer router Customer internal network AWS Direct Connect router • Routing selection priority – Static, Direct Connect, VPN • Overlapping routes only via propagated routes • Use BGP with VPN configuration for faster failover • If Direct Connect fails, VPN backup for private VI • If Direct Connect fails, Internet backup for public VI Direct Connect location Region InstancesInternetCustomer gateway VPN connection Amazon S3 Public traffic Private traffic
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Advanced: lollipop routing • VPC peering is challenging in large mesh – Subnet route tables grow quickly; may hit limits – Administratively difficult to manage or maintain – No automation presently available • Lollipop allows for hub-and-spoke routing – Advertise summary (or default) routes to the VGW – Advertise learned neighbor routes (as-override) – Maintain centralized routing rules, policies, and ACLs
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 VPC 1 Private Virtual Interface 1 VLAN Tag 101 BGP ASN 7224 BGP Announce 10.1.0.0/16 Interface IP 169.254.251.5/30 10.1.0.0/16 VGW 1 Multiple VPCs over AWS Direct Connect Customer switch + router Customer Interface 0/1.101 VLAN Tag 101 BGP ASN 65001 BGP Announce 10.0.0.0/8 Interface IP 169.254.251.6/30 VLAN 101 VLAN 102 VLAN 103 VPC 2 10.2.0.0/16 VGW 2 VPC 3 10.3.0.0/16 VGW 3 Private Virtual Interface 2 VLAN Tag 102 BGP ASN 7224 BGP Announce 10.2.0.0/16 Interface IP 169.254.251.9/30 Customer Interface 0/1.102 VLAN Tag 102 BGP ASN 65002 BGP Announce 10.0.0.0/8 Interface IP 169.254.251.10/30 Customer Interface 0/1.103 VLAN Tag 103 BGP ASN 65003 BGP Announce 10.0.0.0/8 Interface IP 169.254.251.14/30 Private Virtual Interface 3 VLAN Tag 103 BGP ASN 7224 BGP Announce 10.3.0.0/16 Interface IP 169.254.251.13/30 Route Table Destination Target 10.1.0.0/16 PVI 1 Customer internal network 10.2.0.0/16 PVI 2 10.3.0.0/16 PVI 3
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS Direct Connect Equinix, San Jose us-west-1 us-west-2 us-east-1 AWS private network VPN to VGW Advanced: cross-region via public VIF In the US, with a public VIF, use the AWS network to: • Access public resources in remote US regions • VPN to a remote US region and emulate a private VIF • Public VIF + VPN is a common GovCloud scenario Public traffic Private traffic
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS Direct Connect Equinix, San Jose us-west-1 us-west-2 us-east-1 Advanced: US multi-region, route selection Company establishes DX to us-west-1 and us-east-1. Which path should be taken to an S3 resource in us-west-2? AWS Direct Connect Equinix, Ashburn Customer internal network Office • Customer is responsible for their internal routing behaviors • AWS provides OOB information on region address blocks • Use BGP Local Pref, for example, for outbound routing • Use specific routes for inbound routing, avoid asymmetry • Use BFD for faster routing recovery on link failure Public traffic Private traffic
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 US customer data center eu-west-1 region EU customer data center Customer IPVPN MPLS backbone Direct Connect PoP Ireland or London us-east-1 region Direct Connect PoP Virginia or NYC ap-southeast-1 region Direct Connect PoP Singapore AP customer data center Advanced: global multi-region Direct Connect Public traffic Private traffic
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Billing • Customer will have other non-AWS costs – Transport to Direct Connect location – Cross-connect – Others • Connection account pays port charge • VIFs may be allocated to other accounts • Hosted VIF port charges come from Direct Connect provider
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Limits and notes • Limit of 100 routes announced to AWS • Contact support if VIFs + VPNs > 50/region • Cannot access Internet via public VIF • Hosted connections have only one VIF • You control route propagation in your VPC • VPCs are still non-transitive, peering won’t work • Direct Connect port is always 802.1Q Ethernet, no labels • VLANs are stripped at the Direct Connect edge router
AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Thank You. This presentation will be loaded to SlideShare the week following the Symposium. http://www.slideshare.net/AmazonWebServices AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Recommended

AWS Networking Fundamentals - SVC304 - Anaheim AWS Summit
AWS Networking Fundamentals - SVC304 - Anaheim AWS SummitAWS Networking Fundamentals - SVC304 - Anaheim AWS Summit
AWS Networking Fundamentals - SVC304 - Anaheim AWS SummitAmazon Web Services
 
AWS Direct Connect: Deep Dive (NET403) - AWS re:Invent 2018
AWS Direct Connect: Deep Dive (NET403) - AWS re:Invent 2018AWS Direct Connect: Deep Dive (NET403) - AWS re:Invent 2018
AWS Direct Connect: Deep Dive (NET403) - AWS re:Invent 2018Amazon Web Services
 
An introduction to AWS Direct Connect
An introduction to AWS Direct ConnectAn introduction to AWS Direct Connect
An introduction to AWS Direct ConnectJulien SIMON
 
Deploy and Govern at Scale with AWS Control Tower
Deploy and Govern at Scale with AWS Control TowerDeploy and Govern at Scale with AWS Control Tower
Deploy and Govern at Scale with AWS Control TowerAmazon Web Services
 
Introduction to AWS Security
Introduction to AWS SecurityIntroduction to AWS Security
Introduction to AWS SecurityAmazon Web Services
 
Security Architectures on AWS
Security Architectures on AWSSecurity Architectures on AWS
Security Architectures on AWSAmazon Web Services
 
Using AWS Control Tower to govern multi-account AWS environments at scale - G...
Using AWS Control Tower to govern multi-account AWS environments at scale - G...Using AWS Control Tower to govern multi-account AWS environments at scale - G...
Using AWS Control Tower to govern multi-account AWS environments at scale - G...Amazon Web Services
 
VPC Design and New Capabilities for Amazon VPC
VPC Design and New Capabilities for Amazon VPCVPC Design and New Capabilities for Amazon VPC
VPC Design and New Capabilities for Amazon VPCAmazon Web Services
 

Recommended

AWS Networking Fundamentals - SVC304 - Anaheim AWS Summit
AWS Networking Fundamentals - SVC304 - Anaheim AWS SummitAWS Networking Fundamentals - SVC304 - Anaheim AWS Summit
AWS Networking Fundamentals - SVC304 - Anaheim AWS SummitAmazon Web Services
 
AWS Direct Connect: Deep Dive (NET403) - AWS re:Invent 2018
AWS Direct Connect: Deep Dive (NET403) - AWS re:Invent 2018AWS Direct Connect: Deep Dive (NET403) - AWS re:Invent 2018
AWS Direct Connect: Deep Dive (NET403) - AWS re:Invent 2018Amazon Web Services
 
An introduction to AWS Direct Connect
An introduction to AWS Direct ConnectAn introduction to AWS Direct Connect
An introduction to AWS Direct ConnectJulien SIMON
 
Deploy and Govern at Scale with AWS Control Tower
Deploy and Govern at Scale with AWS Control TowerDeploy and Govern at Scale with AWS Control Tower
Deploy and Govern at Scale with AWS Control TowerAmazon Web Services
 
Introduction to AWS Security
Introduction to AWS SecurityIntroduction to AWS Security
Introduction to AWS SecurityAmazon Web Services
 
Security Architectures on AWS
Security Architectures on AWSSecurity Architectures on AWS
Security Architectures on AWSAmazon Web Services
 
Using AWS Control Tower to govern multi-account AWS environments at scale - G...
Using AWS Control Tower to govern multi-account AWS environments at scale - G...Using AWS Control Tower to govern multi-account AWS environments at scale - G...
Using AWS Control Tower to govern multi-account AWS environments at scale - G...Amazon Web Services
 
VPC Design and New Capabilities for Amazon VPC
VPC Design and New Capabilities for Amazon VPCVPC Design and New Capabilities for Amazon VPC
VPC Design and New Capabilities for Amazon VPCAmazon Web Services
 
Aws VPC
Aws VPCAws VPC
Aws VPCAbhishek Amralkar
 
AWS Control Tower
AWS Control TowerAWS Control Tower
AWS Control TowerCloudHesive
 
Elastic Load Balancing Deep Dive - AWS Online Tech Talk
Elastic Load Balancing Deep Dive - AWS Online Tech TalkElastic Load Balancing Deep Dive - AWS Online Tech Talk
Elastic Load Balancing Deep Dive - AWS Online Tech TalkAmazon Web Services
 
Landing Zones - Creating a Foundation for Your AWS Migrations
Landing Zones - Creating a Foundation for Your AWS MigrationsLanding Zones - Creating a Foundation for Your AWS Migrations
Landing Zones - Creating a Foundation for Your AWS MigrationsAmazon Web Services
 
AWS Monitoring & Logging
AWS Monitoring & LoggingAWS Monitoring & Logging
AWS Monitoring & LoggingJason Poley
 
AWS CodeCommit, CodeDeploy & CodePipeline
AWS CodeCommit, CodeDeploy & CodePipelineAWS CodeCommit, CodeDeploy & CodePipeline
AWS CodeCommit, CodeDeploy & CodePipelineJulien SIMON
 
AWS PrivateLink Fundamentals
AWS PrivateLink FundamentalsAWS PrivateLink Fundamentals
AWS PrivateLink FundamentalsAmazon Web Services
 
AWS Security Best Practices
AWS Security Best PracticesAWS Security Best Practices
AWS Security Best PracticesAmazon Web Services
 
Setting Up a Landing Zone
Setting Up a Landing ZoneSetting Up a Landing Zone
Setting Up a Landing ZoneAmazon Web Services
 
Introduction to AWS VPC, Guidelines, and Best Practices
Introduction to AWS VPC, Guidelines, and Best PracticesIntroduction to AWS VPC, Guidelines, and Best Practices
Introduction to AWS VPC, Guidelines, and Best PracticesGary Silverman
 
AWS Web Application Firewall and AWS Shield - Webinar
AWS Web Application Firewall and AWS Shield - Webinar AWS Web Application Firewall and AWS Shield - Webinar
AWS Web Application Firewall and AWS Shield - Webinar Amazon Web Services
 
AWS Connectivity, VPC Design and Security Pro Tips
AWS Connectivity, VPC Design and Security Pro TipsAWS Connectivity, VPC Design and Security Pro Tips
AWS Connectivity, VPC Design and Security Pro TipsShiva Narayanaswamy
 
AWS Networking Fundamentals
AWS Networking FundamentalsAWS Networking Fundamentals
AWS Networking FundamentalsAmazon Web Services
 
(ARC402) Double Redundancy With AWS Direct Connect
(ARC402) Double Redundancy With AWS Direct Connect(ARC402) Double Redundancy With AWS Direct Connect
(ARC402) Double Redundancy With AWS Direct ConnectAmazon Web Services
 
[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018
[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018
[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018Amazon Web Services
 
Double Redundancy with AWS Direct Connect - Pop-up Loft Tel Aviv
Double Redundancy with AWS Direct Connect - Pop-up Loft Tel AvivDouble Redundancy with AWS Direct Connect - Pop-up Loft Tel Aviv
Double Redundancy with AWS Direct Connect - Pop-up Loft Tel AvivAmazon Web Services
 
고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...
고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...
고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...Amazon Web Services Korea
 
더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021
더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021
더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021Amazon Web Services Korea
 
Deep dive into AWS IAM
Deep dive into AWS IAMDeep dive into AWS IAM
Deep dive into AWS IAMAmazon Web Services
 
Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...
Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...
Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...Amazon Web Services
 
(NET406) Deep Dive: AWS Direct Connect and VPNs
(NET406) Deep Dive: AWS Direct Connect and VPNs(NET406) Deep Dive: AWS Direct Connect and VPNs
(NET406) Deep Dive: AWS Direct Connect and VPNsAmazon Web Services
 
AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)
AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)
AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)Amazon Web Services Korea
 

More Related Content

What's hot

AWS Control Tower
AWS Control TowerAWS Control Tower
AWS Control TowerCloudHesive
 
Elastic Load Balancing Deep Dive - AWS Online Tech Talk
Elastic Load Balancing Deep Dive - AWS Online Tech TalkElastic Load Balancing Deep Dive - AWS Online Tech Talk
Elastic Load Balancing Deep Dive - AWS Online Tech TalkAmazon Web Services
 
Landing Zones - Creating a Foundation for Your AWS Migrations
Landing Zones - Creating a Foundation for Your AWS MigrationsLanding Zones - Creating a Foundation for Your AWS Migrations
Landing Zones - Creating a Foundation for Your AWS MigrationsAmazon Web Services
 
AWS Monitoring & Logging
AWS Monitoring & LoggingAWS Monitoring & Logging
AWS Monitoring & LoggingJason Poley
 
AWS CodeCommit, CodeDeploy & CodePipeline
AWS CodeCommit, CodeDeploy & CodePipelineAWS CodeCommit, CodeDeploy & CodePipeline
AWS CodeCommit, CodeDeploy & CodePipelineJulien SIMON
 
Introduction to AWS VPC, Guidelines, and Best Practices
Introduction to AWS VPC, Guidelines, and Best PracticesIntroduction to AWS VPC, Guidelines, and Best Practices
Introduction to AWS VPC, Guidelines, and Best PracticesGary Silverman
 
AWS Web Application Firewall and AWS Shield - Webinar
AWS Web Application Firewall and AWS Shield - Webinar AWS Web Application Firewall and AWS Shield - Webinar
AWS Web Application Firewall and AWS Shield - Webinar Amazon Web Services
 
AWS Connectivity, VPC Design and Security Pro Tips
AWS Connectivity, VPC Design and Security Pro TipsAWS Connectivity, VPC Design and Security Pro Tips
AWS Connectivity, VPC Design and Security Pro TipsShiva Narayanaswamy
 
(ARC402) Double Redundancy With AWS Direct Connect
(ARC402) Double Redundancy With AWS Direct Connect(ARC402) Double Redundancy With AWS Direct Connect
(ARC402) Double Redundancy With AWS Direct ConnectAmazon Web Services
 
[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018
[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018
[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018Amazon Web Services
 
Double Redundancy with AWS Direct Connect - Pop-up Loft Tel Aviv
Double Redundancy with AWS Direct Connect - Pop-up Loft Tel AvivDouble Redundancy with AWS Direct Connect - Pop-up Loft Tel Aviv
Double Redundancy with AWS Direct Connect - Pop-up Loft Tel AvivAmazon Web Services
 
고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...
고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...
고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...Amazon Web Services Korea
 
더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021
더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021
더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021Amazon Web Services Korea
 
Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...
Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...
Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...Amazon Web Services
 

What's hot (20)

Aws VPC
Aws VPCAws VPC
Aws VPC
 
AWS Control Tower
AWS Control TowerAWS Control Tower
AWS Control Tower
 
Elastic Load Balancing Deep Dive - AWS Online Tech Talk
Elastic Load Balancing Deep Dive - AWS Online Tech TalkElastic Load Balancing Deep Dive - AWS Online Tech Talk
Elastic Load Balancing Deep Dive - AWS Online Tech Talk
 
Landing Zones - Creating a Foundation for Your AWS Migrations
Landing Zones - Creating a Foundation for Your AWS MigrationsLanding Zones - Creating a Foundation for Your AWS Migrations
Landing Zones - Creating a Foundation for Your AWS Migrations
 
AWS Monitoring & Logging
AWS Monitoring & LoggingAWS Monitoring & Logging
AWS Monitoring & Logging
 
AWS CodeCommit, CodeDeploy & CodePipeline
AWS CodeCommit, CodeDeploy & CodePipelineAWS CodeCommit, CodeDeploy & CodePipeline
AWS CodeCommit, CodeDeploy & CodePipeline
 
AWS PrivateLink Fundamentals
AWS PrivateLink FundamentalsAWS PrivateLink Fundamentals
AWS PrivateLink Fundamentals
 
AWS Security Best Practices
AWS Security Best PracticesAWS Security Best Practices
AWS Security Best Practices
 
Setting Up a Landing Zone
Setting Up a Landing ZoneSetting Up a Landing Zone
Setting Up a Landing Zone
 
Introduction to AWS VPC, Guidelines, and Best Practices
Introduction to AWS VPC, Guidelines, and Best PracticesIntroduction to AWS VPC, Guidelines, and Best Practices
Introduction to AWS VPC, Guidelines, and Best Practices
 
AWS Web Application Firewall and AWS Shield - Webinar
AWS Web Application Firewall and AWS Shield - Webinar AWS Web Application Firewall and AWS Shield - Webinar
AWS Web Application Firewall and AWS Shield - Webinar
 
AWS Connectivity, VPC Design and Security Pro Tips
AWS Connectivity, VPC Design and Security Pro TipsAWS Connectivity, VPC Design and Security Pro Tips
AWS Connectivity, VPC Design and Security Pro Tips
 
AWS Networking Fundamentals
AWS Networking FundamentalsAWS Networking Fundamentals
AWS Networking Fundamentals
 
(ARC402) Double Redundancy With AWS Direct Connect
(ARC402) Double Redundancy With AWS Direct Connect(ARC402) Double Redundancy With AWS Direct Connect
(ARC402) Double Redundancy With AWS Direct Connect
 
[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018
[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018
[NEW LAUNCH!] Introducing AWS Transit Gateway (NET331) - AWS re:Invent 2018
 
Double Redundancy with AWS Direct Connect - Pop-up Loft Tel Aviv
Double Redundancy with AWS Direct Connect - Pop-up Loft Tel AvivDouble Redundancy with AWS Direct Connect - Pop-up Loft Tel Aviv
Double Redundancy with AWS Direct Connect - Pop-up Loft Tel Aviv
 
고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...
고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...
고객의 플랫폼/서비스를 개선한 국내 사례 살펴보기 – 장준성 AWS 솔루션즈 아키텍트, 강산아 NDREAM 팀장, 송영호 야놀자 매니저, ...
 
더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021
더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021
더욱 진화하는 AWS 네트워크 보안 - 신은수 AWS 시큐리티 스페셜리스트 솔루션즈 아키텍트 :: AWS Summit Seoul 2021
 
Deep dive into AWS IAM
Deep dive into AWS IAMDeep dive into AWS IAM
Deep dive into AWS IAM
 
Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...
Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...
Amazon Virtual Private Cloud (VPC) - Networking Fundamentals and Connectivity...
 

Viewers also liked

(NET406) Deep Dive: AWS Direct Connect and VPNs
(NET406) Deep Dive: AWS Direct Connect and VPNs(NET406) Deep Dive: AWS Direct Connect and VPNs
(NET406) Deep Dive: AWS Direct Connect and VPNsAmazon Web Services
 
AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)
AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)
AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)Amazon Web Services Korea
 
AWS CLOUD 2017 - Enterprise is Cloud Ready. 클라우드 뉴노멀 시대에 글로벌 혁신 기업들의 클라우드 전략 ...
AWS CLOUD 2017 - Enterprise is Cloud Ready. 클라우드 뉴노멀 시대에 글로벌 혁신 기업들의 클라우드 전략 ...AWS CLOUD 2017 - Enterprise is Cloud Ready. 클라우드 뉴노멀 시대에 글로벌 혁신 기업들의 클라우드 전략 ...
AWS CLOUD 2017 - Enterprise is Cloud Ready. 클라우드 뉴노멀 시대에 글로벌 혁신 기업들의 클라우드 전략 ...Amazon Web Services Korea
 
AWS re:Invent 2016: Deep Dive: AWS Direct Connect and VPNs (NET402)
AWS re:Invent 2016: Deep Dive: AWS Direct Connect and VPNs (NET402)AWS re:Invent 2016: Deep Dive: AWS Direct Connect and VPNs (NET402)
AWS re:Invent 2016: Deep Dive: AWS Direct Connect and VPNs (NET402)Amazon Web Services
 
Oracle Databases on AWS - Getting the Best Out of RDS and EC2
Oracle Databases on AWS - Getting the Best Out of RDS and EC2Oracle Databases on AWS - Getting the Best Out of RDS and EC2
Oracle Databases on AWS - Getting the Best Out of RDS and EC2Maris Elsins
 
Database as a Service on the Oracle Database Appliance Platform
Database as a Service on the Oracle Database Appliance PlatformDatabase as a Service on the Oracle Database Appliance Platform
Database as a Service on the Oracle Database Appliance PlatformMaris Elsins
 
Oracle RAC Internals - The Cache Fusion Edition
Oracle RAC Internals - The Cache Fusion EditionOracle RAC Internals - The Cache Fusion Edition
Oracle RAC Internals - The Cache Fusion EditionMarkus Michalewicz
 
Disaster Recovery using AWS -Architecture blueprints
Disaster Recovery using AWS -Architecture blueprintsDisaster Recovery using AWS -Architecture blueprints
Disaster Recovery using AWS -Architecture blueprintsHarish Ganesan
 
Broken Linux Performance Tools 2016
Broken Linux Performance Tools 2016Broken Linux Performance Tools 2016
Broken Linux Performance Tools 2016Brendan Gregg
 
Cloud Instances Price Comparison: AWS vs Azure vs Google vs IBM
Cloud Instances Price Comparison: AWS vs Azure vs Google vs IBMCloud Instances Price Comparison: AWS vs Azure vs Google vs IBM
Cloud Instances Price Comparison: AWS vs Azure vs Google vs IBMRightScale
 
AWS 101: Cloud Computing Seminar (2012)
AWS 101: Cloud Computing Seminar (2012)AWS 101: Cloud Computing Seminar (2012)
AWS 101: Cloud Computing Seminar (2012)Amazon Web Services
 
Essential Capabilities of an IoT Cloud Platform - AWS Online Tech Talks
Essential Capabilities of an IoT Cloud Platform - AWS Online Tech TalksEssential Capabilities of an IoT Cloud Platform - AWS Online Tech Talks
Essential Capabilities of an IoT Cloud Platform - AWS Online Tech TalksAmazon Web Services
 
What is Artificial Intelligence | Artificial Intelligence Tutorial For Beginn...
What is Artificial Intelligence | Artificial Intelligence Tutorial For Beginn...What is Artificial Intelligence | Artificial Intelligence Tutorial For Beginn...
What is Artificial Intelligence | Artificial Intelligence Tutorial For Beginn...Edureka!
 

Viewers also liked (13)

(NET406) Deep Dive: AWS Direct Connect and VPNs
(NET406) Deep Dive: AWS Direct Connect and VPNs(NET406) Deep Dive: AWS Direct Connect and VPNs
(NET406) Deep Dive: AWS Direct Connect and VPNs
 
AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)
AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)
AWS CLOUD 2017 - AWS 기반 하이브리드 클라우드 환경 구성 전략 (김용우 솔루션즈 아키텍트)
 
AWS CLOUD 2017 - Enterprise is Cloud Ready. 클라우드 뉴노멀 시대에 글로벌 혁신 기업들의 클라우드 전략 ...
AWS CLOUD 2017 - Enterprise is Cloud Ready. 클라우드 뉴노멀 시대에 글로벌 혁신 기업들의 클라우드 전략 ...AWS CLOUD 2017 - Enterprise is Cloud Ready. 클라우드 뉴노멀 시대에 글로벌 혁신 기업들의 클라우드 전략 ...
AWS CLOUD 2017 - Enterprise is Cloud Ready. 클라우드 뉴노멀 시대에 글로벌 혁신 기업들의 클라우드 전략 ...
 
AWS re:Invent 2016: Deep Dive: AWS Direct Connect and VPNs (NET402)
AWS re:Invent 2016: Deep Dive: AWS Direct Connect and VPNs (NET402)AWS re:Invent 2016: Deep Dive: AWS Direct Connect and VPNs (NET402)
AWS re:Invent 2016: Deep Dive: AWS Direct Connect and VPNs (NET402)
 
Oracle Databases on AWS - Getting the Best Out of RDS and EC2
Oracle Databases on AWS - Getting the Best Out of RDS and EC2Oracle Databases on AWS - Getting the Best Out of RDS and EC2
Oracle Databases on AWS - Getting the Best Out of RDS and EC2
 
Database as a Service on the Oracle Database Appliance Platform
Database as a Service on the Oracle Database Appliance PlatformDatabase as a Service on the Oracle Database Appliance Platform
Database as a Service on the Oracle Database Appliance Platform
 
Oracle RAC Internals - The Cache Fusion Edition
Oracle RAC Internals - The Cache Fusion EditionOracle RAC Internals - The Cache Fusion Edition
Oracle RAC Internals - The Cache Fusion Edition
 
Disaster Recovery using AWS -Architecture blueprints
Disaster Recovery using AWS -Architecture blueprintsDisaster Recovery using AWS -Architecture blueprints
Disaster Recovery using AWS -Architecture blueprints
 
Broken Linux Performance Tools 2016
Broken Linux Performance Tools 2016Broken Linux Performance Tools 2016
Broken Linux Performance Tools 2016
 
Cloud Instances Price Comparison: AWS vs Azure vs Google vs IBM
Cloud Instances Price Comparison: AWS vs Azure vs Google vs IBMCloud Instances Price Comparison: AWS vs Azure vs Google vs IBM
Cloud Instances Price Comparison: AWS vs Azure vs Google vs IBM
 
AWS 101: Cloud Computing Seminar (2012)
AWS 101: Cloud Computing Seminar (2012)AWS 101: Cloud Computing Seminar (2012)
AWS 101: Cloud Computing Seminar (2012)
 
Essential Capabilities of an IoT Cloud Platform - AWS Online Tech Talks
Essential Capabilities of an IoT Cloud Platform - AWS Online Tech TalksEssential Capabilities of an IoT Cloud Platform - AWS Online Tech Talks
Essential Capabilities of an IoT Cloud Platform - AWS Online Tech Talks
 
What is Artificial Intelligence | Artificial Intelligence Tutorial For Beginn...
What is Artificial Intelligence | Artificial Intelligence Tutorial For Beginn...What is Artificial Intelligence | Artificial Intelligence Tutorial For Beginn...
What is Artificial Intelligence | Artificial Intelligence Tutorial For Beginn...
 

Similar to AWS Direct Connect

Hybrid IT Approach and Technologies on AWS
Hybrid IT Approach and Technologies on AWSHybrid IT Approach and Technologies on AWS
Hybrid IT Approach and Technologies on AWSAmazon Web Services
 
Networking: New Capabilities for Amazon Virtual Private Cloud
Networking: New Capabilities for Amazon Virtual Private Cloud Networking: New Capabilities for Amazon Virtual Private Cloud
Networking: New Capabilities for Amazon Virtual Private Cloud Amazon Web Services
 
Pitt Immersion Day Module 3 - networking in AWS
Pitt Immersion Day Module 3 - networking in AWSPitt Immersion Day Module 3 - networking in AWS
Pitt Immersion Day Module 3 - networking in AWSEagleDream Technologies
 
打破時空藩籬,輕鬆存取您的雲端工作負載
打破時空藩籬,輕鬆存取您的雲端工作負載打破時空藩籬,輕鬆存取您的雲端工作負載
打破時空藩籬,輕鬆存取您的雲端工作負載Amazon Web Services
 
打破時空藩籬-輕鬆存取您的雲端工作負載
打破時空藩籬-輕鬆存取您的雲端工作負載打破時空藩籬-輕鬆存取您的雲端工作負載
打破時空藩籬-輕鬆存取您的雲端工作負載Amazon Web Services
 
AWS Summit Auckland - Fundamentals of Networking in AWS
AWS Summit Auckland - Fundamentals of Networking in AWSAWS Summit Auckland - Fundamentals of Networking in AWS
AWS Summit Auckland - Fundamentals of Networking in AWSAmazon Web Services
 
The Fundamentals of Networking in AWS: VPC and Connectivity Options - Business
The Fundamentals of Networking in AWS: VPC and Connectivity Options - BusinessThe Fundamentals of Networking in AWS: VPC and Connectivity Options - Business
The Fundamentals of Networking in AWS: VPC and Connectivity Options - BusinessAmazon Web Services
 
Running Microsoft Workloads on AWS
Running Microsoft Workloads on AWSRunning Microsoft Workloads on AWS
Running Microsoft Workloads on AWSAmazon Web Services
 
AWS re:Invent 2016: Extending Datacenters to the Cloud: Connectivity Options ...
AWS re:Invent 2016: Extending Datacenters to the Cloud: Connectivity Options ...AWS re:Invent 2016: Extending Datacenters to the Cloud: Connectivity Options ...
AWS re:Invent 2016: Extending Datacenters to the Cloud: Connectivity Options ...Amazon Web Services
 
High Availability Application Architectures in Amazon VPC (ARC202) | AWS re:I...
High Availability Application Architectures in Amazon VPC (ARC202) | AWS re:I...High Availability Application Architectures in Amazon VPC (ARC202) | AWS re:I...
High Availability Application Architectures in Amazon VPC (ARC202) | AWS re:I...Amazon Web Services
 
GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...
GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...
GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...Amazon Web Services
 
Using AWS Services to Go “All In” on AWS
Using AWS Services to Go “All In” on AWSUsing AWS Services to Go “All In” on AWS
Using AWS Services to Go “All In” on AWSAmazon Web Services
 
Amazon Virtual Private Cloud - VPC 2
Amazon Virtual Private Cloud - VPC 2Amazon Virtual Private Cloud - VPC 2
Amazon Virtual Private Cloud - VPC 2AWS Riyadh User Group
 
利用AWS建立企業全球化網路
利用AWS建立企業全球化網路利用AWS建立企業全球化網路
利用AWS建立企業全球化網路Amazon Web Services
 
Planning advanced AWS networking architectures - SVC304 - Chicago AWS Summit
Planning advanced AWS networking architectures - SVC304 - Chicago AWS SummitPlanning advanced AWS networking architectures - SVC304 - Chicago AWS Summit
Planning advanced AWS networking architectures - SVC304 - Chicago AWS SummitAmazon Web Services
 
(ARC205) Creating Your Virtual Data Center: VPC Fundamentals and Connectivity...
(ARC205) Creating Your Virtual Data Center: VPC Fundamentals and Connectivity...(ARC205) Creating Your Virtual Data Center: VPC Fundamentals and Connectivity...
(ARC205) Creating Your Virtual Data Center: VPC Fundamentals and Connectivity...Amazon Web Services
 

Similar to AWS Direct Connect (20)

Hybrid IT Approach and Technologies on AWS
Hybrid IT Approach and Technologies on AWSHybrid IT Approach and Technologies on AWS
Hybrid IT Approach and Technologies on AWS
 
Networking: New Capabilities for Amazon Virtual Private Cloud
Networking: New Capabilities for Amazon Virtual Private Cloud Networking: New Capabilities for Amazon Virtual Private Cloud
Networking: New Capabilities for Amazon Virtual Private Cloud
 
Pitt Immersion Day Module 3 - networking in AWS
Pitt Immersion Day Module 3 - networking in AWSPitt Immersion Day Module 3 - networking in AWS
Pitt Immersion Day Module 3 - networking in AWS
 
打破時空藩籬,輕鬆存取您的雲端工作負載
打破時空藩籬,輕鬆存取您的雲端工作負載打破時空藩籬,輕鬆存取您的雲端工作負載
打破時空藩籬,輕鬆存取您的雲端工作負載
 
打破時空藩籬-輕鬆存取您的雲端工作負載
打破時空藩籬-輕鬆存取您的雲端工作負載打破時空藩籬-輕鬆存取您的雲端工作負載
打破時空藩籬-輕鬆存取您的雲端工作負載
 
AWS Summit Auckland - Fundamentals of Networking in AWS
AWS Summit Auckland - Fundamentals of Networking in AWSAWS Summit Auckland - Fundamentals of Networking in AWS
AWS Summit Auckland - Fundamentals of Networking in AWS
 
The Fundamentals of Networking in AWS: VPC and Connectivity Options - Business
The Fundamentals of Networking in AWS: VPC and Connectivity Options - BusinessThe Fundamentals of Networking in AWS: VPC and Connectivity Options - Business
The Fundamentals of Networking in AWS: VPC and Connectivity Options - Business
 
Getting Started on AWS
Getting Started on AWS Getting Started on AWS
Getting Started on AWS
 
Running Microsoft Workloads on AWS
Running Microsoft Workloads on AWSRunning Microsoft Workloads on AWS
Running Microsoft Workloads on AWS
 
AWS re:Invent 2016: Extending Datacenters to the Cloud: Connectivity Options ...
AWS re:Invent 2016: Extending Datacenters to the Cloud: Connectivity Options ...AWS re:Invent 2016: Extending Datacenters to the Cloud: Connectivity Options ...
AWS re:Invent 2016: Extending Datacenters to the Cloud: Connectivity Options ...
 
High Availability Application Architectures in Amazon VPC (ARC202) | AWS re:I...
High Availability Application Architectures in Amazon VPC (ARC202) | AWS re:I...High Availability Application Architectures in Amazon VPC (ARC202) | AWS re:I...
High Availability Application Architectures in Amazon VPC (ARC202) | AWS re:I...
 
Deep Dive: Hybrid Architectures
Deep Dive: Hybrid ArchitecturesDeep Dive: Hybrid Architectures
Deep Dive: Hybrid Architectures
 
GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...
GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...
GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...
 
Using AWS Services to Go “All In” on AWS
Using AWS Services to Go “All In” on AWSUsing AWS Services to Go “All In” on AWS
Using AWS Services to Go “All In” on AWS
 
Amazon Virtual Private Cloud - VPC 2
Amazon Virtual Private Cloud - VPC 2Amazon Virtual Private Cloud - VPC 2
Amazon Virtual Private Cloud - VPC 2
 
利用AWS建立企業全球化網路
利用AWS建立企業全球化網路利用AWS建立企業全球化網路
利用AWS建立企業全球化網路
 
VPC and DX PoP @ HKG
VPC and DX PoP @ HKGVPC and DX PoP @ HKG
VPC and DX PoP @ HKG
 
Planning advanced AWS networking architectures - SVC304 - Chicago AWS Summit
Planning advanced AWS networking architectures - SVC304 - Chicago AWS SummitPlanning advanced AWS networking architectures - SVC304 - Chicago AWS Summit
Planning advanced AWS networking architectures - SVC304 - Chicago AWS Summit
 
aws vpn connection
aws vpn connectionaws vpn connection
aws vpn connection
 
(ARC205) Creating Your Virtual Data Center: VPC Fundamentals and Connectivity...
(ARC205) Creating Your Virtual Data Center: VPC Fundamentals and Connectivity...(ARC205) Creating Your Virtual Data Center: VPC Fundamentals and Connectivity...
(ARC205) Creating Your Virtual Data Center: VPC Fundamentals and Connectivity...
 

More from Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateAmazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSAmazon Web Services
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareAmazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAmazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWSAmazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckAmazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without serversAmazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceAmazon Web Services
 

More from Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 

AWS Direct Connect

  • 1. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS Direct Connect Camil Samaha
  • 2. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Agenda • Introduction • Technical overview • Use cases • Billing • Questions
  • 3. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 What is AWS Direct Connect? Corporate data centerAWS Cloud Virtual Private Cloud 1 Gb/s 10 Gb/s SESAmazon Glacier Elastic Beanstalk SQS Amazon EMR Amazon Redshift EC2 Direct Connect
  • 4. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Why use AWS Direct Connect? • Consistent network performance – You choose the data that utilizes the dedicated connection – You decide how the data is routed, which can provide a more consistent network experience over Internet-based connections
  • 5. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Why use AWS Direct Connect? • Elastic – You can specify the configuration that meets your needs – You can easily provision multiple connections if you need more capacity
  • 6. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Why use AWS Direct Connect? • Lower bandwidth costs – Consistent cost at $0.02 / GB for data leaving us- east-1 – Costs vary by region $0.000 $0.050 $0.100 First 10TB Next 40TB Next 100TB Next 350TB Direct Internet
  • 7. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Technical perspective • 10Gbps and 1Gbps service from AWS • Sub-1Gbps service from Direct Connect partners • 802.1Q, 1500B MTU • Connection (i.e., port) is the basic unit of Direct Connect • Virtual Interface built per VLAN on a connection • eBGP peering for route exchange
  • 8. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 High-level overview VLAN Y VLAN X Virtual private cloud 1 Virtual private cloud 2 Virtual private cloud N … Public endpoints RegionDirect Connect location Private VIF 1 VLAN Z VLAN N AWS Direct Connect router Customer router Each interface can be associated with a different AWS account (hosted virtual interfaces)
  • 9. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 How to connect • Select Direct Connect location(s) – Direct Connect locations are associated with a region – Direct Connect locations are not necessarily adjacent to the region – 15 current Direct Connect locations: US, EU, Asia Pacific, China, South America
  • 10. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 How to connect • Order transport to Direct Connect location(s) – Point to point (DWDM, private line, Ethernet virtual private line) – Multipoint/Mesh (IP-VPN / MPLS or VPLS) • Request LOA/CFA in the Direct Connect console – “Create a Connection” for specific region and location – LOA/CFA sent to primary email address – LOA/CFA valid for 90 days from issuance • Order cross-connect to AWS port – Order must be made by the Direct Connect location provider’s customer – If using a partner, typically the partner is responsible; they have the relationship
  • 11. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Create a connection
  • 12. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 A word about LOA/CFA • Standard telecom interconnection approach – Used for hoteling/meet-me/peering • Letter of Authorization – Authorizes provider to cross-connect customer to AWS – Customer provides the LOA to the Direct Connect location provider • Connecting Facility Assignment – Indicates where the cross-connect should terminate – Specific to the AWS end of the connection
  • 13. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015
  • 14. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 How to connect • Build virtual interface(s) (VIF) – Public VIF looks like a private Internet connection to AWS; no VGW, public IPs – Private VIF attaches to a VPC; connects to a single VGW, private IPs – VGW can have multiple VIFs attached (from different connections) – Hosted VIFs are singletons built by a provider, assigned to your account
  • 15. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Ethernet is Ethernet Direct Connect location AWS Direct Connect router AWS cloud Remote corp office Customer router Customer IPVPN / MPLS Demarc Local corp data center Customer router
  • 16. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Public virtual interfaces (VIFs) • Customer – Selects an unused VLAN for the VIF – Provides public IP addresses for VIF endpoints – Identifies planned route announcements – Provides public or private Autonomous System Number (ASN) – Specifies BGP authentication key – Determines VIF account assignment • AWS – Confirms customer owns routes and ASN (if in public range) – Announces local region routes • At US Direct Connect locations, all US region routes announced
  • 17. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015
  • 18. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Private Virtual Interfaces (VIFs) • Customer: – Selects an unused VLAN for the VIF – Provides IP addresses for VIF endpoints – Specifies to which VGW in the Direct Connect local region to attach – Provides public or private Autonomous System Number (ASN) – Specifies BGP authentication key – Determines VIF account assignment • AWS – Announces CIDR of VPC associated with the VGW – Propagates received customer routes to VPC
  • 19. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015
  • 20. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Single router, single port, single region Customer routers Customer internal network AWS Direct Connect routers • Multiple public VIFs allowed on connection • Multiple private VIFs allowed on connection Direct Connect location Region Instances Amazon S3 Public traffic Private traffic
  • 21. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Dual router, dual port, single region Customer routers Customer internal network AWS Direct Connect routers • Active / active links via BGP multi-pathing • Active / passive also an option • AWS ensures different router if same facility • Can use different facilities and carriers • Customer can affect return path selection • AS-PATH prepend* • More-specific route DX location(s) Region Amazon S3 Instances Public traffic Private traffic
  • 22. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Single router, single port + VPN backup Customer router Customer internal network AWS Direct Connect router • Routing selection priority – Static, Direct Connect, VPN • Overlapping routes only via propagated routes • Use BGP with VPN configuration for faster failover • If Direct Connect fails, VPN backup for private VI • If Direct Connect fails, Internet backup for public VI Direct Connect location Region InstancesInternetCustomer gateway VPN connection Amazon S3 Public traffic Private traffic
  • 23. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Advanced: lollipop routing • VPC peering is challenging in large mesh – Subnet route tables grow quickly; may hit limits – Administratively difficult to manage or maintain – No automation presently available • Lollipop allows for hub-and-spoke routing – Advertise summary (or default) routes to the VGW – Advertise learned neighbor routes (as-override) – Maintain centralized routing rules, policies, and ACLs
  • 24. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 VPC 1 Private Virtual Interface 1 VLAN Tag 101 BGP ASN 7224 BGP Announce 10.1.0.0/16 Interface IP 169.254.251.5/30 10.1.0.0/16 VGW 1 Multiple VPCs over AWS Direct Connect Customer switch + router Customer Interface 0/1.101 VLAN Tag 101 BGP ASN 65001 BGP Announce 10.0.0.0/8 Interface IP 169.254.251.6/30 VLAN 101 VLAN 102 VLAN 103 VPC 2 10.2.0.0/16 VGW 2 VPC 3 10.3.0.0/16 VGW 3 Private Virtual Interface 2 VLAN Tag 102 BGP ASN 7224 BGP Announce 10.2.0.0/16 Interface IP 169.254.251.9/30 Customer Interface 0/1.102 VLAN Tag 102 BGP ASN 65002 BGP Announce 10.0.0.0/8 Interface IP 169.254.251.10/30 Customer Interface 0/1.103 VLAN Tag 103 BGP ASN 65003 BGP Announce 10.0.0.0/8 Interface IP 169.254.251.14/30 Private Virtual Interface 3 VLAN Tag 103 BGP ASN 7224 BGP Announce 10.3.0.0/16 Interface IP 169.254.251.13/30 Route Table Destination Target 10.1.0.0/16 PVI 1 Customer internal network 10.2.0.0/16 PVI 2 10.3.0.0/16 PVI 3
  • 25. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS Direct Connect Equinix, San Jose us-west-1 us-west-2 us-east-1 AWS private network VPN to VGW Advanced: cross-region via public VIF In the US, with a public VIF, use the AWS network to: • Access public resources in remote US regions • VPN to a remote US region and emulate a private VIF • Public VIF + VPN is a common GovCloud scenario Public traffic Private traffic
  • 26. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 AWS Direct Connect Equinix, San Jose us-west-1 us-west-2 us-east-1 Advanced: US multi-region, route selection Company establishes DX to us-west-1 and us-east-1. Which path should be taken to an S3 resource in us-west-2? AWS Direct Connect Equinix, Ashburn Customer internal network Office • Customer is responsible for their internal routing behaviors • AWS provides OOB information on region address blocks • Use BGP Local Pref, for example, for outbound routing • Use specific routes for inbound routing, avoid asymmetry • Use BFD for faster routing recovery on link failure Public traffic Private traffic
  • 27. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 US customer data center eu-west-1 region EU customer data center Customer IPVPN MPLS backbone Direct Connect PoP Ireland or London us-east-1 region Direct Connect PoP Virginia or NYC ap-southeast-1 region Direct Connect PoP Singapore AP customer data center Advanced: global multi-region Direct Connect Public traffic Private traffic
  • 28. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Billing • Customer will have other non-AWS costs – Transport to Direct Connect location – Cross-connect – Others • Connection account pays port charge • VIFs may be allocated to other accounts • Hosted VIF port charges come from Direct Connect provider
  • 29. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Limits and notes • Limit of 100 routes announced to AWS • Contact support if VIFs + VPNs > 50/region • Cannot access Internet via public VIF • Hosted connections have only one VIF • You control route propagation in your VPC • VPCs are still non-transitive, peering won’t work • Direct Connect port is always 802.1Q Ethernet, no labels • VLANs are stripped at the Direct Connect edge router
  • 30. AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015 Thank You. This presentation will be loaded to SlideShare the week following the Symposium. http://www.slideshare.net/AmazonWebServices AWS Government, Education, and Nonprofit Symposium Washington, DC I June 25-26, 2015

Editor's Notes

  1. -I want to briefly discuss what we’ll be covering during this presentation. -For this deep dive talk we are making a few assumptions, that you are all familiar with or aware of most of the AWS services. Many of you may already have an understanding of the benefits of DX but are looking for some technical depth. -Fear not if you are new to the product though. -First, We’ll take a high level look at the service, particularly the benefits that you can obtain by using it -and secondly, a technical deep dive in requirements and basic configuration options. -Thirdly we’ll consider a few typical and advanced use cases -Then we’ll briefly touch on billing -And finally a chance to ask and hear answers to some questions
  2. Amazon Web Services operates a highly reliable and secure technology infrastructure platform on a global basis that is able to support virtually any cloud workload, including web and mobile applications, data processing and warehousing, storage, archive, and many others. While many companies, such as Netflix, build entire businesses on AWS, many are in different stages of the journey of moving applications to the AWS cloud. Some have existing datacenters they are not ready to retire yet, and these customers are telling us they want to be able to use those existing datacenters alongside AWS. For example, NASDAQ runs their base workloads on-premises, and exports their data to AWS for analytic processing. AWS Direct Connect is a unique solution that supports customers that need to run these types of important workloads. AWS Direct Connect goes beyond simple connectivity over the Internet; instead, it uses dedicated, private network connections between your on-premises solutions and AWS to provide scale, speed and consistency.
  3. Like all AWS services, you can scale to meet your own demands, whether that is a single 1 Gb port to upload data to be processed by EMR, or multiple 10 Gb ports to handle all of your business applications talking seamlessly between AWS and your on-premises resources.
  4. Direct Connect offers potentially substantial decrease in cost per GB transferred. Whether using the internet or DX, data transfer into AWS is free, so using DX to copy telematic data from all of your factory machinery to S3 is a no brainer. But DX can significantly lower the price to bring the operational results, reports and recovery data back on-premises when it’s needed. In the chart, you can a comparison of data charges being transferred out of the US-East-1 region. AWS DX offers a flat rate of $0.02 / GB no matter the amount of data moved when the cost of internet transit starts at 9 cents / GB. Anywhere the DX service is offered, while the actual pennies may vary, the saving opportunity is similarly equal.
  5. 1500 bytes mtu
  6. LOA/CFA sent to primary email address in <= 72 hours
  7. A VIF can attach to one VGW (one VIF per connection per VGW) A VGW can have multiple VIFs (from different connections)
  8. Path vector *AS-PATH prepend not supported with public VIF / private ASN combo
  9. Router on a stick
  10. Private VIFs are basically metered at the interface Public VIFs are basically metered at the resource Example: S3 Data Out Bucket account not owned by/linked to VIF account Bucket owner pays Internet data-out, no DX data-out charge Bucket account is owned by/linked to VIF account Bucket owner pays DX data-out Bucket is set as requestor pays VIF account pays DX data-out