Skip to main content

Overview

The Aviatrix Edge Spoke Gateway provides a secure, high-performance networking solution for on-premises to cloud. It enables dynamic routing, end-to-end encryption, segmentation and supports advanced NAT for connectivity to various cloud providers and on-premises environments while providing centralized management and operational visibility. The Edge Spoke Gateway simplifies hybrid cloud networking by:
  • Horizontal scalability: Supports scaling out by deploying multiple gateways and peering them with Transit Gateways or Edge Transit Gateways across clouds and regions.
  • Advanced NAT functions: Provide customized SNAT and DNAT to resolve overlapping CIDR issues between cloud and on-premises networks. The Advanced NAT functions work on both HPE-enabled and HPE-disabled Spoke Gateways.
  • Local Internet Breakout: Allows direct Internet egress from the edge with SNAT-enabled NAT interfaces.
  • Built-in security: Delivers L4 distributed firewall, end-to-end encryption, and network segmentation, all managed from a unified dashboard.
  • VLAN connectivity: Enables multiple VLAN interfaces with VRRP for high availability, along with LAN segmentation using network domains and policies.
  • Flexible routing: Supports transitive routing between multiple Transit Gateways and multicloud Transit peering over the public Internet.

Does Aviatrix Edge Spoke Gateway support scalability?

The Edge Spoke Gateway can be scaled horizontally and peered to the Transit Gateway or Edge Transit Gateway across single or multiple clouds and regions. See Edge Spoke Gateway Horizontal Scaling.

Does Aviatrix Edge Spoke Gateway support NAT functions?

For the use case where the Cloud Service Provider (CSP) network CIDR overlaps with the on-premises network CIDR, you can enable customized SNAT and DNAT on the Edge Spoke Gateway to resolve the overlapping CIDR issue. See Customized SNAT and DNAT on Edge.

Does Aviatrix Edge Spoke Gateway support Local Internet Breakout?

You can set up an Edge Spoke Gateway as the default gateway and enable SNAT to route egress connectivity directly through the NAT interface of the Internet. See About Local Internet Breakout at Network Edge.

How does Aviatrix Edge Spoke Gateway provide security?

The Aviatrix Hybrid Cloud solution is an extension of the Aviatrix cloud-native networking and security platform which has security built into the data plane. Security capabilities include:
  • L4 Distributed Firewall
  • Network Segmentation
  • End-to-End Encryption
  • Unified single dashboard for security management.

Does Aviatrix Edge Spoke Gateway support VLAN connectivity?

The Edge Spoke Gateway supports VLAN connectivity with multiple VLAN interfaces that can be enabled on Edge Gateway with VRRP support. Aviatrix Hybrid Cloud solution also enables you to segment your on-premises network traffic for your LAN network segments through network domains and connection policies. See About Extending VLAN Segmentation to the Cloud.

How can I do transitive routing with Aviatrix Edge Spoke Gateway?

You can enable transitive routing on an Edge Spoke Gateway to forward traffic between multiple Transit Gateways that are connected to it. See Transitive Routing with Edge Spoke Gateway.

How can I do transit peering across multicloud with Aviatrix Edge Spoke Gateway?

You can create Transit Gateway peering as a secondary path for forwarding traffic over the public network. See Transit Peering Over Public Network with Edge Spoke Gateway.