Aviatrix CoPilot Features

This section provides an overview of Aviatrix CoPilot key features.

CostIQ

The CostIQ feature provides detailed traffic distribution analysis for your cost centers, including traffic flowing to shared-service resource hosts by Cloud Account, by Cost Center, by VPC/VNet, and by Gateway.

Distributed Cloud Firewall

Aviatrix Distributed Cloud Firewall embeds Layer 4-7 network security on top of the Aviatrix Secure Cloud Network infrastructure. Advanced security capabilities include Layer 4 visibility and policy enforcement, URL/FQDN filtering (formerly Egress FQDN Filtering), reputation-based Threat Detection/Prevention (ThreatIQ), transparent MITM decryption, and Advanced Threat Detection with Suricata. Micro-segmentation (intra-VNet/VPC segmentation) can be enabled on VPC/VNets to enforce greater granular segmentation policies.

ThreatIQ

The ThreatIQ feature enables you to monitor for security threats from malicious sites, set alerts when threats are detected, and block threat-IP associated traffic from well-known threat IP addresses.

Topology Map

The Topology map provides a visual representation of deployed networks, gateways, instances, and gateway connections. The dynamic map provides an accurate and up to date layout of your multicloud network topology. The map has full search of managed resources. You can select the nodes of gateways in the map and run diagnostics from those gateways directly from the maps page.

FlowIQ

The FlowIQ feature provides detailed application traffic flow analysis, a global heat map showing traffic trends, and robust filter capability for showing traffic by multiple properties including native CSP tags.

Cloud Routes

The Cloud Routes feature provides detailed searchable routing tables across cloud providers. You can view all routing information for managed resources spanning your Aviatrix transit network, including resources across clouds (multicloud) and on-prem (for external/Site2Cloud connections). For multicloud, cloud engineers can view the information in a central place without having to log in to each individual cloud provider console.

Alert Notifications

The Alert Notifications feature enables alerts on the status of managed cloud resources across clouds and policies for triggering alerts based on telemetry data and multiple metrics.

AppIQ

The AppIQ feature provides comprehensive reports to analyze network paths between any two cloud instances. For each instance, an analysis of its network traffic, network domain settings, and route table configurations help to reveal any problems with the network path between the two instances.

You can enable AppIQ to show potential SAP applications (by well-known SAP service port) to facilitate running the AppIQ report against any SAP instances in your environment.

SmartGroups and Aviatrix Features

SmartGroups are reusable constructs or objects that can be queried against to support various Aviatrix features.

Aviatrix features that use SmartGroups include CostIQ cost reporting and Aviatrix Distributed Cloud Firewall (DCF).

For information about using SmartGroups for Aviatrix features, see Understanding SmartGroups.

CoPilot Feature Summary

The table below summarizes CoPilot features and provides links to associated documentation.

CoPilot Key Feature Description

Network Health Monitor (Dashboard)

Real-time cloud network resource inventory and status.

Monitoring Inventory and Status of Managed Resources

Dynamic Topology Map

Accurate, multicloud network topology, layout control, and full search of managed resources.

Gaining Visibility into Your Network Topology

FlowIQ

Detailed application traffic flow analysis, global heat map and trends, and filter traffic by native CSP tags.

Gaining Visibility into Your Traffic Flows

CostIQ

Detailed traffic distribution analysis for your cost centers, including traffic flowing to shared-service resource hosts by Cloud Account, by Cost Center, by VPC/VNet, and by Gateway.

Monitoring the Costs of your Business Units

Cloud Routes

Detailed searchable routing tables across cloud providers.

Troubleshooting Routing Issues in Your Aviatrix-Managed Network

Notifications

Alerts on the status of managed cloud resources across clouds with policies for triggering alerts based on telemetry data and other metrics.

Notifications (Alerts) about Network Events

AppIQ

Comprehensive reports to analyze network path between any two cloud instances.

Troubleshooting Application Connectivity Issues

ThreatIQ

Monitor for security threats from malicious sites, set alerts when threats are detected, and block threat-IP associated traffic.

Monitoring for Threats in your Network

Inventory Reports

Create detailed reports showing your inventory of managed resources in a single cloud or across all clouds in your multicloud network.

Aviatrix Reports Reference

Network Behavior Analytics (Anomalies)

Alert on anomalies detected that deviate from the custom routine traffic patterns of your own cloud workloads.

Detecting Network Anomalies using Network Behavior Analytics

Network Segmentation

Network segmentation for inter-VPC/VNet connectivity (reachability) of your Aviatrix multicloud transit.

Implementing Network Segmentation in an Aviatrix-Managed Network

Distributed Cloud Firewall

Embedded security to support desired application reachability.

Secure Networking and Distributed Cloud Firewall

GeoBlocking

Block IP traffic coming into and coming from a country.

Blocking Traffic from Countries using GeoBlocking

Egress Control

Use Distributed Cloud Firewall with WebGroups to configure your Egress traffic.

Audit

Audit history of account users that made changes to your Aviatrix managed networks.

Viewing Users that made Changes to Your Network

For new features introduced in each CoPilot release, see our what’s new page.

What’s New in CoPilot