Utilize AWS using TCPWave DDI

The TCPWave Engineering team has designed, developed and has performed extensive testing to simplify the challenges that are faced in SMBs and large enterprises when it comes to migrating physical servers from your data centers to a cloud provider such as Amazon Web Services. The design accounts for security, scalability, availability, configuration assurance, seamless auditing, reporting of various key performance metrics derived from the cloud provider into your existing dashboards.

TCPWave provides pre-built DNS cloud images for various clouds like Amazon Web Services, Microsoft Azure, Google Cloud etc. These images can be launched on demand from the TCPWave DDI interface whenever required. Thus, it becomes easy to scale up or scale down the DNS instances in the cloud in accordance with the DNS query traffic. This kind of instantaneous spinning up DNS instances as needed across multiple clouds helps absorb even massive IoT based DDoS attacks.

Manage Route 53

The TCPWave IPAM allows you to manage, monitor and audit the Route 53 Amazon DNS service. You can create hundreds of changes from the TCPWave IPAM and see them getting reflected into Route 53 in seconds. Each change in Route 53 is associated to an Audit Trail in the TCPWave IPAM. Also the TCPWave IPAM detects and alerts any unauthorized changes to your Route 53 service that is hosting your mission critical zones.

Security with AWS

The TCPWave IPAM uses the best possible security methods to ensure that the communication with the AWS Route 53 service and the TCPWave management module uses the strongest level of encryption. Communication takes places using the REST API methods. These methods are used in modern Java that is the core technology used in the TCPWave product line. Similar to the Amazon Route 53 REST API, the TCPWave IPAM  uses a custom HTTP scheme based on a keyed-HMAC (Hash Message Authentication Code) for authentication.

AWS Provisioning

The TCPWave IPAM allows you to build multiple Cloud instances in AWS. All you need to provide the TCPWave IPAM is an AMI number, the REST API authentication keys to AWS and you are done ! The TCPWave IPAM takes care of building the instances based on the policy template. You can mass deploy hundreds of instances into AWS with a simple click of a mouse. Each change is associated with an audit history. You can deploy hundreds of Wintel and Linux servers and save on operational overheads by leveraging the embedded cloud automation features. Welcome to the world of automation !

DDOS Prevention

The TCPWave IPAM allows you to define your own DNS servers in the AWS VPC and it also allows you to manage Route 53. You can dynamically provision multiple DNS virtual instances to mitigate a DNS DDOS attack. This action can be automated wherein the instances are provisioned and the resiliency and robustness of your DNS infrastructure keeps scaling up based on the DDOS attack volume. When the DDOS attack is gone, the TCPWave IPAM takes a cautious anticipatory scale down logic to bring down the number of DNS virtual appliances in the mix. Contact us to learn more.