Cloud Packets and Perimeters
Cloud Packets and Perimeters

Cloud Packets and Perimeters

netJoints

Overview
Episodes

Details

A podcast where Cybersecurity and Cloud Networking Converge. We are securing the cloud, One Packet at a Time. Brought to you by NetJoints.com— your source for cloud networking and security insights. netJoints is the Intersection of Packets and Protection.

Recent Episodes

EP37 | Aviatrix Multicloud and Multicluster Networking and Security for Kubernetes
NOV 19, 2024
EP37 | Aviatrix Multicloud and Multicluster Networking and Security for Kubernetes

Main Themes:

  • The rise of multicloud 2.0: Organizations are moving beyond a single primary cloud and embracing a true multicloud strategy to leverage best-of-breed services from different providers.
  • Kubernetes networking and security challenges: Multicloud Kubernetes deployments face issues with IP address exhaustion, overlapping IPs, egress security, and high-bandwidth secure inter-cluster connectivity.
  • Aviatrix solutions for multicloud Kubernetes: Aviatrix offers a controller-based, intent-based networking and security platform that addresses these challenges with dynamic segmentation, secure egress, and hybrid connectivity.

Key Ideas and Facts:

Multicloud 2.0:

  • Shifting landscape: The cloud landscape has evolved significantly in the 18 years since AWS launched. Organizations now have access to hyperscalers, regional clouds, and specialized clouds.
  • True multicloud strategy: Organizations are adopting a true multicloud strategy to leverage the unique strengths of different cloud providers and enable developers to build better applications and services.
  • Cloud 2.0: Many organizations are calling this shift "Cloud 2.0," driven by the need for distributed data, models, and applications, especially with the rise of GenAI and AI/ML applications.

Kubernetes Networking and Security Challenges:

  • IP address exhaustion: Kubernetes is "IP hungry," leading to IP address exhaustion and challenges with overlapping IPs, especially in large deployments with thousands of VPCs.
  • Egress security: Millions of VPCs have weak or non-existent egress security, posing a significant risk to sensitive data.
  • Inter-cluster connectivity: Establishing high-bandwidth, secure connectivity between Kubernetes clusters across different clouds and on-premises environments is complex and challenging.

Aviatrix Solutions:

  • Controller-based, intent-based networking: Aviatrix provides a centralized multicloud controller and uses intent-based policies to dynamically segment and secure traffic across Kubernetes clusters, regardless of the underlying IP addresses.
  • Secure egress: Aviatrix replaces traditional NAT gateways with secure Aviatrix gateways, offering embedded NAT, visibility, and granular egress security policies based on Kubernetes resources.
  • Dynamic scaling: Aviatrix automatically discovers and incorporates new Kubernetes resources into security policies as clusters scale up or down, eliminating manual configuration and ensuring consistent security.
  • Hybrid connectivity: Aviatrix facilitates secure connectivity between cloud Kubernetes clusters and on-premises environments, including edge locations, enabling hybrid deployments for AI/ML and other workloads.

Customer Success:

  • Large-scale deployments: Aviatrix has customers with thousands of island VPCs and overlapping IP spaces, successfully using its platform to manage their multicloud Kubernetes environments.
  • Operational efficiency: Aviatrix simplifies operations with its controller-based approach, dynamic policy updates, and world-class SRE team handling upgrades and troubleshooting.

Key Quotes:

  • Anirban Sengupta (Aviatrix): "Today every organization should embrace multicloud. That's the best way to get ahead with their competitors and help their developers."
  • Anirban Sengupta (Aviatrix): "Networking and security should be top of mind... without connectivity and without security, you really can't have a multicloud strategy."
  • Anirban Sengupta (Aviatrix): "Kubernetes is very IP hungry. There is exhaustion, IP address exhaustion is the key."


Call to Action:

Organizations looking to embrace a true multicloud strategy and overcome the networking and security challenges of Kubernetes should consider Aviatrix's controller-based platform. Contact Aviatrix for a demo and learn how their solutions can help you achieve secure and efficient multicloud Kubernetes deployments.

play-circle icon
11 MIN
EP36 | Secure Cloud Networking with Asif Masood from TrueValue
MAY 22, 2023
EP36 | Secure Cloud Networking with Asif Masood from TrueValue

How to achieve network simplicity in Google Cloud (GCP) and the importance of customer-centric relationship.”

Unscripted chat with Sr Manager of Application Development Asif Masood


play-circle icon
33 MIN
EP35 | Simplify Application Disaster Recovery In Cloud With Aviatrix | With Aviatrix Principal Cloud Architects John Smoker and Dennis Hagens
FEB 11, 2023
EP35 | Simplify Application Disaster Recovery In Cloud With Aviatrix | With Aviatrix Principal Cloud Architects John Smoker and Dennis Hagens

Disaster recovery , Disaster avoidance or in general Business Continuity are a critical design consideration for any business critical application. 

In this short podcast, Dennis Hagens and John Smoker demonstrate how Aviatrix multi-cloud network backbone simplify your application disaster recovery b/w regions of single cloud or even to a second cloud with a flip of a button. 

They also demonstrate how this standardize design allows for application reachability in cloud using the infrastructure of second cloud in case of a failure.

A powerful capability for all type of flows : 

  • Ingress from internet
  • Cloud to cloud 
  • Region to region and
  • Hybrid b/w cloud and on-prem.

All done through code in matter of seconds.



play-circle icon
32 MIN
EP34 | Cloud Cost Management | Increase Cloud ROI | Enhance Application Security
SEP 17, 2022
EP34 | Cloud Cost Management | Increase Cloud ROI | Enhance Application Security

Experience your firewall working for you, not the other way around. Aviatrix integrate and works with Security vendor such as Palo Alto Networks, Check Point, Fortinet, Cisco, F5 etc. Aviatrix business value is to simplify the way organizations enhance their public cloud security posture (Azure, GCP, AWS, OCI, etc.) while reducing the overall cost. In this candid podcata you'll find out how Aviatrix FireNet helps you to simply consume virtual firewall, with a proven recipe adopted by hundreds of customers in the cloud. 


Now, you can simplify security by leaving the heavy lifting to Aviatrix.


The YouTube version is available here

play-circle icon
46 MIN
EP33 | Trillions of Dollars moving to the cloud and businesses leveraging multiple-clouds | Advice and tips from the most elite AWS Blackbelts Evgeny Vaganov & Abdul Rahim
JUL 1, 2022
EP33 | Trillions of Dollars moving to the cloud and businesses leveraging multiple-clouds | Advice and tips from the most elite AWS Blackbelts Evgeny Vaganov & Abdul Rahim

Podcast 33 - “

and

has ~52 years of combined experience at

and have worked with thousands of customers moving to cloud.

In episode 33, we asked them to share their cloud journey, lessons learned and advice for customers.

Some key points:

- Many cloud deployment start as non mission critical, in a single cloud and organically grew into a giant mess that is hard to untangle, with several design flaws, lack of visibility, security holes and operational/governance nightmares.

- CSP by design focus less on networking features as they have to prioritize durability, performance availability and ensure environment is secure. Pace of innovation is slow as they try to recreate 30 years worth of capabilities in a cloud way, which will take time.

-Every single customer they met were either multi-cloud already or looking to extend in other clouds. Single CSP alone CANNOT meet requirements of enterprises.

-Key points they love about Aviatrix is "end to end focus b.w apps and users"

-Aviatrix has put the focus and control back on networking and security and Aviatrix ACE (

) is the most beautiful opportunity. Think CCIE in 1995 but much bigger in terms of impact as cloud transformation will be 10x bigger and 100x faster. [Note: Rahim has 3 X CCIE's)

-Industry clouds becoming more prominent with many vendors offering "Specialty as a service -SaaS" on top of multiple CSPs infra which is like a "utility" model. Think Splunk, snowflake, SAP HANA, Netflix all becoming Over the Top [OTT} providers over multiple CSPs. It will become more common trend and many CSPs may look to acquire certain businesses just for their vertical expertise as well. [like Oracle/Cerner and Goldman announcing their own financial cloud].

-Aviatrix is a perfect fit for industry clouds.... a cookie cutter approach to offer their software in a secure, consistent manner on top of any cloud and intelligently connecting to end consumers. Revenue is directly proportional to how fast they onboard customers and expand in a consistent manner.

Both Evgeny and Rahim offered 1:1 consulting session for any customers looking for advice. Reach out directly or contact Aviatrix

.

Podcast link here. Hope you will enjoy.

play-circle icon
63 MIN