By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Restricting incoming NLB traffic to internal IP addresses

0

Customer has a use case which involves handling TCP traffic (not http or https) in their internal VPC.

Is there a way to restrict source IPs? For an NLB there are no security groups.

Topics
Networking & Content Delivery
Tags
Amazon VPC
Language
English
AWS
AWS-User-3928795
asked 5 years ago2.4K views
1 Answer
0
Accepted Answer

If the clients are in the same VPC you could simply use an internal NLB, which will only have private IP addresses, and not be available to clients outside the VPC's private connectivity.

When you use an instance type target group on your NLB, the security group rules s of the targets are applied if they refer to the client's source IP or source network CIDR.

AWS
EXPERT
zobAWS
answered 5 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content