SlideShare a Scribd company logo

Learn how CBT Nuggets securely connects VPCs in minutes with Juniper Networks and AWS

Learn how CBT Nuggets, a provider of interactive learning experiences for IT professionals, adopted the Juniper Networks Transit VPC solution to simplify network management and improve developer productivity as their trainings evolved.

1 of 28
Download to read offline
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Learn how CBT Nuggets securely
connects VPCs in minutes with Juniper
Networks and AWS
Pratik Mankad, Solutions Architect, AWS
Scott Sneddon, Senior Director and Chief Evangelist, Cloud, Juniper Networks
Kurt Engle, Network Engineer and DevOps Architect, CBT Nuggets
Scalability Security Global Footprint Cost-effectiveness
Network agility bolsters cloud agility
The benefits of cloud computing are well-proven
But your networking agility can enhance the degree at which you derive those benefits
Amazon
Virtual Private
Cloud
(Amazon VPC)
AWS Direct
Connect
Amazon Elastic
Load Balancing
Amazon
Route 53
Core networking offerings
AWS offers a wide variety of networking services, with four at the center:
53
Connect Amazon VPCs using a transit VPC
If you’re running multiple Amazon VPCs,
a transit VPC can simplify connectivity:
 Connect multiple geographically dispersed and
cross-account Amazon VPCs and remote networks
 Reduce on-premises configuration delays and
accelerate data transfers
Transit VPC structure on AWS
Transit VPC capabilities on AWS
 Leverage Virtual Gateway capabilities to maintain network
connections to the transit VPC network appliances
 Connect remote networks to the transit Virtual Private
Network (VPN) appliances using dynamically routed VPN
connections
 Implement more complex routing rules based on the
transit VPC design
 Support any IP-based connectivity requirements with
minimal on-premises network changes required
Extend corporate
network to AWS
Shared
connectivity
Monitoring
and visibility
Private
networking
Move corporate applications
to the cloud, launch
additional web servers,
and/or add more compute
capacity to networks
Multiple Amazon VPCs can
share connections to data
centers, partner networks,
and other clouds
Transit VPCs help to
increase transparency
and enable the rapid
visualization of data
being transferred
Build a private network
that spans two or more
AWS Regions
Common transit VPC use cases on AWS
A data-driven rationale for cloud adoption
Build a transit VPC with AWS Marketplace offerings
ISVs in AWS Marketplace can help you design and implement a
transit VPC:
Find and deploy
the solution you
need in minutes
Save money with
pay-as-you-go
pricing
Scale globally
across all
AWS Regions
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Secure automated connectivity
meets cloud agility
Scott Sneddon, Senior Director and Chief Evangelist,
Cloud, Juniper Networks
AWS shared responsibility model
 Feature-rich router and virtual firewall
 Seamless L3 extension to AWS
 Integrated VPN / advanced security
 Consistent security across hybrid environments
 Unified management and visibility
 Simple, scalable, flexible licensing
Juniper Networks vSRX Next Generation Firewall
Key Capabilities
 Hub-and-spoke topology securely
connects distributed environments
 vSRX serves as a data flow hub
 Inter-VPC traffic is secured with IDS,
IPS, and NGFW
 Highly automated operations
Transit VPC
AWS CloudFormation template
Simplifies resource
provisioning and
management of the
transit VPC deployment
Makes deploying
new transit VPCs
quick, easy, and
repeatable
Allows you to
treat network
infrastructure
as code
Use case: enterprise global expansion
 Unified policy and management
 Unified threat and intrusion prevention
 Advanced threat prevention
 Secure connectivity
SDSN adaptive security for AWS workloads
 Supporting agile workloads with
security policies
 Complying with regulatory requirements
 Lateral threat propagation inside Amazon
VPC
SDSN adaptive security for AWS workloads
Challenges:
 Instantiates and manages Amazon VPC specific vSRX
instances
 Policy Enforcer supports meta-data based policies to
support agile workloads
 vSRX access control (L3, L7 FW), IPS and threat
policies based on meta-data
 AWS workload inventory and meta-data sync up with
Security Director
 Threat remediation: infected AWS VMs quarantined
by placing them in specified AWS security group
Solution:
Better together
Unified
management
Lower
TCO
Carrier-class
routing
Extensive
programmability
Simple, intuitive
management for
enforcing and
monitoring security
across AWS and
hybrid networks
vSRX reduces your
resource
requirements, directly
translating
to lower
infrastructure costs
Single JUNOS® across
all platforms with
carrier-class routing
built in
Extensive
programming
capabilities are
critical to DevOps
deployment
Combined
security
Bolster security with
the combination of
native AWS services
and Juniper Networks
security and
enhanced routing
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
CBT Nuggets
Kurt Engle, Network Engineer and DevOps Architect, CBT Nuggets
Founded in 1999
Based in Eugene, OR
Provider of innovative, online learning
experiences for IT professionals:
 On-demand training videos, quizzes and
practice certification exams, virtual labs, online
Learner Community, and more
About CBT Nuggets
Rapid expansion of learning materials drove CBT
Nuggets to modernize its cloud architecture:
 Before: Handful of local developers using a
monolithic setup
 Now: 75+ global developers leveraging
CICD pipelines
This growth resulted in numerous developer
environments operating in their own Amazon VPC
CBT Nuggets evolution
New architecture leads to complex management
Manual processes depleted network agility
Lack of automation increased the risk of human error
CBT Nuggets’ new, modern architecture streamlined development,
but legacy routing solutions complicated network management
CBT Nuggets implemented a Juniper Networks
Transit VPC to simplify network management
and drive agility
With this solution, CBT Nuggets gained:
 Dynamic routing
 Next-generation firewall capabilities
 Secure connectivity between resources
AWS + Juniper Networks solution
AWS + Juniper Networks solution
AWS + Juniper Networks solution
AWS + Juniper Networks solution
AWS + Juniper Networks solution
Now, CBT Nuggets can add
network infrastructure in a
matter of minutes
Amazon Web Services Engagement Models
Free Trials Available
 Bring Your Own License (BYOL)  AWS Marketplace Subscription (Annual)
 AWS Marketplace (Hourly)
AWSJuniper Networks
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Q & A

Recommended

Cloud Storage State of the Union
Cloud Storage State of the UnionCloud Storage State of the Union
Cloud Storage State of the UnionAmazon Web Services
 
Cloud Aggregation: Smart Access to a Smarter Cloud
Cloud Aggregation: Smart Access to a Smarter CloudCloud Aggregation: Smart Access to a Smarter Cloud
Cloud Aggregation: Smart Access to a Smarter CloudExponential_e
 
Securing your cloud perimeter with azure network security brk3185
Securing your cloud perimeter with azure network security brk3185Securing your cloud perimeter with azure network security brk3185
Securing your cloud perimeter with azure network security brk3185jtaylor707
 
Architecting Multi-Cloud Environments
Architecting Multi-Cloud EnvironmentsArchitecting Multi-Cloud Environments
Architecting Multi-Cloud EnvironmentsRightScale
 
Frank Denneman keynote
Frank Denneman keynoteFrank Denneman keynote
Frank Denneman keynoteVMUG IT
 
What Everyone Ought To Know About Cloud Security
What Everyone Ought To Know About Cloud SecurityWhat Everyone Ought To Know About Cloud Security
What Everyone Ought To Know About Cloud Securitycraigbalding
 

More Related Content

What's hot

GOTO Amsterdam 2017 - Enterprise Fast Lane
GOTO Amsterdam 2017 - Enterprise Fast LaneGOTO Amsterdam 2017 - Enterprise Fast Lane
GOTO Amsterdam 2017 - Enterprise Fast LaneChristian Deger
 
How to Think Multi-Cloud
How to Think Multi-CloudHow to Think Multi-Cloud
How to Think Multi-CloudRightScale
 
Cloud Security Tutorial | Cloud Security Fundamentals | AWS Training | Edureka
Cloud Security Tutorial | Cloud Security Fundamentals | AWS Training | EdurekaCloud Security Tutorial | Cloud Security Fundamentals | AWS Training | Edureka
Cloud Security Tutorial | Cloud Security Fundamentals | AWS Training | EdurekaEdureka!
 
Equinix Network Edge virtual network services demonstrated strong performance...
Equinix Network Edge virtual network services demonstrated strong performance...Equinix Network Edge virtual network services demonstrated strong performance...
Equinix Network Edge virtual network services demonstrated strong performance...Principled Technologies
 
Blaze clan company presentation
Blaze clan   company presentationBlaze clan   company presentation
Blaze clan company presentationSupratik Ghatak
 
(NET303) Optimizing Your Cloud Architecture With Network Strategy
(NET303) Optimizing Your Cloud Architecture With Network Strategy(NET303) Optimizing Your Cloud Architecture With Network Strategy
(NET303) Optimizing Your Cloud Architecture With Network StrategyAmazon Web Services
 
Security TechTalk | AWS Public Sector Summit 2016
Security TechTalk | AWS Public Sector Summit 2016Security TechTalk | AWS Public Sector Summit 2016
Security TechTalk | AWS Public Sector Summit 2016Amazon Web Services
 
Emerging Computing Architectures
Emerging Computing ArchitecturesEmerging Computing Architectures
Emerging Computing ArchitecturesDaniel Holmberg
 
Amazon Virtual Private Cloud (VPC): Networking Fundamentals and Connectivity ...
Amazon Virtual Private Cloud (VPC): Networking Fundamentals and Connectivity ...Amazon Virtual Private Cloud (VPC): Networking Fundamentals and Connectivity ...
Amazon Virtual Private Cloud (VPC): Networking Fundamentals and Connectivity ...Amazon Web Services
 
Connecting VMware Cloud on AWS to Native AWS Services - UKVMUG 2018
Connecting VMware Cloud on AWS to Native AWS Services - UKVMUG 2018Connecting VMware Cloud on AWS to Native AWS Services - UKVMUG 2018
Connecting VMware Cloud on AWS to Native AWS Services - UKVMUG 2018Julian Wood
 
Nimbo/Alert Logic - Azure in the Cloud
Nimbo/Alert Logic - Azure in the CloudNimbo/Alert Logic - Azure in the Cloud
Nimbo/Alert Logic - Azure in the CloudAlert Logic
 
(NET208) Enable & Secure Your Business Apps via the Hybrid Cloud on AWS
(NET208) Enable & Secure Your Business Apps via the Hybrid Cloud on AWS(NET208) Enable & Secure Your Business Apps via the Hybrid Cloud on AWS
(NET208) Enable & Secure Your Business Apps via the Hybrid Cloud on AWSAmazon Web Services
 
Delivering IaaS with Open Source Software
Delivering IaaS with Open Source SoftwareDelivering IaaS with Open Source Software
Delivering IaaS with Open Source SoftwareMark Hinkle
 
(ENT307) AWS Direct Connect Solutions and Network Automation | AWS re:Invent ...
(ENT307) AWS Direct Connect Solutions and Network Automation | AWS re:Invent ...(ENT307) AWS Direct Connect Solutions and Network Automation | AWS re:Invent ...
(ENT307) AWS Direct Connect Solutions and Network Automation | AWS re:Invent ...Amazon Web Services
 
Understanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersUnderstanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersDevOps.com
 
GDG Cloud Southlake #9 Secure Cloud Networking - Beyond Cloud Boundaries
GDG Cloud Southlake #9 Secure Cloud Networking - Beyond Cloud BoundariesGDG Cloud Southlake #9 Secure Cloud Networking - Beyond Cloud Boundaries
GDG Cloud Southlake #9 Secure Cloud Networking - Beyond Cloud BoundariesJames Anderson
 
From Cloud Computing to Edge Computing
From Cloud Computing to Edge ComputingFrom Cloud Computing to Edge Computing
From Cloud Computing to Edge ComputingJulien SIMON
 
A Cloud Security Ghost Story Craig Balding
A Cloud Security Ghost Story   Craig BaldingA Cloud Security Ghost Story   Craig Balding
A Cloud Security Ghost Story Craig Baldingcraigbalding
 

What's hot (20)

GOTO Amsterdam 2017 - Enterprise Fast Lane
GOTO Amsterdam 2017 - Enterprise Fast LaneGOTO Amsterdam 2017 - Enterprise Fast Lane
GOTO Amsterdam 2017 - Enterprise Fast Lane
 
How to Think Multi-Cloud
How to Think Multi-CloudHow to Think Multi-Cloud
How to Think Multi-Cloud
 
Cloud Security Tutorial | Cloud Security Fundamentals | AWS Training | Edureka
Cloud Security Tutorial | Cloud Security Fundamentals | AWS Training | EdurekaCloud Security Tutorial | Cloud Security Fundamentals | AWS Training | Edureka
Cloud Security Tutorial | Cloud Security Fundamentals | AWS Training | Edureka
 
Equinix Network Edge virtual network services demonstrated strong performance...
Equinix Network Edge virtual network services demonstrated strong performance...Equinix Network Edge virtual network services demonstrated strong performance...
Equinix Network Edge virtual network services demonstrated strong performance...
 
Blaze clan company presentation
Blaze clan   company presentationBlaze clan   company presentation
Blaze clan company presentation
 
(NET303) Optimizing Your Cloud Architecture With Network Strategy
(NET303) Optimizing Your Cloud Architecture With Network Strategy(NET303) Optimizing Your Cloud Architecture With Network Strategy
(NET303) Optimizing Your Cloud Architecture With Network Strategy
 
Security TechTalk | AWS Public Sector Summit 2016
Security TechTalk | AWS Public Sector Summit 2016Security TechTalk | AWS Public Sector Summit 2016
Security TechTalk | AWS Public Sector Summit 2016
 
Emerging Computing Architectures
Emerging Computing ArchitecturesEmerging Computing Architectures
Emerging Computing Architectures
 
Amazon Virtual Private Cloud (VPC): Networking Fundamentals and Connectivity ...
Amazon Virtual Private Cloud (VPC): Networking Fundamentals and Connectivity ...Amazon Virtual Private Cloud (VPC): Networking Fundamentals and Connectivity ...
Amazon Virtual Private Cloud (VPC): Networking Fundamentals and Connectivity ...
 
Connecting VMware Cloud on AWS to Native AWS Services - UKVMUG 2018
Connecting VMware Cloud on AWS to Native AWS Services - UKVMUG 2018Connecting VMware Cloud on AWS to Native AWS Services - UKVMUG 2018
Connecting VMware Cloud on AWS to Native AWS Services - UKVMUG 2018
 
Nimbo/Alert Logic - Azure in the Cloud
Nimbo/Alert Logic - Azure in the CloudNimbo/Alert Logic - Azure in the Cloud
Nimbo/Alert Logic - Azure in the Cloud
 
(NET208) Enable & Secure Your Business Apps via the Hybrid Cloud on AWS
(NET208) Enable & Secure Your Business Apps via the Hybrid Cloud on AWS(NET208) Enable & Secure Your Business Apps via the Hybrid Cloud on AWS
(NET208) Enable & Secure Your Business Apps via the Hybrid Cloud on AWS
 
Delivering IaaS with Open Source Software
Delivering IaaS with Open Source SoftwareDelivering IaaS with Open Source Software
Delivering IaaS with Open Source Software
 
Azure vnet
Azure vnetAzure vnet
Azure vnet
 
(ENT307) AWS Direct Connect Solutions and Network Automation | AWS re:Invent ...
(ENT307) AWS Direct Connect Solutions and Network Automation | AWS re:Invent ...(ENT307) AWS Direct Connect Solutions and Network Automation | AWS re:Invent ...
(ENT307) AWS Direct Connect Solutions and Network Automation | AWS re:Invent ...
 
Understanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersUnderstanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
 
Scalability and Availability
Scalability and AvailabilityScalability and Availability
Scalability and Availability
 
GDG Cloud Southlake #9 Secure Cloud Networking - Beyond Cloud Boundaries
GDG Cloud Southlake #9 Secure Cloud Networking - Beyond Cloud BoundariesGDG Cloud Southlake #9 Secure Cloud Networking - Beyond Cloud Boundaries
GDG Cloud Southlake #9 Secure Cloud Networking - Beyond Cloud Boundaries
 
From Cloud Computing to Edge Computing
From Cloud Computing to Edge ComputingFrom Cloud Computing to Edge Computing
From Cloud Computing to Edge Computing
 
A Cloud Security Ghost Story Craig Balding
A Cloud Security Ghost Story   Craig BaldingA Cloud Security Ghost Story   Craig Balding
A Cloud Security Ghost Story Craig Balding
 

Similar to Learn how CBT Nuggets securely connects VPCs in minutes with Juniper Networks and AWS

How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...
How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...
How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...Amazon Web Services
 
MSC202_Learn How Salesforce Used ADCs for App Load Balancing for an Internati...
MSC202_Learn How Salesforce Used ADCs for App Load Balancing for an Internati...MSC202_Learn How Salesforce Used ADCs for App Load Balancing for an Internati...
MSC202_Learn How Salesforce Used ADCs for App Load Balancing for an Internati...Amazon Web Services
 
Learn How Salesforce used ADCs for App Load Balancing for an International Ro...
Learn How Salesforce used ADCs for App Load Balancing for an International Ro...Learn How Salesforce used ADCs for App Load Balancing for an International Ro...
Learn How Salesforce used ADCs for App Load Balancing for an International Ro...Amazon Web Services
 
Automate the Provisioning of Secure Developer Environments on AWS PPT
 Automate the Provisioning of Secure Developer Environments on AWS PPT Automate the Provisioning of Secure Developer Environments on AWS PPT
Automate the Provisioning of Secure Developer Environments on AWS PPTAmazon Web Services
 
How a National Transportation Software Provider Migrated a Mission-Critical T...
How a National Transportation Software Provider Migrated a Mission-Critical T...How a National Transportation Software Provider Migrated a Mission-Critical T...
How a National Transportation Software Provider Migrated a Mission-Critical T...Amazon Web Services
 
Check Point Software Technologies: Secure Your AWS Workloads
 Check Point Software Technologies: Secure Your AWS Workloads Check Point Software Technologies: Secure Your AWS Workloads
Check Point Software Technologies: Secure Your AWS WorkloadsAmazon Web Services
 
DEM08 Use Cisco Cloud Connect to Securely Extend Private Network to AWS and M...
DEM08 Use Cisco Cloud Connect to Securely Extend Private Network to AWS and M...DEM08 Use Cisco Cloud Connect to Securely Extend Private Network to AWS and M...
DEM08 Use Cisco Cloud Connect to Securely Extend Private Network to AWS and M...Amazon Web Services
 
XCloudLabs- AWS Overview
XCloudLabs- AWS Overview XCloudLabs- AWS Overview
XCloudLabs- AWS Overview sangam biradar
 
[OpenStack Days Korea 2016] Track2 - 가상화 네트워크와 클라우드간 협업
[OpenStack Days Korea 2016] Track2 - 가상화 네트워크와 클라우드간 협업[OpenStack Days Korea 2016] Track2 - 가상화 네트워크와 클라우드간 협업
[OpenStack Days Korea 2016] Track2 - 가상화 네트워크와 클라우드간 협업OpenStack Korea Community
 
IaaS Cloud Providers: A comparative analysis
IaaS Cloud Providers: A comparative analysisIaaS Cloud Providers: A comparative analysis
IaaS Cloud Providers: A comparative analysisGraisy Biswal
 
Policy Based SDN Solution for DC and Branch Office by Suresh Boddapati
Policy Based SDN Solution for DC and Branch Office by Suresh BoddapatiPolicy Based SDN Solution for DC and Branch Office by Suresh Boddapati
Policy Based SDN Solution for DC and Branch Office by Suresh Boddapatibuildacloud
 
遷移過程中建置混和雲架構的最佳實踐分享
遷移過程中建置混和雲架構的最佳實踐分享遷移過程中建置混和雲架構的最佳實踐分享
遷移過程中建置混和雲架構的最佳實踐分享Amazon Web Services
 
Getting Started With AWS Security
Getting Started With AWS SecurityGetting Started With AWS Security
Getting Started With AWS SecurityAmazon Web Services
 
AWS Core Services Overview, Immersion Day Huntsville 2019
AWS Core Services Overview, Immersion Day Huntsville 2019AWS Core Services Overview, Immersion Day Huntsville 2019
AWS Core Services Overview, Immersion Day Huntsville 2019Amazon Web Services
 
Planning for MQ in the cloud MQTC 2017
Planning for MQ in the cloud MQTC 2017Planning for MQ in the cloud MQTC 2017
Planning for MQ in the cloud MQTC 2017Robert Parker
 
Emc The journey to the Private Cloud
Emc The journey to the Private CloudEmc The journey to the Private Cloud
Emc The journey to the Private CloudGabriele Bozzi
 
Cloud for Kubernetes : Session4
Cloud for Kubernetes : Session4Cloud for Kubernetes : Session4
Cloud for Kubernetes : Session4WhaTap Labs
 
Microsoft Windows Azure - Platfrom Appfabric Service Bus And Access Control P...
Microsoft Windows Azure - Platfrom Appfabric Service Bus And Access Control P...Microsoft Windows Azure - Platfrom Appfabric Service Bus And Access Control P...
Microsoft Windows Azure - Platfrom Appfabric Service Bus And Access Control P...Microsoft Private Cloud
 

Similar to Learn how CBT Nuggets securely connects VPCs in minutes with Juniper Networks and AWS (20)

How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...
How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...
How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...
 
MSC202_Learn How Salesforce Used ADCs for App Load Balancing for an Internati...
MSC202_Learn How Salesforce Used ADCs for App Load Balancing for an Internati...MSC202_Learn How Salesforce Used ADCs for App Load Balancing for an Internati...
MSC202_Learn How Salesforce Used ADCs for App Load Balancing for an Internati...
 
Learn How Salesforce used ADCs for App Load Balancing for an International Ro...
Learn How Salesforce used ADCs for App Load Balancing for an International Ro...Learn How Salesforce used ADCs for App Load Balancing for an International Ro...
Learn How Salesforce used ADCs for App Load Balancing for an International Ro...
 
Automate the Provisioning of Secure Developer Environments on AWS PPT
 Automate the Provisioning of Secure Developer Environments on AWS PPT Automate the Provisioning of Secure Developer Environments on AWS PPT
Automate the Provisioning of Secure Developer Environments on AWS PPT
 
How a National Transportation Software Provider Migrated a Mission-Critical T...
How a National Transportation Software Provider Migrated a Mission-Critical T...How a National Transportation Software Provider Migrated a Mission-Critical T...
How a National Transportation Software Provider Migrated a Mission-Critical T...
 
Check Point Software Technologies: Secure Your AWS Workloads
 Check Point Software Technologies: Secure Your AWS Workloads Check Point Software Technologies: Secure Your AWS Workloads
Check Point Software Technologies: Secure Your AWS Workloads
 
DEM08 Use Cisco Cloud Connect to Securely Extend Private Network to AWS and M...
DEM08 Use Cisco Cloud Connect to Securely Extend Private Network to AWS and M...DEM08 Use Cisco Cloud Connect to Securely Extend Private Network to AWS and M...
DEM08 Use Cisco Cloud Connect to Securely Extend Private Network to AWS and M...
 
XCloudLabs- AWS Overview
XCloudLabs- AWS Overview XCloudLabs- AWS Overview
XCloudLabs- AWS Overview
 
[OpenStack Days Korea 2016] Track2 - 가상화 네트워크와 클라우드간 협업
[OpenStack Days Korea 2016] Track2 - 가상화 네트워크와 클라우드간 협업[OpenStack Days Korea 2016] Track2 - 가상화 네트워크와 클라우드간 협업
[OpenStack Days Korea 2016] Track2 - 가상화 네트워크와 클라우드간 협업
 
IaaS Cloud Providers: A comparative analysis
IaaS Cloud Providers: A comparative analysisIaaS Cloud Providers: A comparative analysis
IaaS Cloud Providers: A comparative analysis
 
Policy Based SDN Solution for DC and Branch Office by Suresh Boddapati
Policy Based SDN Solution for DC and Branch Office by Suresh BoddapatiPolicy Based SDN Solution for DC and Branch Office by Suresh Boddapati
Policy Based SDN Solution for DC and Branch Office by Suresh Boddapati
 
遷移過程中建置混和雲架構的最佳實踐分享
遷移過程中建置混和雲架構的最佳實踐分享遷移過程中建置混和雲架構的最佳實踐分享
遷移過程中建置混和雲架構的最佳實踐分享
 
Getting Started With AWS Security
Getting Started With AWS SecurityGetting Started With AWS Security
Getting Started With AWS Security
 
AWS Core Services Overview, Immersion Day Huntsville 2019
AWS Core Services Overview, Immersion Day Huntsville 2019AWS Core Services Overview, Immersion Day Huntsville 2019
AWS Core Services Overview, Immersion Day Huntsville 2019
 
Planning for MQ in the cloud MQTC 2017
Planning for MQ in the cloud MQTC 2017Planning for MQ in the cloud MQTC 2017
Planning for MQ in the cloud MQTC 2017
 
zscaler-aws-zero-trust.pdf
zscaler-aws-zero-trust.pdfzscaler-aws-zero-trust.pdf
zscaler-aws-zero-trust.pdf
 
Emc The journey to the Private Cloud
Emc The journey to the Private CloudEmc The journey to the Private Cloud
Emc The journey to the Private Cloud
 
Cloud for Kubernetes : Session4
Cloud for Kubernetes : Session4Cloud for Kubernetes : Session4
Cloud for Kubernetes : Session4
 
Azure Hybid
Azure HybidAzure Hybid
Azure Hybid
 
Microsoft Windows Azure - Platfrom Appfabric Service Bus And Access Control P...
Microsoft Windows Azure - Platfrom Appfabric Service Bus And Access Control P...Microsoft Windows Azure - Platfrom Appfabric Service Bus And Access Control P...
Microsoft Windows Azure - Platfrom Appfabric Service Bus And Access Control P...
 

More from Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateAmazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSAmazon Web Services
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareAmazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAmazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWSAmazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckAmazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without serversAmazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceAmazon Web Services
 

More from Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 

Learn how CBT Nuggets securely connects VPCs in minutes with Juniper Networks and AWS

  • 1. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Learn how CBT Nuggets securely connects VPCs in minutes with Juniper Networks and AWS Pratik Mankad, Solutions Architect, AWS Scott Sneddon, Senior Director and Chief Evangelist, Cloud, Juniper Networks Kurt Engle, Network Engineer and DevOps Architect, CBT Nuggets
  • 2. Scalability Security Global Footprint Cost-effectiveness Network agility bolsters cloud agility The benefits of cloud computing are well-proven But your networking agility can enhance the degree at which you derive those benefits
  • 3. Amazon Virtual Private Cloud (Amazon VPC) AWS Direct Connect Amazon Elastic Load Balancing Amazon Route 53 Core networking offerings AWS offers a wide variety of networking services, with four at the center: 53
  • 4. Connect Amazon VPCs using a transit VPC If you’re running multiple Amazon VPCs, a transit VPC can simplify connectivity:  Connect multiple geographically dispersed and cross-account Amazon VPCs and remote networks  Reduce on-premises configuration delays and accelerate data transfers
  • 6. Transit VPC capabilities on AWS  Leverage Virtual Gateway capabilities to maintain network connections to the transit VPC network appliances  Connect remote networks to the transit Virtual Private Network (VPN) appliances using dynamically routed VPN connections  Implement more complex routing rules based on the transit VPC design  Support any IP-based connectivity requirements with minimal on-premises network changes required
  • 7. Extend corporate network to AWS Shared connectivity Monitoring and visibility Private networking Move corporate applications to the cloud, launch additional web servers, and/or add more compute capacity to networks Multiple Amazon VPCs can share connections to data centers, partner networks, and other clouds Transit VPCs help to increase transparency and enable the rapid visualization of data being transferred Build a private network that spans two or more AWS Regions Common transit VPC use cases on AWS A data-driven rationale for cloud adoption
  • 8. Build a transit VPC with AWS Marketplace offerings ISVs in AWS Marketplace can help you design and implement a transit VPC: Find and deploy the solution you need in minutes Save money with pay-as-you-go pricing Scale globally across all AWS Regions
  • 9. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Secure automated connectivity meets cloud agility Scott Sneddon, Senior Director and Chief Evangelist, Cloud, Juniper Networks
  • 11.  Feature-rich router and virtual firewall  Seamless L3 extension to AWS  Integrated VPN / advanced security  Consistent security across hybrid environments  Unified management and visibility  Simple, scalable, flexible licensing Juniper Networks vSRX Next Generation Firewall
  • 12. Key Capabilities  Hub-and-spoke topology securely connects distributed environments  vSRX serves as a data flow hub  Inter-VPC traffic is secured with IDS, IPS, and NGFW  Highly automated operations Transit VPC
  • 13. AWS CloudFormation template Simplifies resource provisioning and management of the transit VPC deployment Makes deploying new transit VPCs quick, easy, and repeatable Allows you to treat network infrastructure as code
  • 14. Use case: enterprise global expansion  Unified policy and management  Unified threat and intrusion prevention  Advanced threat prevention  Secure connectivity
  • 15. SDSN adaptive security for AWS workloads
  • 16.  Supporting agile workloads with security policies  Complying with regulatory requirements  Lateral threat propagation inside Amazon VPC SDSN adaptive security for AWS workloads Challenges:  Instantiates and manages Amazon VPC specific vSRX instances  Policy Enforcer supports meta-data based policies to support agile workloads  vSRX access control (L3, L7 FW), IPS and threat policies based on meta-data  AWS workload inventory and meta-data sync up with Security Director  Threat remediation: infected AWS VMs quarantined by placing them in specified AWS security group Solution:
  • 17. Better together Unified management Lower TCO Carrier-class routing Extensive programmability Simple, intuitive management for enforcing and monitoring security across AWS and hybrid networks vSRX reduces your resource requirements, directly translating to lower infrastructure costs Single JUNOS® across all platforms with carrier-class routing built in Extensive programming capabilities are critical to DevOps deployment Combined security Bolster security with the combination of native AWS services and Juniper Networks security and enhanced routing
  • 18. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CBT Nuggets Kurt Engle, Network Engineer and DevOps Architect, CBT Nuggets
  • 19. Founded in 1999 Based in Eugene, OR Provider of innovative, online learning experiences for IT professionals:  On-demand training videos, quizzes and practice certification exams, virtual labs, online Learner Community, and more About CBT Nuggets
  • 20. Rapid expansion of learning materials drove CBT Nuggets to modernize its cloud architecture:  Before: Handful of local developers using a monolithic setup  Now: 75+ global developers leveraging CICD pipelines This growth resulted in numerous developer environments operating in their own Amazon VPC CBT Nuggets evolution
  • 21. New architecture leads to complex management Manual processes depleted network agility Lack of automation increased the risk of human error CBT Nuggets’ new, modern architecture streamlined development, but legacy routing solutions complicated network management
  • 22. CBT Nuggets implemented a Juniper Networks Transit VPC to simplify network management and drive agility With this solution, CBT Nuggets gained:  Dynamic routing  Next-generation firewall capabilities  Secure connectivity between resources AWS + Juniper Networks solution
  • 23. AWS + Juniper Networks solution
  • 24. AWS + Juniper Networks solution
  • 25. AWS + Juniper Networks solution
  • 26. AWS + Juniper Networks solution Now, CBT Nuggets can add network infrastructure in a matter of minutes
  • 27. Amazon Web Services Engagement Models Free Trials Available  Bring Your Own License (BYOL)  AWS Marketplace Subscription (Annual)  AWS Marketplace (Hourly) AWSJuniper Networks
  • 28. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Q & A