Ping a Specific Port

Question

jamix

Asked: 2015-05-15 07:15:30 +0800 CST2015-05-15 07:15:30 +0800 CST 2015-05-15 07:15:30 +0800 CST

With PROXY support enabled in ELB, are occasional non-PROXY connections to the EC2 instance still possible?

772

We have PROXY protocol support enabled on our ELB but we seem to be occasionally getting non-PROXY TCP connections to the EC2 instance behind the ELB. The instance's Security Group only allows incoming connections from the ELB.

Is it possible for ELB to initiate non-PROXY connections to the EC2 instance in certain circumstances when PROXY protocol support is enabled? When doing health checks, for example? This one really baffles us.

1 Answers

Voted

Castaglia · Answer 1 · 2016-01-31T18:53:32+08:00

Castaglia

2016-01-31T18:53:32+08:002016-01-31T18:53:32+08:00

From reading this post in the AWS forums, it looks like the answer to your question is "Yes, it is possible to get non-PROXY TCP connections, via health checks, to your backend instances."

If your ELB health checks are done via HTTP, then the PROXY protocol will not be used. Looks like there are many folks who would wish for consistent use of the PROXY protocol from ELBs, for HTTP as well as TCP health checks, but so far, no reports of AWS adding this.

0

With PROXY support enabled in ELB, are occasional non-PROXY connections to the EC2 instance still possible?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?