stackoom
  简体   繁体   中英

Private API Gateway behind load balancer target group shows unhealthy

 原文  2022-08-02 20:40:10       amazon-web-services/ aws-api-gateway/ aws-security-group/ aws-load-balancer

Question

I'm trying to put an endpoint attached to a private API gateway behind a load balancer as explained in the following article so that I can use custom DNS with the private API gateway.

https://georgemao.medium.com/enabling-private-apis-with-custom-domain-names-aws-api-gateway-df1b62b0ba7c

It's all set up the way he explains it but the problem is that the health checks from the target group are failing. The health checks are set to accept response codes from 200-499(a troubleshooting measure).

I can attempt to access the the endpoint IP from the VPC and get a 403 but it doesn't seem to respond from the load balancer. The target group health checks are set to check https on the traffic port but they are all timing out. This is some sort of reachability issue but I can't figure out why I can reach it but the load balancer cannot. The security group I have applied right now allows traffic from 0/0 on port 443 inbound.

2 answers

solution1
 0  2022-08-26 08:42:26

Heyy, I have exactly the same issue, the reachability analyzer confirm the connection between the vpc endpoint eni and alb eni but health check still unhealthy

solution2
 0  2022-09-02 08:48:18

check that your security group allows outbound traffic and the health check path is set to "/ping" (on port 443) Hope this helps

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to correct “Instance has failed unhealthy threshold number of health checks ” in my target group of application Load balancer? Getting 5xx error with AWS Application Load Balancer - fluctuating healthy and unhealthy target group AWS Network load balancer target group health check status showing unhealthy How to use AWS private application load balancer in aws api gateway AWS API gateway to load balancer on private subnet ecs connection for microservices AWS Application Load Balancer sends request to unhealthy target groups / instances AWS - Target Group Load Balancer API gateway and load balancer concept aws - terraform Gateway load balancer target Is a public instance behind a Load Balancer that much less secure than a private instance behind a NAT Gateway? Due to what risks?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM