- Newest
- Most votes
- Most comments
H,
Those blog posts will guide you toward optimal use of AWS Cloud WAN and its best practices
- https://aws.amazon.com/blogs/networking-and-content-delivery/advanced-hybrid-routing-scenarios-with-aws-cloud-wan-and-aws-direct-connect/
- https://aws.amazon.com/blogs/networking-and-content-delivery/simplify-global-security-inspection-with-aws-cloud-wan-service-insertion/
Best,
Diudier
I usually recommend customers that want to leverage AWS Cloud WAN is that they need to have a look into the quotas. Today, the max number of segments per core network is 40. Less is more imo! If for example dev, qa, and uat have the simmilar characteristics in terms of routing, maybe consolidate them into one segment?
Hope you also are aware of the isolate-attachments option in a AWS Cloud WAN policy, where you can ensure attachments in the same segment cannot communicate. This is relevant if you are integrating with external vendors or partners.
Also if you are operating in a multi region environment, I recommend having a look at service insertion for AWS Cloud WAN, which will make your inspection life easier (and cheaper) for east/west traffic going from one region to another.
Relevant content
- Accepted Answerasked 2 years ago
- Accepted Answerasked 2 years ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
Thanks emned, is there any ways to make the north south traffic cheaper. otherwise i need to have aws advanced shield in all region which is expensive