Can an Application Load Balancer invoke an API Gateway HTTP API via a VPC Endpoint Interface?
I've been trying to implement the architecture described here : https://aws.amazon.com/blogs/networking-and-content-delivery/accessing-an-aws-api-gateway-via-static-ip-addresses-provided-by-aws-global-accelerator/, but replacing the API Gateway REST API with an HTTP API. However, I am running into 403 errors when my ALB tries to invoke the HTTP API via the VPC Endpoint Interface.
Is this architecture possible?
- 新しい順
- 投票が多い順
- コメントが多い順
To my knowledge API Gateway does not support Private API for HTTP APIs, it is only supported for REST APIs. If you look at the documentation , it is only under REST API and there is no reference to Private deployment for HTTP APIs.
Hi, is there a policy (maybe a default one) applied on your VPC Endpoint blocking its use by the ALB? Make sure the the ALB service is allowed to use your endpoint
See for details on those policies: https://docs.aws.amazon.com/vpc/latest/privatelink/vpc-endpoints-access.html
Hope it helps!
Didier
Hi Didier, thanks for the link. I do have the default endpoint policy described there which is * on * which is why I'm wondering if perhaps what i'm trying to do only works for REST API's and not HTTP API's.
please set the answer to Accepted Answer if you feel it has responded to your query. Thanks.