Category: Amazon VPC

When you need to connect applications across Amazon Virtual Private Clouds (Amazon VPCs) to services that don’t fit the traditional AWS PrivateLink provider-consumer model, you face complex networking challenges that VPC peering and AWS Transit Gateway alone can’t easily solve. This is especially true for overlapping IP spaces. You can now connect to services that […]

For organizations operating multi-tenant environments, regulated environments, or multiple business units, maintaining strict network segmentation between SD-WAN and AWS is essential for meeting security, compliance, and operational requirements. This is Part 2 of the two-part series on extending SD-WAN segmentation into AWS Cloud WAN. In Part 1, the Generic Routing Encapsulation (GRE) based Connect attachment […]

For organizations operating multi-tenant environments, regulated environments, or multiple business units, maintaining strict network segmentation between SD-WAN and AWS is essential for meeting security, compliance, and operational requirements. Deploying SD-WAN virtual appliances and extending your segmentation through AWS Cloud WAN helps unify these segmented environments under a single, scalable global network. That said, segmentation is […]

Organizations often struggle with how to secure IPv6 network and application infrastructure on AWS based on what type of IPv6 addresses they are using. In this post, I cover the best practices and considerations for securing private IPv6 resources while maintaining the flexibility to adjust connectivity models as your infrastructure evolves. I also cover how […]

FIS is a global leader in financial technology, delivering modern banking and payments solutions to institutions worldwide. Its Total Issuer Solutions business represents one of the largest credit issuing and processing platforms globally, serving clients in more than 75 countries and processing over 40 billion transactions annually. The portfolio combines FIS’s scale, data richness and AI capabilities […]

As organizations scale their AWS environments across multiple accounts and Amazon virtual private clouds (VPCs), controlling internet access to cloud resources becomes challenging. With multiple accounts and network paths, maintaining secure network boundaries becomes a priority. A common security pattern is the demilitarized zone (DMZ) architecture, which isolates public-facing services from internal networks to reduce […]

The London Stock Exchange Group (LSEG) is a leading global financial markets infrastructure and data provider, serving over 25,000 customers across 190 countries. The company operates the London Stock Exchange and provides critical market data, analytics, and trading technology to banks, asset managers, hedge funds, and other financial institutions worldwide. Through its Real-Time Optimized (RTO) […]

In this post, we walk you through how to identify and analyze the newly separated intra-region VPC Peering charges using Amazon Web Services (AWS) Billing and Cost Management console tools including AWS Cost Explorer, AWS Data Exports (Standard data export and Legacy AWS Cost and Usage Reports (CUR) export) and AWS Bills, showing you the […]

In November 2025, Amazon CloudFront introduced cross-account support for Virtual Private Cloud (VPC) origins, which allows you to keep Amazon VPC origins and CloudFront distributions in separate Amazon Web Services (AWS) accounts. In turn, organizations with multi-account strategies can use VPC origins while maintaining their desired account structure. This enables a new architectural pattern for […]

In this post, we examine the ability for Amazon VPC IP Address Manager (IPAM) to automate prefix lists updates with prefix list resolver. This new feature uses the IPAM database to generate groups of IP addresses based on connectivity requirements and automates connectivity configurations by propagating IP addresses to Amazon Web Services (AWS) resources, such […]