Questions tagged [amazon-elb]
ELB is Amazon's managed Load Balancer service, used in conjunction with its EC2 virtual machine cloud hosting service.
557
questions
33
votes
5
answers
50k
views
Nginx set_real_ip_from AWS ELB load balancer address
I have a set of Nginx servers behind an Amazon ELB load balancer. I am using set_real_ip (from the HttpRealIpModule) so that I can access the originating client IP address on these servers (for ...
28
votes
3
answers
40k
views
Nginx Solution for AWS Amazon ELB Health Checks - return 200 without IF
I have the following code that is working on Nginx to keep the AWS ELB healthcheck happy.
map $http_user_agent $ignore {
default 0;
"ELB-HealthChecker/1.0" 1;
}
server {
location / {
if ($...
27
votes
11
answers
62k
views
how to forward godaddy domain to ec2 load balancer
I have a domain with godaddy: example.com
I have an ec2 load balancer pointing to an ec2 instance.
I would like to example.com to point to my load balanced instance.
I first added a www cname ...
27
votes
4
answers
33k
views
Redirect all http requests behind Amazon ELB to https without using if
Currently I have an ELB serving both http://www.example.org and https://www.example.org.
I would like to set it up so any request pointing to http://www.example.org is redirect to https://www.example....
23
votes
3
answers
15k
views
Is AWS's Elastic Load Balancer a single point of failure?
I am looking at moving our application up to Amazon Web Services. The plan is to have all of the EC2 instances mirrored across two availability zones. Due to data transfer costs, we will be staying in ...
19
votes
1
answer
4k
views
Does Heartbleed affect AWS Elastic Load Balancer?
The Heartbleed OpenSSL vulnerability (http://heartbleed.com/) affects OpenSSL 1.0.1 through 1.0.1f (inclusive)
I use Amazon Elastic Load Balancer to terminate my SSL connections. Is ELB vulnerable?
18
votes
1
answer
22k
views
2 ELBs (ALBs) to 1 target group, possible?
I have the following scheme:
Internet <-> elb1external <-> varnish <-> elb2internal <-> targetgroupofwebnodes
But some /static/* & /media/* are routed to targetgroupofwebnodes from ...
16
votes
7
answers
15k
views
How can I make my web server reachable via IPv6 on the AWS platform?
My business's web site uses the AWS platform. I want the site's visitors to be able to reach my content using the IPv6 protocol. How can I add an IPv6 address?
16
votes
3
answers
6k
views
How can I use https with AWS Cloudfront without paying $600 to upload my cert?
I can host a dynamic website through Amazon CloudFront because they have CNAME Wildcard Support. However, some pages of my Site use HTTPS. Amazon have some documentation about how to associate your ...
15
votes
2
answers
32k
views
What algorithm does Amazon ELB use to balance load?
I found this in the official ELB documentation
By default, a load balancer routes each request independently to the
application instance with the smallest load.
but an article on Newvem says ...
14
votes
3
answers
13k
views
Elastic Load Balancer for multiple webapps
I have N webapps. Each webapp is served by a different hostname in my domain and deployed to 2 instances running in AWS. In other words, I have 2N instances, divided into pairs which run N distinct ...
14
votes
4
answers
26k
views
How to redirect HTTP to HTTPS on AWS Application Load Balancer?
Our website needs HIPAA compliance so everything needs to be encrypted. I don't want client to get an error message when they put in "http://mysite.com", so I need to support both HTTP and HTTPS, and ...
14
votes
3
answers
8k
views
AWS - Assign an Elastic IP to a ELB
Is it possible to assign an Elastic IP to a Load Balancer?
14
votes
1
answer
23k
views
How to log original value of $remote_addr when using Real-IP
My environment has user requests passing through a number of systems:
[Client] --> [ELB] ---> [nginx] --> [web]
(ELB = AWS Elastic Load Balancer)
Thanks to this answer, I have nginx determining and ...
13
votes
7
answers
36k
views
Endless Redirect Loop with AWS ELB and wordpress site using wordpress https plugin
I have configured an AWS ELB to point to my Ubuntu Server running the Wordpress 3.2.1. Everything worked great on the server until I put it behind a load balancer.
I setup the load balancer to ...
13
votes
2
answers
15k
views
Setting Up ELB with SSL - What is Backend Authentication?
I started setting up Amazon's Elastic Load Balancing Service for my server pool and I need to setup HTTPS/SSL. I have all my SSL Certificates setup, but then I come to the step for backend ...
12
votes
2
answers
3k
views
AWS recommends 54 t2.nano EC2 instances instead of one m5.xlarge
We have deployed a web application on an m5.xlarge EC2 instance and when we try to buy an annual or 3 years reserved license, AWS recommends based on our current usage it is recommended to purchase 54 ...
12
votes
2
answers
7k
views
SSL redirect on EC2 instance behind SSL terminating load balancer
I'm trying to redirect all url's to https in a web application.
I have an ec2 instance behind an elastic load balancer. SSL is terminated on the load balancer.
Any attempts at redirection end up ...
12
votes
1
answer
13k
views
AWS Fargate + Application Load Balancer SSL Termination
I'm trying to configure ECS Fargate behind an Application Loader Balancer (ELBv2), and I would like to terminate the TLS/SSL connections on the ALB, and send HTTP traffic (port 80) to the Fargate ...
11
votes
3
answers
15k
views
How to set up ELB health checks with multiple applications running on each EC2 instance?
At AWS we'd like to to use ELBs to load balance EC2 instances which host multiple applications. Ideally we'd like to have a health check for application.
However, AWS Elastic Load Balancers currently ...
10
votes
3
answers
18k
views
Install SSL on Amazon Elastic Load Balancer with GoDaddy Wildcard Certificate
I'm a bit stuck installing an SSL Cert on an AWS Elastic Load Balancer. I have a wildcard certificate from GoDaddy and need to point it at the ELB.
I have run the command (I ran it on one of the ...
10
votes
2
answers
9k
views
Can Elastic Load Balancers correctly distribute traffic to different size instances
Just been looking into Elastic Load Balancers. As I understand it they just do round robin, evenly distributing connections to the servers behind them. So what happens if you have different size ...
9
votes
2
answers
12k
views
Can I use the new free SSL/TLS AWS certificates without ELB or Beanstalk on plain EC2?
AWS just announced free SSL/TLS certificates here: https://aws.amazon.com/blogs/aws/new-aws-certificate-manager-deploy-ssltls-based-apps-on-aws/
Mainly:
SSL/TLS certificates provisioned through ...
9
votes
3
answers
6k
views
Using Amazon Load Balancers to route traffic to private servers outside Amazon
I'm looking into using Amazon Elastic Load Balancing (ELB) in order to reduce downtime when a server goes down. Basically, I don't want to change the relevant DNS records and wait for DNS propagation ...
9
votes
2
answers
6k
views
Amazon ELB HTTPS Not working
I'm trying to get HTTPS working with AWS ELB.
I've been trying for about an hour, but no matter what i try, i just get connection timed out when connecting via HTTPS. HTTP works fine, but not HTTPS.
...
9
votes
2
answers
9k
views
How to block Nginx access log statements from specific user agents
I am looking to turn off logging in the Nginx access log file from specific requests from http user agents.
Basically from the Amazon ELB Health Check and our external (Pingdom) monitoring. Since ...
9
votes
3
answers
27k
views
Load Balancer on Amazon does not have secure flag set for Cookie
We have a java based application running on Amazon and have configured our Amazon ELB to connect to them successfully.
However, we are seeing that the Cookie flag not set as Secure.
Name Value ...
9
votes
3
answers
4k
views
Apache DirectorySlash redirects HTTPS requests back to HTTP
User Request: https://www.example.com/test
HTTPS requests --> AWS ELB HTTPS Listener --> Apache HTTP
Apache getting http://www.example.com/test
Apache redirect it to http://www.example.com/...
9
votes
3
answers
7k
views
AWS ELB as backend for Varnish Accelerator
I am working on a large deployment on AWS that has high uptime requirements and variable loads throughout the day. Obviously, this is the perfect use case for ELB (Elastic Load Balancer) and ...
8
votes
1
answer
14k
views
Possible to log X-FORWARDED-FOR to nginx error_log?
Nginx allows custom log formats for access logs -- right now I'm logging http_x_forwarded_for and it's working fine.
The problem is my error log only shows the LB IP. After Googling and reading ...
8
votes
1
answer
4k
views
Is it possible to show a static page if all ELB registered instances are down?
We are using AWS ELB to offload SSL and load balance the incoming traffic. If all instances are down/unhealthy the ELB just sends back a blank page with HTTP status 503.
Is it possible to send a ...
8
votes
2
answers
9k
views
Map one AWS ELB load balancer port to balance to multiple instance ports?
Lets say I have multiple processes running on multiple EC2 instances each on different ports. Can I map a single AWS ELB to balance to any of these processes across any instance?
For example, I'd ...
8
votes
1
answer
1k
views
Unicorn behind ELB, no nginx
If I understand Unicorn right (and in particular from their philosophy doc) it seems like Unicorn was really designed to operate behind a reverse proxy like nginx.
My question is: can I drop nginx ...
7
votes
3
answers
5k
views
The site is using outdated security settings that may prevent future versions of Chrome from being able to safely access it
We're using an AWS ELB to do SSL termination and are having an issue where Chrome is displaying "https" in red with a strikethrough.
It says "The site is using outdated security settings that may ...
7
votes
2
answers
3k
views
How can I setup SPDY with Jetty behind Amazon's ELB?
I want to deploy SPDY, but I'm using Amazon's ELB TCP routing. The ELB also handles the secure connections for us. How can this be configured on the jetty side?
7
votes
1
answer
20k
views
AWS Cloudfront + Load Balancer, url changes from main domain to load balancer subdomain
My setup is as follows:
user types example.com on the browser
request goes to AWS CloudFront, which redirects HTTP to HTTPS, and
forwards the request to the AWS Elastic LoadBalancer
(elb.example.com)
...
7
votes
3
answers
10k
views
Force HTTPS with AWS Elastic load balancer
I need to redirect all incoming HTTP traffic to HTTPS on my elastic load balancer.
I tired using Apache mod_rewrite:
RewriteEngine On
RewriteCond %{HTTP:X-Forwarded-Proto} !https
RewriteRule !/...
7
votes
1
answer
2k
views
Is it possible to use Kerberos over TLS through sssd?
Background
I am trying to log in (via SSH, to an Amazon Linux EC2 instance running sssd) as users that I've created in my AWS Directory Services Simple AD. I am authenticating with Kerberos and ...
6
votes
2
answers
8k
views
IP Range for internal private IP of Amazon ELB
I'm trying to find out the range of IP addresses that an Elastic Load Balancer could have from an EC2 instance which is behind it. This is so I can configure the HttpRealIpModule of nginx correctly.
...
6
votes
2
answers
36k
views
How to ping / traceroute an AWS ELB
Amazon's load balancers have a network security policy which swallows ICMP packets for both ping and traceroute. It is listed as security group amazon-elb/amazon-elb-sg. Personally I find these ...
6
votes
2
answers
1k
views
Load Balancing on Amazon (AWS) and staying up to date
I would like to have a load balancer for my site and have the site up to date.
The load balancer will take the AMI I select and spin up more of those instances when processing power hits a certain ...
6
votes
1
answer
9k
views
Using an Elastic Load Balancer with a single EC2 instance on AWS
I'm using the AWS Free Tier, which gives me one free EC2 microinstance and one free Elastic Load Balancer, if I understand things correctly.
I understand that usually ELBs are used when you are using ...
6
votes
1
answer
3k
views
AWS EC2 Instance Auto Scaling Confusion
So first off I'm completely new to AWS so bear with me.
I have had one instance running for a few months now and I now need to autoscale it as I am getting bigger traffic spikes and it gets ...
6
votes
2
answers
4k
views
AWS Autoscaling Group won't honor five minute draining policy of the Target Group when scaling down
We have an Autoscaling Group in AWS that we manually scale up and down at the time being. Our ASG is currently attached to one Target Group, which has all of our prod servers in it.
Before using the ...
6
votes
1
answer
10k
views
ALB Connection Draining is always reaching the "Deregistration Delay"
I'm using ECS along with ALB to expose my containers to the internet. When I'm updating a container image (I'm using CloudFormation to update the tasks and services), the target group set the ...
6
votes
2
answers
11k
views
AWS Fargate task fails ELB health checks
How can I troubleshoot it further? I am trying to run a simple nginx container but the load balancer complains that health checks are failed and the task does not respond on its ip number, likely ...
6
votes
1
answer
3k
views
AWS Application ELB sometimes responds 502 without calling the backend
We have the following setup: An AWS Application ELB has a target group of 4 EC2 instances. On each of the EC2 instances, there is an Apache2 which forwards to a Tomcat.
It works brilliantly. Except ...
6
votes
2
answers
6k
views
High availability Bastion host - Best practices, ELB, EIP?
I am currently trying to figure out a good configuration to make a Bastion host highly available. I want to meet the following targets:
The bastion host(s) need to able to withstand a Availability ...
6
votes
1
answer
8k
views
How to health check Squid server with ELB?
I wanted to have an HA forward proxy solution using Squid, and I am trying to use the Squid servers behind ELB solution on page 41.
However, my forward proxy service is a service meant to forwarding ...
6
votes
3
answers
33k
views
Troubleshooting HTTPS on AWS ALB: Target Group Health Check Failing
I'm having trouble setting up HTTPS for my AWS EC2 instance. In short, I'm running a program on an EC2 instance, and it's critical that I be able to transfer the data securely from clients to AWS.
...