By using AWS re:Post, you agree to the Terms of Use



Hi All,

I have built an HTTP APIGW with VPC LINK to connect to ALB in VPC. Now I want to understand the use of security groups in VPC LINK. It doesn't matter what inbound rules I put in the SG, I can connect to backend resources from the internet. I was under the impression that I will be able to control the access via security groups in the vpc link but it doesn't seem to work like that.

I am looking to open access to a list of IP's only. As HTTP API GW doesn't support the resource policy or waf, I was hoping to leverage VPC Link SG for this.

Any ideas?

1 Answers

You can use this chart to determine whether to choose HTTP or REST APIs -

If WAF capabilities are important to you, then definitely go with REST APIs.

Is there any particular feature in HTTP that you care about, that's not present in REST APIs?

profile picture
answered 2 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions