Product Features

Born in the Cloud for the Cloud

The Networking and Security Architecture for Multi-Cloud Enterprises


Networking VPCs doesn’t have to be complex. Take full control of your cloud network. No knowledge of networking command line interfaces (CLIs) needed.

  • Browser-based, point-and-click management console
  • Orchestrates AWS Transit Gateway for your AWS VPCs
  • Aviatrix Gateway instances for direct connect, multicloud, and edge connectivity
  • Makes complex networking easy for your use cases

Multiple Accounts and Clouds

Get the most out of the public cloud. Most virtual routers are from the datacenter era, forcing you to uniquely build every point-to-point connection. Operate with a network-centric platform for all your cloud accounts and VPCs.

  • Manage multiple accounts in one place
  • Network cloud regions from a global view, not point-to-point
  • Interconnect AWS, Azure, and Google Cloud with the same point & click flow

Visibility and Monitoring

It’s hard to “see” your network in the cloud. Our Controller shows you and informs you when your cloud network has issues.

  • Get a complete picture of your cloud network
  • Visualize all connectivity status, performance, and latency in real-time
  • Call up monitoring, displays and alerts
  • Make informed VPC connectivity decisions


Handle your part of the cloud Shared Responsibility Model. Achieve your regulatory compliance requirements. Implement VPC network segmentation and isolation to reduce your blast radius.

  • Easily managed Security Domains (e.g. groups of Dev, Prod, Shared Services VPCs)
  • VPC connectivity is allowed by Connection Policy
  • User friendly tags to specify network ranges for your security rules
  • Easily apply firewall filters based on tags or specific address ranges, protocols, and ports CIDR, protocol and port.
  • Control outbound traffic from your VPCs with egress filtering
  • Make audits easier as security policy events (and packets) can be logged to Splunk, SumoLogic, Syslog, ELK and Datadog.
  • Integration with AWS GuardDuty to block malicious activity automatically at the VPC network level


Automate your cloud networking by delivering the network as code, rather than as a series of manually configured virtual routers. With Aviatrix, networking functionality easily becomes part of your DevOps stack. Automated networking for everyone. No CCIE. No problem.

  • Orchestrate your network in the same way as your compute
  • Leverage DevOps processes using change and revision control
  • Controller has fully documented REST APIs
  • Easily leverage our Terraform provider and CloudFormation templates


Easily handle your daily calls to fix problems. Usually the network is blamed, even when it’s not the culprit. Quickly determine if networking is the issue. Minimize downtime with faster troubleshooting.

  • Integrated diagnostic tools for easier troubleshooting
  • Limited use of Border Gateway Protocol (BGP)
  • Automated EC2 FlightPath tool helps identify EC2 instance Connectivity problems
  • Move at the pace of the cloud, not the datacenter networking team


Drive your cloud networking decisions with intuitive, meaningful, real-time reports. Plug in your modern tool stack for an integrated view of all your infrastructure.

  • Integrated monitoring, alerting and troubleshooting
  • API integration with modern cloud tools: Splunk, SumoLogic, Syslog, ELK and Datadog.
  • Robust API to easily integrate with other systems

Deployment Flexibility

Marketplace AMI
Aviatrix Controller
Deployed in Your VPC
Controller Infrastructure Operations & Software Costs
Your Responsibility
Learn more...
Transit Gateways and Aviatrix Gateways
Deployed in Your VPCs
Networking Use Case Solutions
All Use Cases Supported: Next-Gen Transit Hub, Egress Security, User VPN, Multicloud Peering, Encrypted Peering, Site to Cloud
Cloud Providers Supported
AWS, Azure, Google
API, Scriptable, via the Controller console

Aviatrix Components

The Aviatrix solution is based on the AVX Controller which orchestrates and manages the cloud network. AVX Controller seamlessly blends native components like Transit Gateways and instance-based components like AVX Gateways. The AVX Gateways can be deployed for extending your network in the cloud, to multiple clouds, and to on-premises environments.

AVX Controller

A centralized management console (w/REST API support) that automates deployment and configuration of cloud networking use cases to distributed AVX Gateways and manages the cloud provider’s native services. It is easily operated by cloud ops or network engineers. (No CLI).

Benefits of the AVX Controller include:

  • Single pane of glass for orchestration and automation
  • Central orchestration and provisioning
  • Extensive access logging and monitoring for compliance and audit
  • Multi-region, multi-cloud encrypted peering
  • Flexible Pay-As-You-Go licensing, billed to your AWS Account

AVX Gateway

Deployed in VPCs by the Controller, AVX Gateways implement IPsec and SSL VPNs, routing, security policies, and capture log, monitoring and activity data for single cloud, multiple regions and multicloud environments.

Benefits of the AVX Gateway include:

  • Multi-region, multi-cloud encrypted peering
  • Scale-out cloud VPN that auto scales to users and load
  • Multifactor authentication—Active Directory/LDAP, DUO, Google and Okta
  • User profile-based access and consistent security policies
  • Deployed on-prem ESX/HyperV/ KVM or in AWS, Azure, and Google
  • Environmental stamping to create cloud networks at scale

Ready to get started?

Build your networking use cases on AWS, Azure and Google in minutes.

Cancel any time.