Delegate subdomain to Route53 to serve static website on S3

0

Hi all,
Here is my situation: I bought a domain domain.ai on gandi. I would like to serve the subdomain admin.domain.ai through Route 53, to hit an S3 bucket, with HTTPS.

I have:

  • 1 question: Do I really need Cloudfront to have an HTTPS connection or Route53 to an S3 bucket is enough?
  • 1 problem: I followed the guide [1]. A few hours after doing it, admin.domain.ai seemed to hit AWS DNS servers but, with nslookup admin.domain.ai, I received:
Non-authoritative answer:
Name:	admin.domain.ai
Address: 18.203.172.170

Could you help me on this?
[1] https://docs.aws.amazon.com/fr_fr/Route53/latest/DeveloperGuide/CreatingNewSubdomain.html

Edited by: AlexandreSicara on Jun 24, 2019 12:13 AM

Edited by: AlexandreSicara on Jun 24, 2019 12:14 AM

已提問 5 年前檢視次數 485 次
1 個回答
0

My answer after a few days:

  1. You do need Cloudfront to establish an HTTPS connection with your bucket.

  2. To make every request go to admin.domain.ai, here is the path of the request:
    a. The request hits Gandi (because the domain domain.ai is handled by Gandi)
    b. Gandi has to redirect it to the AWS servers. For this to happen, you need to add the Name Servers given by Route53:

admin 1800 IN NS ns-1194.awsdns-21.org.
admin 1800 IN NS ns-1916.awsdns-47.co.uk.
admin 1800 IN NS ns-287.awsdns-35.com.
admin 1800 IN NS ns-988.awsdns-59.net.

Bonus: To have HTTPS connection, here is the process I followed:

  • Go to AWS ACM
  • Request a certificate for admin.domain.ai
  • Ask for a DNS validation
  • In Gandi, I added the record:
XXXXXXXXXXXXXXXXXX.admin 1800 IN CNAME YYYYYYYYYYY.ZZZZZZZ.acm-validations.aws.

Where the X, Y and Z values were given by AWS ACM.

The certificate was promptly issued and I added it to my Cloudfront distribution.

已回答 5 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南