3

I have a question about #apigateway and thanks in advance for all your insights.

#aws #apigateway REST APIs seems like can integrate only with Network Load Balancer out of box using private link. But in my use case, I want to use Application Load Balancer, is the only way around it is to make it internet facing load balancer?

If yes, what do you all think about this solution architecture? End of the day I would want Application Load Balancer to be accessible only through API Gateway. What are the risk you see with this solution?

enter image description here

#awscloud #awscertified #awscommunity #awssecurity #aws #cloudarchitecture

John Rotenstein
  • 241,921
  • 22
  • 380
  • 470
sowmya raghu
  • 41
  • 1
  • I don't understand, why your API Gateway is in a VPC? Is it supposed to be private API gateway? – Marcin Sep 25 '20 at 00:09
  • It is to represent that API Gateway is in aws network, not the customer VPC. And the Gateway is regional – sowmya raghu Sep 25 '20 at 00:21
  • Why the authenitcatio is on ALB? Why not make it on the API? Woud;t it be easier to deny access right at the beginig, rather then after API and WAF? – Marcin Sep 25 '20 at 00:24
  • Authentication on ALB is more to prevent direct hit to ALB and that the headers are passed through API Gateway. – sowmya raghu Sep 25 '20 at 03:24
  • I've got a similar question https://stackoverflow.com/questions/67399975/how-to-integrate-api-gateway-with-internal-alb Did you end up integrationg API Gateway with ALB? – diegosasw May 05 '21 at 12:48

0 Answers0