问题描述
我记得以前做过,但是现在看来我已经忘记了这个过程.
I remember doing it before but now it seems I have forgotten the process.
我想为ALB创建一个HTTPS侦听器.但是,在443上运行的ec2中没有任何内容.我应该配置将443指向应用程序运行端口的反向代理,还是将HTTPS侦听器添加到端口80 HTTP目标组?
I want to create an HTTPS listener for an ALB. However, I don't have anything in my ec2 running on 443.Should I configure a reverse proxy which points 443 to the app running port or add my HTTPS listener with port 80 HTTP target group?
有人可以帮我吗?
推荐答案
您需要在端口 80
上指向您的EC2实例的单个目标组.
You need a single Target Group pointing to your EC2 instance on port 80
.
然后,您可以在使用该目标组的ALB上创建端口 443
侦听器.创建侦听器时,必须将SSL证书附加到侦听器.ALB将终止SSL连接,并通过端口 80
将请求发送到后端服务器.
Then you can create a port 443
listener on the ALB that uses that target group. You will have to attach an SSL certificate to the listener when you create it. The ALB will terminate the SSL connection and send the request to the backend server over port 80
.
这篇关于为使用Ec2在apache2上运行的应用程序为ALB创建https侦听器的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!