By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

How to connect APIGW to Public ALB

0

I referred this documentation - https://repost.aws/knowledge-center/api-gateway-application-load-balancers, but it doesn't mention anything regarding security groups.

What will be my security group rule to allow access only from Public ALB? and how to integrate them? Is VPC Link required for this usecase?

Topics
Networking & Content DeliveryServerlessFront-End Web & Mobile
Tags
Amazon VPCAmazon API GatewayNetworking & Content DeliveryElastic Load BalancingSecurity Group
Language
English
Exter
asked a month ago357 views
1 Answer
0

Hello.

If it is an HTTP API, you can use it by configuring it according to the steps in the document you shared.

The IP address of API Gateway is probably not fixed, so it would be difficult to control access using security groups.
Therefore, it may be a good idea to use a private ALB instead of a public ALB to configure the VPC link.
https://repost.aws/knowledge-center/api-gateway-alb-integration

profile picture
EXPERT
Riku_Kobayashi
answered a month ago
profile picture
EXPERT
Giovanni Lauria
reviewed a month ago
  • Exter
    a month ago

    My ALB also accepts traffic from Cloudfront and thus has to be public. Is there any way to keep the ALB public and remove the 0.0.0.0/0 rule somehow? Maybe by introducing an NLB in between?

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content