-
Cloud Workloads
November 14, 2019
Advantages of Using Aviatrix to Extend Native Cloud Networking Constructs
By Sam Ghardashem, Senior Product Manager, Aviatrix
Aviatrix, the leading provider of advanced networking and security services for multicloud enterprises, has extended its portfolio of services to Oracle Cloud Infrastructure, in addition to Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure. Aviatrix software embraces native Oracle Cloud constructs and enables enterprises—especially those deploying on multicloud environments—to extend with advanced networking and security services simply, securely, and with single-pane-of-glass visibility.
More than 300 enterprises have chosen Aviatrix as the foundation for their multicloud network architecture across different stages of their cloud adoption.
Advantages of Aviatrix Over Native Networking Constructs
Aviatrix offers the following advantages over public cloud native networking constructs.
Consistent Experience Across Different Clouds
Aviatrix Controller creates an abstraction layer on top of native cloud networking constructs to provide a common interface for orchestration and day-two operations in a single cloud, between multiple clouds, and for on-premises connections.
Ease of Use and Simplicity
The complexity of cloud networking is a major hurdle to cloud adoption. Aviatrix Controller automates and orchestrates otherwise complex and manual connectivity tasks that can be time consuming and cumbersome to manage.
Removes Cloud Limitations
Native networking constructs have limitations that can impede enterprise deployments that require the highest scale. Aviatrix Gateways extend native networking constructs to deliver advanced networking features that are formed from being embedded into but also operating as an overlay on the hyperscale cloud provider’s infrastructure.
Better Visibility
Native networking constructs often lack the visibility and day-two operational tools that enterprises require. Aviatrix Controller addresses this challenge by maintaining complete knowledge of the entire multicloud network environment and aggregating crucial information about the state of the networking and security connections and configurations in one place, which is accessible through a REST API driven browser interface.
Born in the Cloud for the Cloud
Aviatrix software fully embraces and extends cloud native constructs. All Aviatrix services are built on native cloud infrastructure and operational foundations. Designed in the cloud, rather than from the data center onto the cloud, Aviatrix maintains the agility and speed enterprise customers expect from the cloud, and adds the operational visibility and advanced networking capabilities that network engineers are often missing in the cloud.
Use Cases That Aviatrix Enables on Oracle Cloud
These advantages let Aviatrix provide the following use cases for Oracle Cloud Infrastructure.
VCN Transit Networking
One of the most common challenges that enterprises face in the public cloud is creating and managing secure connections between all their deployments in a multicloud setting. The Aviatrix Transit VPC service simplifies setting up transit networking by using a hub-and-spoke topology. Regardless of the deployment region or application architecture, Aviatrix's multicloud transit networking capabilities enable scalable and seamless connectivity across deployments in any supported public cloud. Furthermore, network administrators can leverage stateful firewall features in Aviatrix Controller to implement network segmentation and traffic engineering between any two networks.
Site-to-Cloud Connection for Hybrid Cloud Deployments
Connecting on-premises data centers to cloud deployments is a common use case among enterprises. This connection can be a dedicated high-bandwidth connection from an organization’s own data centers to the cloud, or multiple broadband connections to partners and/or customers. Aviatrix offers both dedicated point-to-point VPN connections and point-to-multipoint connections.
- In a dedicated point-to-point connection, external connections have access to a single VCN.
- Point-to-multipoint connections leverage Aviatrix’s multicloud transit networking service. External connections can access all VCNs connected to the transit network, managed by network segmentation connection policies.
Egress Filtering
Aviatrix’s secure egress service delivers a centrally managed, distributed egress filtering feature with fully qualified domain name (FQDN) allow list control for internet-bound traffic from within any VCN. In public clouds, virtual instances are a logical hop away from accessing the public internet. Cloud-based applications often require access to the internet to download build packages, software updates, and more. But, unrestricted access to the public internet poses a major security risk. Because of scale and complexity, sometimes access control lists (ACLs) or security groups aren't feasible. Aviatrix Gateways allow network engineers to apply FQDN allow lists to filter internet-bound traffic. By supporting wild card characters anywhere in the DNS hostname, the number of rules needed can be dramatically simplified.
User VPN to Enable Secure Access to VCN Resources
Independent of application location, DevOps teams need access to resources that are deployed in the public cloud infrastructure. Public cloud-based applications are often blocked from external access for security and compliance reasons. Aviatrix Gateways are deployed as a smart SAML user VPN service that offers secure access control for authenticated users to VCN-based resources. Unique user profiles deliver granular control that defines each user’s role-based access control. Fine-grained monitoring and logging provides additional security layers to satisfy regulatory compliance and corporate governance requirements. This is a powerful solution that enables enterprises to implement principles of least privilege and follow their best practices.
Try Aviatrix Now on Oracle Cloud Marketplace
You can try Aviatrix today by launching an Aviatrix Controller directly from the Oracle Cloud Marketplace in your tenancy in just a few minutes, and then configuring it by using the Oracle Cloud Infrastructure startup guide. When the controller is launched, you can easily explore and implement any of the preceding use cases that meet your enterprise's needs.
About the Author
Sam is a Senior Product Manager and technology evangelist at Aviatrix Systems. Prior to this role, he was a Solutions Manager at Ixia Communications (now part of Keysight Technologies), focused on cloud network and security management solutions. Sam comes from a diversified technical background in Networking, SDN, Virtualization, and Cloud Computing. In his spare time, he enjoys outdoor activities and playing team sports.