amazon-elb

问题 I need to use AWS WAF for my web application hosted on AWS to provide additional rule based security to it. I couldnt find any way to directly use WAF with ELB and WAF needs Cloudfront to add WEB ACL to block actions based on rules. So, I added my Application ELB CNAME to cloudfront, only the domain name, WebACL with an IP block rule and HTTPS protocol was updated with cloudfront. Rest all has been left default. once both WAF and Cloudfront with ELB CNAME was added, i tried to access the

问题 I have an EC2 instance with Apache as a reverse proxy and ffserver as a streaming server. There is an ELB (Classic) in front of the EC2 instance which works as an SSL termination point. Apache configuration is rather simple: <Location "/mp3/"> ProxyPass http://127.0.0.1:8081/ DisableReuse=On KeepAlive=Off ProxyPassReverse http://127.0.0.1:8081/ SetEnv force-proxy-request-1.0.1 SetEnv proxy-nokeepalive 1 </Location> ffserver is used to stream live audio over the Internet. In ffserver 's

问题 I'm experiencing issues with an elastic load balancer and varnish cache with respect to cookies and sessions getting mixed up between rails and the client. Part of the problem is, rails is adding a "Set-Cookie" header on with a session id on almost every request. If the client already is sending session_id, and it matches the session_id that rails is going to set.. why would rails continuously tell clients "oh yeah.. you're session id is ..." 回答1: Summary: Set-Cookie headers are set on almost

问题 Our application is currently serving around 1500 transactions per second. We have Rabbit as a queue. But we store only the transaction ID in Rabbit, the actual message which is 1-5 mb in size, we are storing in Redis (an in-memory database). My question is, can we remove Redis altogether, and just use Rabbit - will it sustain? One more thing: can we increase the number of Rabbit instances horizontally, as we expect load will scale up pretty fast (we have already tested an master master

问题 I have two different applications developed in Play framework. I am trying to launch both the application in a EC2 instance with apache, ProxyPass and ProxyPassReverse setup. I have to use two different URL and SSL for each application. I could bring one of the application successfully. The other one is creating the problem. I have installed ELB with SSL incase if we need load balance the traffic by creating two replicated EC2 instances. Kindly suggest a good way to do it. I have to use this

问题 We have set up a TFS 2012 Server on AWS and have implemented one of the newer Application Load Balancers in front of it. We did this to leverage the CName functionality and save on our Elastic IP Address allocation. This server is only for the internal team, but we were creating a public URL. When logging into the server directly through the local IP, it prompts for un/password one time, when coming from external through the load balancer, every AJAX call gets prompted on the page, and you

问题 I am trying to redirect http://example.com , https://example.com , http://www.example.com to https://www.example.com . Servers listening to both http and https requests via 443 port through ELB. nginx config : server { listen 443; server_name example.com; return 301 $scheme://www.example.com$request_uri; } server { listen 443 default; server_name www.example.com; //ssl stuffs } only http://example.com and https://www.example.com is working as expected.But http://www.example.com is going to

问题 I have access logging configured for my AWS ALB. It dumps these logs into an S3 bucket on an interval. To view them you have to download then unzip the file and look through the text. I'd like to see a list of the ALB HTTP requests in one place without having to go through the process mentioned above. Does AWS offer anything like this? 回答1: The AWS Application Load Balancer saves log files into Amazon S3. Amazon Athena can then be used to query the files saved in S3. The important part is

问题 I have an aws application load balancer with an https listener on port 9999, forwarding to a group on port 9999 with an ec2-instance being the target. If I run my websocket server with the host name configured to my domain api.example.com , then when the client tries to open a websocket connection it gets: Error during WebSocket handshake: Unexpected response code: 502 However, if I configure my websocket server with an empty string instead of the domain, then it connects just fine ! This is

问题 Maybe a stupid question, but I have searched for a while... To ensure aws ELB HA, shall I explicitly create two ELB instances in console or aws itself will handle HA for me, so I just need to create one? Thanks 回答1: Yes, it manages HA of itself for you. The main product page mentions this - https://aws.amazon.com/elasticloadbalancing/ ELB is engineered to be HA. You can see this by performing a dig command on your ELB and seeing that it returns multiple addresses. By default an ELB will only