Private API Gateway URL is not accessible

0

I'm doing some PoC stuff around API Gateway, and I can't access the URL that API Gateway gives me after deploying the endpoint. I have a VPC endpoint set up with Private DNS turned on. I can access the API Gateway if I use one of the VPCE DNS names and set the Host header to the hostname of the provided API Gateway URL. But if I log into an instance in the same subnet and try to curl the URL that API Gateway gives me, I just get this:

$ curl -ivk https://{apiId}.execute-api.us-east-1.amazonaws.com/test  
* About to connect() to {apiId}.execute-api.us-east-1.amazonaws.com port 443 (#0)  
*   Trying {ip}... connected  
* Connected to {apiId}.execute-api.us-east-1.amazonaws.com ({ip}) port 443 (#0)  
* Initializing NSS with certpath: sql:/etc/pki/nssdb  
* warning: ignoring value of ssl.verifyhost  
* NSS error -5961  
* Closing connection #0  
* SSL connect error  
curl: (35) SSL connect error  

What am I missing?

gefragt vor 5 Jahren426 Aufrufe
1 Antwort
1

I discovered that the version of CentOS on the instance I was connecting with had an older version of curl which didn't handle the SSL transaction correctly. Launching a new instance with the Amazon Linux AMI resulted in a successful HTTP transaction.

beantwortet vor 5 Jahren

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen