Geek Answers Handbook

Cannot get https to work with elastic load balancer (AWS)

I have a front load balancer in an ec2-Classic instance. I verified that the load balancer is working correctly by directly contacting the name of the DNS name listed on the Description tab for my load balancer. This gives me the main page of the webpage that is on the EC2 instance. So my balancer is working. My load balancer and my EC2 instance are in the same availability zone.

My load balancer installed an SSL certificate, and I have two settings for sending http (port 80) and https (port 443) to instance port 80 as http. My EC2 instance has a security group that accepts HTTP and https with TCP protocol on ports 80 and 443 respectively. Although I understand that only port 80 will be useful, right? The data for the certificate is in pem format. I have added custom TCP to the instance security group in the port range 0 - 65535 for amazon-elb / amazon-elb-sg. It did nothing.

I can access my site using http just fine. If I try to access using https, I get the error code: ERR_CONNECTION_REFUSED in Chrome and cannot connect to Firefox.

I checked similar posts for this question and nothing helps.

Any help or ideas would be greatly appreciated. Thanks

+11
ssl amazon-web-services amazon-ec2
source share
3 answers

Are you sure the ELB is in a security group that allows https on port 443?

+10
source

I had a similar problem with the classic and advanced load balancer. The only thing I was missing was that the https to http translator only works after you have made an A record in DNS for the domain for which your SSL is included in ALIASED for the newly created load balancer. As soon as I did this, everything was fine through this new DNS record. Your instance should not accept port 443, and your LB should definitely not forward over 443.

Hope this is just as easy for you.

Wait, which SSL certificate is in PEM format? I used the SSL SSL certificate that I just got from the drop-down list. Are you sure you used an SSL certificate?

0
source

In your description, I see that you may not follow step 6 of the Amazon manual "Elastic load balancing in Amazon EC2-Classic → Create an HTTPS / SSL load balancer using the AWS Management Console → Configure listeners."

It says that you should configure "HTTPS (...) in the load balancing protocol [and] HTTPS (secure HTTP) (...) in the instance protocol window.", Whereas in your configuration you forward ELB 443 to port 80 in court.

For further reference, this tutorial I'm talking about is DEAD LINK http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/configure-https-listener.html DEAD LINK

Also, check if your SSL certificate is built correctly according to the rules specified here: http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/ssl-server-cert.html

-2
source

More articles:


All Articles