How Can I Set Up a Centralized Ingress with AWS ALBs?

By
Paul Asanka
-
0
8
Asked By TechSavvyGamer482 On

I'm working on reducing the number of public IPs in our AWS setup by creating a centralized ingress system for several services. Our plan is to have an Elastic Load Balancer (ELB) in one account and direct traffic to an Application Load Balancer (ALB) in another account. We already have a Transit Gateway (TGW) connecting the VPCs, so network-level access isn't an issue. My challenge is figuring out the implementation details. We can set up the ALB with host headers for multiple applications, using target groups populated with IPs from other accounts, but it looks like that would require a Lambda function to constantly update these IPs. Another option might be using an ALB connected to a VPC endpoint to bypass the TGW, and then have a Network Load Balancer (NLB) plus an ALB in the other account. I've also heard about using global accelerator IPs or routing through services like Traefik/CloudMap. I'm curious if there's a more standard architectural pattern that avoids major headaches down the line.

4 Answers

Answered By CloudWhisperer99 On

I went through a similar setup myself. The most stable solution is to have a public ALB channeling traffic to a private NLB, which then directs it to a private ALB. It’s quite resilient if you set it up right.

Answered By K8sHero42 On

If you're using Kubernetes, I’d recommend going with an ingress controller alongside a load balancer controller. It helps manage traffic more effectively and you won't face the same issues as sharing a load balancer between apps.

Answered By CDNMaster203 On

The best solution is often to incorporate a CDN like CloudFront or Fastly. It enhances performance, ensures reliability, and provides security for your applications. Plus, you save on egress costs, which makes it worthwhile in the long run.

Answered By LoadBalancerNinja21 On

Be careful with that approach! One small mistake can bring everything down. I definitely wouldn’t recommend going with a shared load balancer between different apps unless you want to deal with a lot of downtime.

Related Questions

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.