Posted On: Mar 20, 2020

The Secure Tunneling feature of Amazon IoT Device Management is now available in Amazon Web Services China (Beijing) Region, operated by Sinnet and Amazon Web Services China (Ningxia) Region, operated by NWCD. Secure tunneling enables customers to troubleshoot misbehaving devices remotely to diagnose device issues, deploy a fix, and validate the device is working properly using remote shell or remote desktop operations. 

With Secure Tunneling, customers can maintain devices deployed behind network firewalls without the need to manage proxies for each device’s network. This is accomplished by a mutually initiated tunnel connection between source and destination devices that is brokered through a cloud proxy service on Amazon Web Services. To provide secure bi-directional communication between each device, tunnels are authenticated with the proxy service and data transmitted through the tunnel is encrypted using Transport Layer Security (TLS). Finally, customers can prevent unauthorized device access by configuring Identify and Access Management (IAM) permissions and a tunnel timeout for each tunnel session to ensure connections close after a certain period of time. 

This feature is available to customers through the Amazon Web Services Console or CLI. To learn more, see the documentation

This new feature is now available in 19 Amazon Web Services regions globally. To learn more about managing connected devices at scale, please visit the Amazon IoT Device Management website