How to connect APIGW to Public ALB

I referred this documentation - https://repost.aws/knowledge-center/api-gateway-application-load-balancers, but it doesn't mention anything regarding security groups.

What will be my security group rule to allow access only from Public ALB? and how to integrate them? Is VPC Link required for this usecase?

주제

네트워킹 및 콘텐츠 전송 서버리스 프론트엔드 웹 및 모바일

태그

아마존 VPC 아마존 API 게이트웨이 네트워킹 및 콘텐츠 전송 탄력적 로드 밸런싱 보안 그룹

언어

English

Exter

질문됨 2달 전374회 조회

1개 답변

최신
최다 투표
가장 많은 댓글

이 답변이 도움이 되었나요?커뮤니티가 여러분의 지식을 활용할 수 있도록 정답을 찬성하세요.

Hello.

If it is an HTTP API, you can use it by configuring it according to the steps in the document you shared.

The IP address of API Gateway is probably not fixed, so it would be difficult to control access using security groups.
Therefore, it may be a good idea to use a private ALB instead of a public ALB to configure the VPC link.
https://repost.aws/knowledge-center/api-gateway-alb-integration

전문가

Riku_Kobayashi

답변함 2달 전

전문가

Giovanni Lauria

검토됨 2달 전

Exter
2달 전
My ALB also accepts traffic from Cloudfront and thus has to be public. Is there any way to keep the ALB public and remove the 0.0.0.0/0 rule somehow? Maybe by introducing an NLB in between?

How to connect APIGW to Public ALB

관련 콘텐츠