2. If/when there are any issues; we take care of the updates and handling, you don't need to drop everything to suddenly upgrade.
-
-
This might lessen the need to run nlb -> haproxy -> alb, but I'm probably still stuck doing that as long as we've got Elastic Beanstalk needing fixed ips. Correct?
-
I've seen a few customers who run Lambda triggered functions to scrape the IPs for their ELB/ALB/Beanstalk and register them with an NLB as they change.
- 3 more replies
New conversation -
-
-
I frequently hear the request for end to end secure communication. Terminating at the NLB brings discomfort to my clients.
-
You get to choose! we're never going to break e2e, it'll still work, but customers that use it have to manage the TLS software, settings, certificate/key security, rotating/revocation, and so on. For many customers, having a managed service for all that makes the most sense.
End of conversation
New conversation -
-
-
On the AMA side, does it or will it preserve source IPs across PrivateLink services shared across accounts?
-
Nope! an NLB as part of privatelink doesn't preserve the source IP. That's because many source VPCs can have overlapping ranges, so it wouldn't disambiguate the traffic. Instead we send a ProxyProtocolV2 header with an extension that indicates the source ip/port and origin VPC.
End of conversation
New conversation -
-
-
@threadreaderapp unroll please -
Hallo there is your unroll: Thread by
@colmmacc: "Mini-Thread: We've just launched TLS/SSL support for AWS Network Load Balancers. You can now use NLB to terminate TLS/SS […]" https://threadreaderapp.com/thread/1088510453767000064.html … Enjoy :)
End of conversation
New conversation -
-
-
Another question: unlike other LBs, we can actually point NLBs at IP addresses on the other side of a direct connect (right?), so certificate validation options on the backend might be nice now given that traffic isn’t guaranteed to be (entirely) on AWS networking
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
This is really cool and awesome work. Are there any plans to add static IP support to ALBs? I'm having to use the NLB -> Lambda -> ALB method and I'd be much happier if this was natively supported - I still need ALBs for stickiness .
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.