Scale out remote user VPN Solution¶
No more bastion stations and jump hosts. Provide your employees with the ability to seamlessly access instances with private IP addresses by using our user VPN capability. To configure Cloud VPN:
- At Gateway menu, create a gateway with VPN access enabled.
- Repeat the above step for multiple gateways if ELB is enabled to create a scale out VPN solution.
- (Optional) At OpenVPN -> Profiles, define VPN user profiles and access policies for each profile that will be dynamically enforced as user connects to the cloud at the network perimeter.
- At OpenVPN -> VPN Users, add VPN users.
- For single VPC user vpn solution, check out this link.
- For a multi VPC user vpn solution, check out this reference design
- At Gateway menu, create a gateway in an existing VPC/VNet.
- Repeat the step 1 for a different VPC/VNet.
- At Peering -> Encrypted Peering, click New Peering to peer the two gateways.
- For a complete end to end solution, check out this reference design.
If you have a global work force and would like to give your employees the best user experience accessing the services in the cloud, Geo VPN is the right solution for you. Go to Open VPN -> Geo VPN to enable Geo VPN. Check out this reference design.
If keeping your production environment secure while giving your developers’ isolated environment to learn and experiment new technologies is a challenge for you, Developer’s Sandbox maybe a feature you want to explore.
Use transitive peering reference design to see how to connect to your on-prem or co-location.
If you need to connect to your partner or customer sites to a VPC/VNet but do not want to replace the edge routers or firewalls that is already deployed at these sites, check out our Site2Cloud reference design.
Docker Container Access¶
To learn how you can use Aviatrix to access containers remotely in the cloud, check out this reference design.
If you wish to provide a differentiated and more secure SaaS services to your enterprise customers, Environment Stamping solution is the right one for you. Environment Stamping enables you to deploy identical and repeatable VPCs environment while providing unique access to all instances in VPC. Never have to manage VPC CIDRs, security policies and instances addresses any more.
At VPC/VNet -> Environment Stamping, go to Read Me First to learn about this capability. Check out this reference design.