Cloud Packets and Perimeters

netJoints
Cloud Packets and Perimeters

A podcast where Cybersecurity and Cloud Networking Converge. We are securing the cloud, One Packet at a Time. Brought to you by NetJoints.com— your source for cloud networking and security insights. netJoints is the Intersection of Packets and Protection.

  1. EP37 | Aviatrix Multicloud and Multicluster Networking and Security for Kubernetes

    11/19/2024

    EP37 | Aviatrix Multicloud and Multicluster Networking and Security for Kubernetes

    Main Themes: The rise of multicloud 2.0: Organizations are moving beyond a single primary cloud and embracing a true multicloud strategy to leverage best-of-breed services from different providers. Kubernetes networking and security challenges: Multicloud Kubernetes deployments face issues with IP address exhaustion, overlapping IPs, egress security, and high-bandwidth secure inter-cluster connectivity. Aviatrix solutions for multicloud Kubernetes: Aviatrix offers a controller-based, intent-based networking and security platform that addresses these challenges with dynamic segmentation, secure egress, and hybrid connectivity. Key Ideas and Facts: Multicloud 2.0: Shifting landscape: The cloud landscape has evolved significantly in the 18 years since AWS launched. Organizations now have access to hyperscalers, regional clouds, and specialized clouds. True multicloud strategy: Organizations are adopting a true multicloud strategy to leverage the unique strengths of different cloud providers and enable developers to build better applications and services. Cloud 2.0: Many organizations are calling this shift "Cloud 2.0," driven by the need for distributed data, models, and applications, especially with the rise of GenAI and AI/ML applications. Kubernetes Networking and Security Challenges: IP address exhaustion: Kubernetes is "IP hungry," leading to IP address exhaustion and challenges with overlapping IPs, especially in large deployments with thousands of VPCs. Egress security: Millions of VPCs have weak or non-existent egress security, posing a significant risk to sensitive data. Inter-cluster connectivity: Establishing high-bandwidth, secure connectivity between Kubernetes clusters across different clouds and on-premises environments is complex and challenging. Aviatrix Solutions: Controller-based, intent-based networking: Aviatrix provides a centralized multicloud controller and uses intent-based policies to dynamically segment and secure traffic across Kubernetes clusters, regardless of the underlying IP addresses. Secure egress: Aviatrix replaces traditional NAT gateways with secure Aviatrix gateways, offering embedded NAT, visibility, and granular egress security policies based on Kubernetes resources. Dynamic scaling: Aviatrix automatically discovers and incorporates new Kubernetes resources into security policies as clusters scale up or down, eliminating manual configuration and ensuring consistent security. Hybrid connectivity: Aviatrix facilitates secure connectivity between cloud Kubernetes clusters and on-premises environments, including edge locations, enabling hybrid deployments for AI/ML and other workloads. Customer Success: Large-scale deployments: Aviatrix has customers with thousands of island VPCs and overlapping IP spaces, successfully using its platform to manage their multicloud Kubernetes environments. Operational efficiency: Aviatrix simplifies operations with its controller-based approach, dynamic policy updates, and world-class SRE team handling upgrades and troubleshooting. Key Quotes: Anirban Sengupta (Aviatrix): "Today every organization should embrace multicloud. That's the best way to get ahead with their competitors and help their developers." Anirban Sengupta (Aviatrix): "Networking and security should be top of mind... without connectivity and without security, you really can't have a multicloud strategy." Anirban Sengupta (Aviatrix): "Kubernetes is very IP hungry. There is exhaustion, IP address exhaustion is the key." Call to Action: Organizations looking to embrace a true multicloud strategy and overcome the networking and security challenges of Kubernetes should consider Aviatrix's controller-based platform. Contact Aviatrix for a demo and learn how their solutions can help you achieve secure and efficient multicloud Kubernetes deployments.

    11 min
  2. EP33 | Trillions of Dollars moving to the cloud and businesses leveraging multiple-clouds | Advice and tips from the most elite AWS Blackbelts Evgeny Vaganov & Abdul Rahim

    07/01/2022

    EP33 | Trillions of Dollars moving to the cloud and businesses leveraging multiple-clouds | Advice and tips from the most elite AWS Blackbelts Evgeny Vaganov & Abdul Rahim

    Podcast 33 - “ and has ~52 years of combined experience at and have worked with thousands of customers moving to cloud. In episode 33, we asked them to share their cloud journey, lessons learned and advice for customers. Some key points: - Many cloud deployment start as non mission critical, in a single cloud and organically grew into a giant mess that is hard to untangle, with several design flaws, lack of visibility, security holes and operational/governance nightmares. - CSP by design focus less on networking features as they have to prioritize durability, performance availability and ensure environment is secure. Pace of innovation is slow as they try to recreate 30 years worth of capabilities in a cloud way, which will take time. -Every single customer they met were either multi-cloud already or looking to extend in other clouds. Single CSP alone CANNOT meet requirements of enterprises. -Key points they love about Aviatrix is "end to end focus b.w apps and users" -Aviatrix has put the focus and control back on networking and security and Aviatrix ACE ( ) is the most beautiful opportunity. Think CCIE in 1995 but much bigger in terms of impact as cloud transformation will be 10x bigger and 100x faster. [Note: Rahim has 3 X CCIE's) -Industry clouds becoming more prominent with many vendors offering "Specialty as a service -SaaS" on top of multiple CSPs infra which is like a "utility" model. Think Splunk, snowflake, SAP HANA, Netflix all becoming Over the Top [OTT} providers over multiple CSPs. It will become more common trend and many CSPs may look to acquire certain businesses just for their vertical expertise as well. [like Oracle/Cerner and Goldman announcing their own financial cloud]. -Aviatrix is a perfect fit for industry clouds.... a cookie cutter approach to offer their software in a secure, consistent manner on top of any cloud and intelligently connecting to end consumers. Revenue is directly proportional to how fast they onboard customers and expand in a consistent manner. Both Evgeny and Rahim offered 1:1 consulting session for any customers looking for advice. Reach out directly or contact Aviatrix . Podcast link here. Hope you will enjoy.

    1h 3m
  3. 06/02/2022

    EP32 | Don't forget the "Ops" in building your "DevOps" world - with Aviatrix DevOps gurus Dennis Hagens and John Smoker

    Another exciting episode with DevOps/ IaC/ Terraform Gurus John Smoker Dennis Hagens where we talked about importance of Ops specifically visibility, troubleshooting and security when building your application delivery infrastructure. EP29 – Don’t forget the “Ops” in building your “DevOps” world Some key learnings: - Key goal of DevOps and IaC is to “push code to production faster and do it in a scalable, stable way", however the last thing that always gets automated is the network, so even though a lot of organizations might feel that they've got things under control with automation, It may not necessarily be true from network, security and Ops/visibility perspective. - Aviatrix  platform automates several key functions without even writing a single line of code, so its not just about infrastructure as a code, but to write less code to begin with. Things such as "setting up peering, making your network behave dynamic in regards to route updates, failover etc are hard problems to solve that are not a given in cloud world. - Aviatrix allows you to write our terraform codes on a much more abstract level making it more simpler, repeatable across clouds and intent based. BENEFIT: Reduces the amount of code and thus increases the maintainability  tremendously. -There is a split between dev and ops - Building and automating build time is relatively easy, but the ops part 100 X more difficult to to automate and that's where Aviatrix platform really shines. BENEFIT: Remove distractions around ops, troubleshooting, visibility away from DevOps allowing them to focus on agility and application modernization that is  directly tied to revenue. -Aviatrix gets seamlessly inserted into your existing build process without upsetting the automation by inserting the Aviatrix TF provider code and gives instant benefit of security and visibility with self-service  option for application teams to know how their apps are behaving and to fix performance issues. -The cost of time you are spending on troubleshooting issues or addressing security concerns is equal to the time You're NOT spending improving your build or application side of things impacting your revenue/competitive advantage. - Its never too early or too late to start with Aviatrix. The sooner the better though as it allows you to set the foundations correct and ensure you have simple, consistent Architecture with no compromise to security and visibility allowing you to operate at the speed of business opportunities [think tapping new services in a different CSP, merger and acquisitions scenarious, cost etc.] - Don't be dependent on that one guy that wins the lottery.  Build our environment that is simple, secure, repeatable and but can easily be managed by larger operations team. Hope you will enjoy.

    37 min
  4. 04/30/2022

    EP31 | How Aviatrix provided the eureka moment for healthcare leader | Fresenius Healthcare | Control Cloud deployment and Secure critical data | chat with lead cloud architect Maximilian Schmidt

    Do you know " More than half of dialysis machines used worldwide are made by Fresenius Medical Care" ? #fresenius is a global healthcare that provides products and services for dialysis, hospital management and do R&D to pioneer therapy and care of critically and chronically ill patients. I admire and have huge respect for their mission as well: "To deliver superior care that improves the quality of life of every patient, every day, setting the standard by which others in the healthcare industry are judged" In episode 32 of Lets talk cloud networking podcast, we got together with Maximilian Schmidt who played a pivotal role in Fresenius cloud architecture and how Aviatrix provided the eureka moment to massively help them take  control of their cloud deployment and secure critical data!! Some key points: - Move to cloud is a business decision and infrastructure teams must quickly ramp up to support the business. Check out Aviatrix ACE trainings. https://aviatrix.com/ace/ -Securing clinical trials and patient data is absolutely vital for healthcare business and to satisfy audit/compliance requirements. Need evidential proof. Checkout #aviatrix CoPilot. -Its time for Network teams to be friends with DevOps to make an unbeatable combination. Learn from each other. - Cost, Agility, time to market and global customer reach are some of  the key reasons to move to cloud. Enjoy.

    31 min
  5. 03/14/2022

    EP30 | Utility industry is a critical national infrastructure | Security, Compliance & Visibility in Cloud is absolutely vital | Special guest Steven Ward from Siemens MAS

    Thoroughly enjoyed this podcast conversation with Steven Ward, Corporate Infra leader at Siemens MAS.  Steven shared lessons learned from his personal cloud journey and how Siemens have transformed over the years to start realizing full benefit of cloud. Some of the key points from the conversation: Utility industry is critical national infrastructure, where security, compliance and visibility is absolutely critical and is a large part of why Siemens is working with Aviatrix 2 key factors businesses look for are: Predictability in Cost and predictability in outcome and cloud do provides this very well. Enterprises are NOT a “software house” and DIY scripting at scale across different environments is like a “square peg in a round hole” Aviatrix is redefining the security posture in the cloud by making it a first class citizen, embedded as part of the fabric with intelligence built on top. NOT a “bolted On” after thought which is a lift and shift on-prem to cloud approach. Simplified Operations, Secure by Design and Repeatable experience across clouds are key foundational principles of modern cloud architecture. If Operations team is not confident, you will not go far with your cloud journey. Early on, many businesses moved to the cloud as an experiment, a “cool thing to do” and to be seen as a forward-looking company      in front of customers and investors. But cloud has now clearly proven that it is much more than a replacement for VMware, Cisco etc.. Cloud is truly fueling      rapid innovation in almost every vertical. Lastly, when moving to the cloud, don’t fall into the trap of “sorting it later”. Ensure to look at the cost implications of right sizing the environment up      front and ensure right cloud network architecture in place.

    43 min

Ratings & Reviews

5
out of 5
2 Ratings

About

A podcast where Cybersecurity and Cloud Networking Converge. We are securing the cloud, One Packet at a Time. Brought to you by NetJoints.com— your source for cloud networking and security insights. netJoints is the Intersection of Packets and Protection.

To listen to explicit episodes, sign in.

Stay up to date with this show

Sign in or sign up to follow shows, save episodes, and get the latest updates.

Select a country or region

Africa, Middle East, and India

Asia Pacific

Europe

Latin America and the Caribbean

The United States and Canada