Azure networking constructs provide you many different options to build and host your applications. With a wide choice of regions, network configurations, resource management options, Azure customers can easily architect for high availability and performance.
But, as enterprises migrate more and more mission critical applications to the cloud, there are many connectivity and security requirements that are not natively available in Azure. In this post, we’ll look at a few of these requirements.
The diagram below shows at a high level how Azure customers deploy Aviatrix today.
Let’s dive deeper into each Azure use case:
While Azure provides the capability to create a regional hub to connect on-prem to many VNets, Aviatrix provides the capabilities to build a global transit network across regions. For example, if you had a Shared Services VNet that needs to connect across regional hubs, you can easy peer the transit hubs using aviatrix. For more information visit: https://docs.aviatrix.com/HowTos/Aviatrix_Account_Azure.html
Aviatrix allows hundreds to VNETs to be connected efficiently in a hub and spoke model allowing central visibility and control across all your traffic. Aviatrix solution also overcome security policy limitations like VNet level firewalling. Also, at the instance level, native Azure policies are limited to 250 IP address based rules.
Azure allows filtering internet bound traffic based on domain-names. But, there is no for support for non http/https traffic. For example, you cannot allow ftp or ssh traffic to a specific domain name. Aviatrix fills this gap with a cost effiective NAT gateway. These Gateways can also be run a “discovery” mode to discover domain names that are currently being accessed from your VNets.
Customers that want to connect their VPCs to VNets often try to route traffic via an on-prem datacenter. This makes connectivity complex (and expensive). It also puts burden on your cloud operations to coordinate changes with on-prem network teams. Aviatrix solves this problem through its multi-cloud controller that can orchestrate encrypted peering across clouds, regions and accounts.
Azure P2S works only with Windows clients • Aviatrix is the solution of choice for hundreds of customers that want support for general SSL VPN clients with strong authentication like LDAP, SAML, Okta, Duo, MFA, etc. Aviatrix UserVPN feature also provides Network-level authorization based on user profile. Finally, the Aviatrix gateways can log user vpn activity for auditing reporting purposes (track who accessed what, from where, and when).
Aviatrix is a trusted multi-cloud partner that can simplify networking in the cloud. Through its central controller and cloud-native constructs, aviatrix has made hundreds of enterprises successful in their public cloud endeavors.
To try out some of these use cases, you can launch the aviatrix controller from the Azure marketplace by following these instructions: https://docs.aviatrix.com/StartUpGuides/azure-aviatrix-cloud-controller-startup-guide.html
You can then add the Azure subscription to your controller by registering the app in Azure Active Directory: https://docs.aviatrix.com/HowTos/Aviatrix_Account_Azure.html