Who is Aviatrix
Updated: Jun 19
Organisation are gravitating to the public cloud as they look for efficiency in the development and delivery of applications and services to support their business and customers. This has created challenges for IT teams as they realise in moving to the cloud they lose a lot of the visibility and control they previously had in their on-premise and co-location data centres. These challenges are significant even with a single cloud service provider (CSP), and the problem gets even bigger as businesses onboard two, three or more other CSPs to meet their business requirements.
Architects and DevOps teams are challenged with multiple cloud constructs and the ability to deliver consistent network and security across each of the CSPs. To address these challenges, Aviatrix is redefining networking for the cloud and putting enterprise IT teams back in control.
Aviatrix is a software network vendor that provides customers with their own dedicated cloud platform delivering advanced networking, security and operational visibility. They currently provide more than 500 customers worldwide with the platform and tools to simplify cloud networking and remove the complexities of each of the CSP. Aviatrix allow customers to design and deploy a repeatable network and security architecture that is consistent across all CSPs.
The Aviatrix Platform Software is not a SaaS or Aviatrix managed platform. The platform is deployed in a customer’s cloud environment and is dedicated for their use. This transparency and ownership is a key factor for the customer to regain visibility and control.
There are 4 main architecture components that provide the Aviatrix Cloud Network. These highlighted in the diagram and include:
Cloud networking abstraction
The platform is a software defined network (SDN) and the Controller provides the control and management plane for the SDN. This controller is the brains of the platform and automates the deployment of Aviatrix components and cloud constructs through API integration to CSP and 3rd party vendors for service insertion and chaining.
The second component of the platform is the Aviatrix Gateway. The Controller being the “brains”, the gateways are the “muscle” of the platform by securely routing traffic across the cloud network. Gateways are deployed into each of a customers’ virtual private networks (VPC, VNET, VCN) and the controller builds a data fabric between the gateways to build the cloud network. Deployments are typically based on a hub (multi-hub) and spoke configuration with the hub providing the cloud network transit. This can be a single region in a single cloud, multiple regions in single cloud and multi cloud. The fabric is “overlay” network that automated and managed by the controller. The gateways and the fabric are the reason customers have access to the data plane again for visibility and control.
The third component is Cloud Network Abstraction to simplify the cloud network configuration and Aviatrix does this by leveraging the cloud provider's APIs. This allow a Cloud Engineer to build cloud networks without expert knowlege and experience of the CSP's networking constructs.
In addition to interfacing with the CSP API, Aviatrix will also provide the onboarding of 3rd party vendor products such as next generation firewalls (NGFW). Aviatrix does this by automating the deployment and insertion of firewalls into the cloud network through APIs and then maintain the cloud routing for the firewall. This off loads the burden on security teams witht he deployment of the firewall into the cloud and allows them to focus on the security policy implementation.
The fourth component of the platform is CoPilot. This is what provides true multi-cloud visibility from a single platform. For operational visibility CoPilot ingests flows and event information from the Controller and the gateways and provides a true enterprise view of the cloud network. Some of the key visibility features are:
Dashboard for an at-a-glance representation of the cloud network
FlowIQ for multi-cloud traffic analysis and troubleshooting,
Dynamic topology mapping to visualise the network deployment
ThreatIQ and ThreatGuard for visibility of security threats across your distributed cloud network environment.
The Controller provides a GUI for configuration and deployments. However, many customers look to implement their cloud network and infrastructure through infrastructure as code (IaC). So customers who look to leverage code driven deployments, Aviatrix also offers a Register Terraform Provider for all the necessary cloud network configuration to be included in a CI/CD pipeline.
Detailed information on the Aviatrix platform including solutions and configuration guides is available on https://aviatrix.com