By using AWS re:Post, you agree to the Terms of Use

Is it possible to use an internal ALB as an EventBridge Rule API Destination?


We would like to use an EventBridge Rule to trigger a webhook for one of our internal applications. The problem is that it appears as if API Destinations can't connect to applications inside of our VPC.

Our application is behind an internal ALB so it can't be connected to from the Internet. Is there some way for EventBridge to hit a HTTPS endpoint on an internal ALB?

1 Answer
Accepted Answer

As you mentioned, API destinations does not support private destinations. To overcome this you can set the target of the rule to a Lambda function that is attached to the VPC and it will invoke the ALB. This is not optimal of course as it adds latency and cost, but this is the only support way of doing it now.

You could also take a different route and use SQS. The rule will send the messages to an SQS queue and the application in the VPC will poll the queue for the messages. ALB will not be required in this case. This is a much bigger change of course.

profile picture
answered 7 months ago
  • Yea, neither of those options are really a good thing, and actually we are already using a Lambda to trigger these webhooks. I was just hoping that API Destination would simplify our architecture. Maybe at some point in the future it will be able to attach to a VPC and operate on internal resources.

    Thanks for your reply.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions