Edge Transit Gateway Design Patterns

Edge Transit Gateway allows you to build high performance encrypted connections across Equinix and Megaport fabric to cloud environments. You can also deploy Edge Spoke Gateways in on-premises for high performance encrypted connections to Edge Transit Gateway in Equinix and Megaport. Additionally, you can also deploy Edge Transit Gateway in on-premises to run high performance encryption across datacenter (DC) sites. Combined with Aviatrix management and visibility plane, you get the network insights and complete abstraction of complexity with building hybrid and multiple cloud environments.

The following topology shows Edge Transit Gateway running in Equinix or Megaport on in customer DC environment where in Edge Transit Gateway peers with Transit Gateways in the cloud and Edge Spoke Gateways at the remote locations for end-to-end encrypted connections.

edge transit desgin1

Aviatrix Hybrid Cloud solution can integrate into existing cloud connect routers such as Direct Connect gateways, virtual network gateways to seamless integrate cloud to on-premises connectivity.

By leveraging Edge Transit Gateway in Equinix and Megaport, you can build virtual connections to cloud environments in a matter of minutes avoiding physical hardware needs. Edge Transit Gateway replaces expensive MACSec implementations and overhead associated with managing MACSec environments.

Edge Transit Gateway supports the following features:

  • High Performance Encryption (HPE) and non-HPE connections

    • HPE over public and private networks on the Aviatrix Edge Platform (AEP).

    • HPE over private networks on Equinix and Megaport platforms.

    • Non-HPE over both public and private networks.

  • Edge Transit Gateway to Edge Transit Gateway peering.

  • Edge Transit Gateway to Transit Gateway (in cloud) peering.

  • Edge Transit Gateway BGP underlay connection to terminate private cloud service provicer (CSP) circuits.

  • Terminating external BGP over LAN connections on Edge Transit Gateway.

  • Edge Transit Gateway to Edge Spoke Gateway peering.

  • Segmentation domains and NAT use cases at Edge Spoke.

The following topology shows connecting two regions in AWS via Equinix private connectivity and encrypting connections to cloud and across Equinix Metros. This provides simplified on-demand cloud connectivity via high bandwidth private circuits that Equinix provides. Aviatrix provides an overlay solution for high performance encrypted and highly visible network across cloud and Equinix.

edge transit design2

The following topology shows datacenter or on-premises traffic encryption using Aviatrix High Performance Encryption (HPE) that is otherwise expensive to implement using technologies like MACSec.

edge transit design3

The following topology shows how Edge Transit Gateway can be leveraged to build encrypted connectivity across customer on-premises and cloud service providers. Additionally, Edge Transit Gateway can be used as a landing zone for partner connectivity via BGP connections and enable segmentation to allow access to required applications across on-premises and clouds.

edge transit design4