Reputation: 609
AWS EC2 Application Load Balancer + Two-Way SSL?
Is this possible to use AWS Application Load Balancer and use two-way ssl (client certificate)?
My current setup supports this using a classic ELB forwarding through tcp to a webserver endpoint. I now need to route traffic using the URL and wanted to do so using the AWS application load balancer if possible.
If not, any suggestion on how to route traffic using url in AWS?
Upvotes: 7
Views: 11890
Answers (2)
Reputation: 21
Use a either a classic load balancer or network load balancer with the passthru option. Aplication load balancers will strip the client cert out of the request
Upvotes: 2
Reputation: 488
No this is not supported. In order for the AWS Application Load Balancer (ALB) to route based on path it must inspect the HTTP content (application/layer 7). TCP forwarding load balancers only look at the TCP Packet (layer 4) and never inspect the actual content (needed to route based on path).
Of course a work around would be using AWS certificate manager and let them handle TLS/SSL termination for you. Then you could use ALB to route based on path.
Upvotes: 7
Related Questions
- Certificate authority SSL using AWS load balancer
- AWS - SSL/HTTPS on load balancer
- Installing SSL on EC2 as well as load balancer
- Using Application Load Balancer with HTTPS
- SSL certificate for AWS internal load balancer
- Application Load Balancer (ELBv2) SSL pass through
- how do I connect to an AWS "Application Load Balancer" with SSL
- SSL Certificate For AWS Load Balancer
- Single SSL certificate for Multiple load balancer
- Single SSL certificate in a Load Balancing architecture