How is TLS termination implemented in AWS NLB?

Question

As AWS NLB supports TLS termination, NLB being Layer 4 Load Balancer I would like it to work in a passthrough mode by directing the incoming packets to one of the backends without much of state maintenance.

Can anyone provide me any details that are available on how AWS implements the TLS termination in NLB?

Answer 1

I have an example that will explain how to terminate a TCP session in HAProxy and pass the unencrypted traffic to a backend.

In simple terms, you will need to use "SSL" in the frontend bind section and both frontend and backend configurations require to use of "TCP" mode. 

Here providing an example of terminating on port 443 and forwarding to port 4567.

frontend tcp-proxy

  bind :443 ssl crt combined-cert-key.pem

  mode tcp

  default_backend bk_default

backend bk_default

  mode tcp

  server server1 1.2.3.4:4567

Do you want to learn more about AWS? Checkout AWS developer associate certification by Intellipaat!