AWS Transit Gateway Orchestrator

The AWS Transit Gateway (TGW) Orchestrator is a feature in Aviatrix Controller. It provides a point-and-click workflow to build a transit network and manages all network routing updates. The Orchestrator runs AWS APIs and uses building blocks such as AWS Transit Gateway, Transit Gateway route tables and VPC route tables, to automate the transit network deployment. In addition, the Orchestrator extends the AWS native service to include multi cloud support and a scale out architecture for firewall deployment.

Whatever requirements you have in mind, the Orchestrator has you covered. Here is what you can do with the Orchestrator.

1. Build a Basic Transit Network

Use the Orchestrator to build a basic transit network with the following benefits:

  • Point-and-Click The point-and-click workflow is simple to follow and easy to deploy.

  • Multi Account Supports up to three cross accounts VPC attachments to TGW with a single pane of glass.

  • Route Propagation The Orchestrator periodically polls the TGW route table to monitor route changes from on-prem and automatically programs Spoke VPC route tables.

  • Direct Connect TGW Direct Connect Gateway (DXGW) support.

  • Internet VPN TGW VPN support.

  • 100 Routes Supports up to 100 routes (Per AWS VPN route table and DXGW route table limits).

  • View Graphic view of TGW VPC attachments.

  • List List view of TGW route table entries and VPC route table entries.

  • Monitoring Continuous monitoring of the configuration consistency and alerting for out-of-band changes.

  • Terraform Terraform Generator that exports what you have configured. Use it for replication and expansion.

basic

2. Build a Transit Network with Segmentation

Layering on the basic transit network, you can use the Orchestrator to add network segmentation:

  • Isolation Create network isolation by defining multiple Security Domains where VPCs in one domain cannot communicate with VPCs in another domain.

  • Policy Create network connection of isolated segments by defining connection policies that allow one domain to communicate with another domain.

  • Route Propagation Builds network segmentation by creating multiple TGW route tables and automatically updates all TGW route table propagations.

  • Unlimited Multi Account Support unlimited cross account VPC attachments to TGW with a single pane of glass.

with_security_domain

3. Build a Transit Network with Multi Cloud Spokes

By deploying an Aviatrix Transit Gateway, you can use the Orchestrator to extend the deployment to include multi cloud Spokes.

  • Azure Connect Azure VNets as Spokes to the AWS transit network.

  • GCP Connect GCP VPCs as Spokes to the AWS transit network.

multi_cloud

4. Build a Full Mesh Cloud Backbone

By deploying multiple Aviatrix Transit Gateways, you can build a full mesh cloud backbone.

  • Azure Connect Azure transit network with the AWS transit network.

  • GCP Connect GCP transit network with the AWS transit network.

  • InsaneMode Performance Encrypted cloud backbone with InsaneMode high performance throughput.

  • Agility Spin up your cloud backbone in minutes. No contract, no wait for months.

cloud_backbone