16:40 if both the src and dest are in the same VPC, wouldn't the traffic be routed via the VPC CIDR "local" target, rather than 0/0 default to the GWLBE? My understanding is that it's not possible to remove the local route
Amazing session. Question - Can we have an application load balancer with Gateway load balancer? Is that a valid arch pattern? Basically I don't want to have a centralised load balancing for all my workloads. I would like the flexibility of ALB or NLB depending on my workload, but I am using a firewall appliance in a central VPC and hence might need a gateway load balancer as well?
Thanks Matt, Could you demo or share the docs about integrate 3rd inspection to AWS Network Firewall ? I've researched a lot but can not find any docs about this
This blog explores a few different deployment scenarios, maybe it will help. aws.amazon.com/blogs/networking-and-content-delivery/deployment-models-for-aws-network-firewall/
Very Good Presentation. I've been in IT 36 years. Love what you provided. Great!!!
Well articulated presentation and good comprehensive diagrams and easy to follow. Very succinct and yet detailed.
NICE! 👏🏻
P.S. Please make these 45 minute sessions. Thank you.
Why??
16:40
if both the src and dest are in the same VPC, wouldn't the traffic be routed via the VPC CIDR "local" target, rather than 0/0 default to the GWLBE? My understanding is that it's not possible to remove the local route
Nevermind. It's not possible to remove the VPC CIDR route but the target can be overridden to an ENI (though not a TGW)
Mind-blowing presentation...
Great presentation!
Amazing session. Question - Can we have an application load balancer with Gateway load balancer? Is that a valid arch pattern? Basically I don't want to have a centralised load balancing for all my workloads. I would like the flexibility of ALB or NLB depending on my workload, but I am using a firewall appliance in a central VPC and hence might need a gateway load balancer as well?
Matt, awesome job, love it.
Thanks Matt,
Could you demo or share the docs about integrate 3rd inspection to AWS Network Firewall ?
I've researched a lot but can not find any docs about this
This blog explores a few different deployment scenarios, maybe it will help.
aws.amazon.com/blogs/networking-and-content-delivery/deployment-models-for-aws-network-firewall/
Matt, Good job done!!!
Freaking awesome overview. Thank you...
Can the AWS VPC become truly Global instead of regional? Like that in case of GCP ?
No, it is not currently not possible
as a software engineer. I find it hard that I had to wrap my head around these networking stuff. it's a whole other career. jeez for network engineers
you coup or you coup