Network Security

Expanding Traffic Visibility Natively in AWS with Fidelis Network Sensors and Amazon VPC Traffic Mirroring

Author
Tim Roddy
Vice President, Product Strategy

Today at AWS re:Inforce, AWS announced the general availability of Amazon Virtual Private Cloud (Amazon VPC) traffic mirroring. Amazon VPC traffic mirroring is a great solution for organizations who are migrating apps, workloads and databases to AWS. At Fidelis, we’re pleased to announce that we are a launch company to fully support Amazon VPC traffic mirroring.

SHARE:

Collaborations like this are increasingly important as every organizations’ attackable surface – their cyber terrain – continues to grow, via cloud and IoT, beyond even what anyone has tried to track. Security teams rely on an ecosystem of partners to both understand what their cyber terrain looks like and best defend that terrain.

Additionally, as companies have moved security visibility for cloud-based applications has lagged behind. Up until now, the only way organizations could conduct cloud network traffic analysis was with the use of agents or other third-party solutions to redirect traffic to Fidelis sensors.  There was no reliable high-speed mirroring capability from the underlying fabric available natively.

With this feature, customers can copy network traffic from their Elastic Network Interface of their Amazon EC2 instances in their Amazon VPCs and send the traffic to Fidelis Network Sensors running as virtual instances in AWS. Amazon VPC traffic mirroring allows customers of Fidelis to enjoy the same network traffic analysis as well as threat and data loss detection features for their AWS cloud based workloads that they enjoy on premises. And they can leverage a single policy across both AWS and on premises sensors!

We all know organizations are continuing to migrate their applications to the cloud, but security visibility for cloud-based applications has lagged behind. Up until now, the only way organizations could conduct cloud network traffic analysis was with the use of agents or other third-party solutions to redirect traffic to Fidelis sensors. There was no reliable high-speed mirroring capability from the underlying fabric available natively.

What does this integration between Amazon VPC traffic mirroring and Fidelis Network mean for customers? Well, with Amazon VPC traffic mirroring and the Fidelis Network Sensors fully approved and integrated, Fidelis customers are now able to achieve native cloud security monitoring for workloads running on AWS. Amazon VPC traffic mirroring allows Fidelis Network customers to quickly deploy cloud network traffic analysis for north-south and east-west communications of cloud instances. With gigabits per second of cloud network traffic delivered to our network sensors, we are able to provide our customers with a solution that extends deep visibility and security monitoring of cloud apps, workloads and databases. The solution also provides a monitoring boundary between Amazon VPCs for Fidelis Network sensors deployed in AWS and customer VM-based applications and workloads.

Find out more about Fidelis Network with Amazon VPC traffic mirroring by visiting our landing page or reading the data sheet.

Browse our blog