Private API Gateway URL is not accessible

0

I'm doing some PoC stuff around API Gateway, and I can't access the URL that API Gateway gives me after deploying the endpoint. I have a VPC endpoint set up with Private DNS turned on. I can access the API Gateway if I use one of the VPCE DNS names and set the Host header to the hostname of the provided API Gateway URL. But if I log into an instance in the same subnet and try to curl the URL that API Gateway gives me, I just get this:

$ curl -ivk https://{apiId}.execute-api.us-east-1.amazonaws.com/test  
* About to connect() to {apiId}.execute-api.us-east-1.amazonaws.com port 443 (#0)  
*   Trying {ip}... connected  
* Connected to {apiId}.execute-api.us-east-1.amazonaws.com ({ip}) port 443 (#0)  
* Initializing NSS with certpath: sql:/etc/pki/nssdb  
* warning: ignoring value of ssl.verifyhost  
* NSS error -5961  
* Closing connection #0  
* SSL connect error  
curl: (35) SSL connect error  

What am I missing?

已提問 5 年前檢視次數 425 次
1 個回答
1

I discovered that the version of CentOS on the instance I was connecting with had an older version of curl which didn't handle the SSL transaction correctly. Launching a new instance with the Amazon Linux AMI resulted in a successful HTTP transaction.

已回答 5 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南