[英]How do I combine AWS API Gateway and Application Load Balancer for HTTPS outside of us-east-1?
I am attempting to route traffic through the AWS API Gateway to my ECS containers running in a private subnet via an Application Load Balancer running in a public subnet. 我试图通过AWS API网关将流量路由到通过在公有子网中运行的应用程序负载均衡器在私有子网中运行的ECS容器。 Using plain old HTTP everything works perfectly fine, but now I want to add transport layer security (TLS, fka SSL) to the communication between the gateway and the load balancer.
使用普通的旧HTTP一切都很好,但现在我想将传输层安全性(TLS,fka SSL)添加到网关和负载均衡器之间的通信。 In other words, terminate SSL at the load balancer.
换句话说,在负载均衡器处终止SSL。
Execution failed due to configuration error: Host name 'XXXXXXXXX-lb-XXXXXXXXX..elb.amazonaws.com' does not match the certificate subject provided by the peer (CN=)
由于配置错误导致执行失败:主机名“XXXXXXXXX-lb-XXXXXXXXX..elb.amazonaws.com”与对等方提供的证书主题不匹配(CN =)
Given my load balancer is not in the us-east-1 region how can I achieve my goal? 鉴于我的负载均衡器不在 us-east-1区域,我怎样才能达到目标?
Assign a custom domain name to the load balancer. 将自定义域名分配给负载均衡器。 Then assign a valid SSL certificate to the load balancer using the ACM service.
然后使用ACM服务将有效的SSL证书分配给负载均衡器。 Then reference the load balancer using the custom domain name.
然后使用自定义域名引用负载均衡器。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.