I am trying to configure an AWS application load balancer (compared to the classic load balancer) to distribute traffic to my EC2 web servers. For compliance reasons, I need end-to-end SSL / HTTPS encryption for my application.
It seems to me that the easiest way to provide traffic encryption between clients and web servers is to end the HTTPS connection on the web servers.
My first question is: is it possible to pass through HTTPS traffic through the AWS application load balancer to the web servers behind the load balancer in this way?
From what I have compiled from the AWS documentation, you can transfer traffic this way using the classic load balancer (through a TCP pass). However, the application load balancer looks as if it wants to end the HTTPS connection, and then do one of the following:
- send traffic to unencrypted web servers, which I cannot do for compliance reasons.
- create a new HTTPS connection to web servers that looks like an extra workload
My second question is: is the documentation understood correctly?
ssl amazon-web-services load-balancing
John r
source share