The current market leader in public cloud services is Amazon Web Services (AWS), accounting for over 40 percent of the overall market. This is almost double the combined market share of Google, Microsoft and IBM Softlayer. AWS launched in 2006, giving it a first-mover advantage over Microsoft Azure, which launched in 2010, and Google Compute Engine in 2013. However, both Microsoft and Google have a key advantage in having a global data network that was built to support data transport between their data centers for customer facing workloads. This global network allows for interconnectivity over their backbones between cloud instances in different regions.
The AWS environment is built on the concept of regions and availability zones. Each region is composed of availability zones. These regions are designed to be completely isolated from other AWS regions, with the intention of maximizing fault tolerance and stability. The availability zones within a region are all connected together through a low latency network. Different services are built at the availability zone level (EC2 Compute) or at the region level (S3 Storage). This means that application redundancy can be built within a region by deploying across EC2 instances in different availability zones in the same region. However, this application architecture does not provide redundancy for regionwide services, like AWS S3.
How AWS builds connectivity between regions
Amazon has provided a mechanism for connecting AWS instances between regions, which is a hosted virtual router (Cisco CSR) in each region that provides IPSec tunneling between locations, called a Transit VPC. These tunnels are built over the AWS Internet Gateway and utilize the public internet for sending encrypted data between regions.
However, this approach has a couple of critical flaws from the perspective of an enterprise customer utilizing the services.
- The use of the AWS Internet Gateway has much higher data charges when compared against the AWS Direct Connect service, in many cases 40-60 percent higher.
- The Transit VPC service, by utilizing the public internet, is subject to the same performance and security issues inherent in public internet transport.
Maximizing inter-region connectivity with CloudNexus
The Console Connect CloudNexus offering has been designed to address these specific issues by providing the lowest cost data transport between AWS regions through leveraging the AWS Direct Connect service for connectivity. This moves the AWS inter-region traffic off the public internet onto private connectivity, providing protection against the impact of DDoS attacks, performance degradation from internet congestion and potential man-in-the-middle attacks.
CloudNexus utilizes a virtualized routing architecture to optimize the data path between the AWS Direct Connect endpoints, delivering direct region-to-region connectivity along the shortest data path, minimizing latency, maximizing performance and removing the complexity of complicated BGP routing configurations from the enterprise customer.
Maximize the performance and security of your public cloud infrastructure by leveraging CloudNexus for AWS inter-region connectivity, delivering true global AWS application redundancy.
You May Also Like: