I'm working on setting up a Network Load Balancer (NLB) for TLS passthrough to my Traefik container in an ECS cluster. My goal is to have Traefik serve my own SSL certificate, but I'm unsure how to import it properly. I've attempted using Secrets Manager, but I'm having trouble figuring out how to implement that solution. Are there alternative methods I can try?
3 Answers
What specifically did you find challenging about retrieving the certificate keys from Secrets Manager? It's generally similar to pulling any other secret. You might also want to consider pulling your certificates from S3, SSM, or even ACM, which now allows for private key export.
Have you considered using AWS Certificate Manager (ACM)? It's tailored for situations like this. Just wondering, is there a specific reason you want to go with TLS passthrough on the NLB? Terminating it at the load balancer could simplify things quite a bit.
Hey there! I'm curious about what issues you faced while trying to implement Secrets Manager. Normally, you should be able to inject the secrets to ECS and write them to files during the container's startup 😀
Related Questions
How To Get Your Domain Unblocked From Facebook
How To Find A String In a Directory of Files Using Linux