CloudFront with VPC Origins - Sniffing in the origin i see the cloudfront public ip address as the remote is that makes sense?
0
I have setup with cloud front and origins behind secured with VPC origins. When sniffing traffic in the origin i see that Cloudfront IP communicating with the origin is the Cloud front public IP address and not internal IP or the VPC cidr like i expected.
is this an intended behavior?
- 언어
- English
질문됨 3달 전95회 조회
1개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
1
That is correct, your VPC EC2 or ELB origin will see CloudFront IP.
Your origin can be in a private subnet, i.e. it does not need a public IP address. Your can configure origin security group to only allow inbound from CloudFront security group.
More information in documentation
