AWS Well-Architected Frameworkに基づくハイブリッドネットワーキング要点ガイド

Transcript

1. © 2025 NTT DATA Japan Corporation JAWS-UG朝会 #72 2025年08月07日 NTTデータ

   山本 泰士 AWS Well-Architected Frameworkに基づく ハイブリッドネットワーキング要点ガイド

2. © 2025 NTT DATA Japan Corporation 2 • • •

   • •

3. © 2025 NTT DATA Japan Corporation 3

4. © 2025 NTT DATA Japan Corporation 4 フレームワーク/レンズの概要

5. © 2025 NTT DATA Japan Corporation 5

6. © 2025 NTT DATA Japan Corporation 6

7. © 2025 NTT DATA Japan Corporation 7 ハイブリッドネットワーキング 要点ガイド

8. © 2025 NTT DATA Japan Corporation 8   On-premise AWS

   Site-to-Site VPN Direct Connect Gateway TGW Router Router WAN Internet VPC Cloud Watch 2 1 2 1 ３ Health Dashboard Event Bridge Direct Connect 3 3 2 2

9. © 2025 NTT DATA Japan Corporation 9 On-premise AWS Site-to-Site

   VPN Direct Connect Gateway TGW Router Router WAN Internet VPC Cloud Watch 3 1 2 ３ Direct Connect １ 2 2 Security Hub Guard Duty Config 3 IAM 3 3 S3 Athena 2 3 3 DNS Firewall Network Firewall 2 2 １ 2

10. © 2025 NTT DATA Japan Corporation 10 On-premise AWS Site-to-Site

    VPN VGW Router Internet Instance Server １ On-premise AWS Site-to-Site VPN VGW Router WAN Instance Server 2 Direct Connect (Public VIF) On-premise AWS Site-to-Site VPN TGW Router WAN Instance Server 3 Direct Connect (Transit VIF) DXGW VPC VPC VPC On-premise AWS IPsec TGW Router WAN Instance Server 4 Direct Connect DXGW VPC Virtual Appliance On-premise AWS TLS TGW Router WAN Instance Server 5 Direct Connect DXGW VPC On-premise AWS MACsec TGW Router WAN Instance Server 6 Direct Connect DXGW VPC VPN

11. © 2025 NTT DATA Japan Corporation 11 On-premise AWS TGW

    Router Internet Instance Server １ On-premise AWS TGW Router WAN Instance Server 2 Direct Connect (Transit VIF) On-premise AWS TGW Router WAN Instance Server 3 Direct Connect (Transit VIF) DXGW VPC VPC VPC On-premise AWS TGW Router WAN Instance Server 4 Direct Connect (Transit VIF) DXGW VPC On-premise AWS TGW Router WAN Server 5 Direct Connect (Transit VIF) DXGW VPC On-premise AWS TGW Router WAN Server 6 Direct Connect (Transit VIF) DXGW VPC Direct Connect (Transit VIF) DXGW DXGW Instance Instance 開発者アカウント ネットワーク管理者アカウント

12. © 2025 NTT DATA Japan Corporation 12 On-premise AWS Site-to-Site

    VPN Direct Connect Gateway TGW Router Router WAN Internet VPC Cloud Watch 1 1 2 ３ Direct Connect 2 2 3 2 2

13. © 2025 NTT DATA Japan Corporation 13 On-premise AWS Site-to-Site

    VPN Direct Connect Gateway TGW Router Router WAN Internet VPC Cloud Watch 4 1 2 ３ Direct Connect 1 1 3 ４ 2

14. © 2025 NTT DATA Japan Corporation 14 On-premise AWS VGW

    Router WAN Instance Server １ On-premise AWS VGW Router WAN Instance Server 4 Direct Connect (Private VIF) DXGW VPC VPC On-premise AWS IPsec TGW Router WAN Instance Server 3 Direct Connect (Transit VIF) DXGW VPC Virtual Appliance Direct Connect (Private VIF) DXGW On-premise AWS TGW Router WAN Instance Server 2 VPC Direct Connect (Transit VIF) DXGW On-premise AWS VGW Router WAN Instance Server 5 Direct Connect (Private VIF) DXGW VPC On-premise AWS VGW Router WAN Instance Server 6 Direct Connect (Private VIF) DXGW VPC Site-to-Site VPN Router WAN Direct Connect Site-to-Site VPN トラフィック DX接続/回線 VPN

15. © 2025 NTT DATA Japan Corporation 15 On-premise AWS Site-to-Site

    VPN Direct Connect Gateway TGW Router Router WAN Internet VPC 1 2 ３ Direct Connect 2 2 3 3 4 Open Search Cost & Usage Report S3 Athena 1 1 1 1 2 3 3 3 4 4 4

16. © 2025 NTT DATA Japan Corporation 16 まとめ

17. © 2025 NTT DATA Japan Corporation 17 NTT DATA TECH

    「Well-Architected Frameworkに基づくハイブリッドネットワーキング要点ガイド」 https://zenn.dev/nttdata_tech/articles/a1497b549b3a7c
18. None