Private Connection for Sending IoT Data to your AWS Environment
Soracom Canal is a private connection service that directly connects your own virtual private cloud environment built on Amazon Web Services (AWS) with the Soracom platform.
Your IoT data will be private, secure, and operate without any visibility or opportunity to attack your data over the internet.
On this page:
What is Soracom Canal?
Soracom Canal is a private connection service that directly connects the Soracom platform to your own virtual private cloud environment in Amazon Web Services (AWS).
Canal implements the secure routing options that AWS provides to pass your data directly from our AWS-hosted Soracom servers to your AWS-hosted IoT systems.
Did you know?
Combining secure device messaging provided by cellular connectivity with data transfer with Canal creates a private connection where all communication between your IoT devices and your AWS compute instances will be secure.
You don’t need to worry about external attacks, monitoring, or configuration mistakes that can lead to devices being exposed on the internet.
Supported AWS Connection Services
Canal supports the following AWS Private Connection Services:
- Amazon VPC Peering
- AWS Transit Gateway connection
Soracom Canal Architecture
Soracom Canal leverages AWS internal routing options to keep your IoT data securely inside the AWS environment. With all of your IoT data routed inside AWS only, you can upload even highly sensitive device data without exposure to any external threats.
The Soracom IoT platform gives you the tools and methods to control the routing of your data and the visibility of your devices on the internet. Our Virtual Private Gateway (VPG) service covers a range of message routing options, including the blocking of public internet access to your messaging and the creation of secure tunnels to the AWS internal IP addresses of your servers so that you can route data straight to your IoT system logic.
Soracom Canal is designed specifically for anyone who hosts their IoT service on AWS servers. Not using AWS? Try Soracom Door!
Virtual Private Gateway (VPG)
A VPG is a dedicated secure cellular network for your IoT devices. An AWS VPC is a dedicated secure cloud network for your backend systems. Soracom Canal uses Virtual Private Gateways (VPGs) to peer with your AWS Virtual Private Cloud providing a range of functionality.
Inside your Soracom account you can create VPG instances for the different routing options that your solutions might require.
With an active Soracom VPG instance, you can easily add VPC peering by entering your AWS details. Soracom Canal will then expose the AWS internal IP addresses of your servers so that you can route data straight to you IoT system logic. If you’re using AWS Transit Gateways, our team will support you directly to enable the tunnel.
Want to dig deeper on Soracom Canal? Schedule a call with a Soracom Solutions Architect now.
Soracom Canal Use Cases
There are a number of benefits Soracom Canal provides for IoT use cases.
IoT network traffic is never exposed publicly and arrives in your AWS VPC without traveling over the public Internet.
Only authorized SIMs can access VPCs connected by Canal, so you can control any connected devices in your IoT network.
Don’t forget: Soracom Canal is designed specifically for anyone who hosts their IoT service on AWS servers. Not using AWS? Try Soracom Door!
Getting Started With Soracom Canal
No two IoT projects are the same, and our team of IoT experts is on hand to learn more about the project you’re building and to see if Soracom Canal could help. Get in touch with us today to discuss what it is you’re working on.