Chiwai Chan's Blog

These words are my own

Route Tables

Leveraging AWS Prefix Lists

AWS VPC Prefix List is a feature of the AWS Networking that has been around for a short while, however, I have yet to see it leveraged to its full potential, and more often than not I have not seen them used at all. There are 2 types of Prefix Lists: AWS-managed Prefix Lists: as […]

Work-around for cross-account Transit Gateway Security Group Reference

Have you ever tried to create a Security Group with a Source or Destination rule that references another Security Group? how about referencing a Security Group from another AWS account to allow ingress network traffic over a Transit Gateway architecture? if this question peaked your interest then you should keep reading. In this blog we […]

Breaking Down Monolithic Subnets

As my knowledge and experience of Cloud networking grew from designing network architectures over time and also more of lately from reviewing client network architectures, I’ve come to realise and appreciate the need to designing a proper network architecture that includes the long-term considerations, as early as possible – especially before a projects begins and […]

Swiss Cheese Network Security: Factorising Security Group Rules into NACLs and Security Group Rules

Introduction Lately I’ve been doing some networking configuration reviews for some of the projects I’ve been put on; to balance out the #crazycatlady blogs I’ll be blogging about some network patterns and components that don’t often get much attention or get used at all in the pipeline of blogs. Today I’ll be talking about Network […]

Scroll to top