How to connect APIGW to Public ALB

I referred this documentation - https://repost.aws/knowledge-center/api-gateway-application-load-balancers, but it doesn't mention anything regarding security groups.

What will be my security group rule to allow access only from Public ALB? and how to integrate them? Is VPC Link required for this usecase?

主题

网络和内容交付无服务器前端 Web 和移动

标签

亚马逊 VPC 亚马逊 API 网关网络和内容交付弹性负载平衡安全组

语言

English

Exter

已提问 1 个月前369 查看次数

1 回答

最新
投票最多
评论最多

这些答案有用吗？为正确答案投票，以帮助社区从您的知识中受益。

Hello.

If it is an HTTP API, you can use it by configuring it according to the steps in the document you shared.

The IP address of API Gateway is probably not fixed, so it would be difficult to control access using security groups.
Therefore, it may be a good idea to use a private ALB instead of a public ALB to configure the VPC link.
https://repost.aws/knowledge-center/api-gateway-alb-integration

专家

Riku_Kobayashi

已回答 1 个月前

专家

Giovanni Lauria

已审核 1 个月前

Exter
1 个月前
My ALB also accepts traffic from Cloudfront and thus has to be public. Is there any way to keep the ALB public and remove the 0.0.0.0/0 rule somehow? Maybe by introducing an NLB in between?

How to connect APIGW to Public ALB

相关内容