Question: I have 2 listeners : HTTP and HTTPS, both pointing at a single target group on the port 80 I probably should add a second target group with port 443 ?

Asked By
hello017
Asked At
2018-04-18 14:23:08

Found 15 possible answers.

User Answered At Possible Answer
nocode 2018-04-18 14:25:09 no, that should be fine. what error are you getting when you try to hit your https domain? all of my HTTPS listeners map to a TG using port 80
hello017 2018-04-18 14:26:21 Err_connection_refused
nocode 2018-04-18 14:31:10 is port 443 open on the security group of the lb :grimacing:
hello017 2018-04-18 14:36:02 Hmm I tried editing it but somehow the inbound rules won't save Port 443 is open to a custom TCP rule, but not https
grahamhar 2018-04-18 14:42:10 have you got the listener type set toTCP 443 or is it set to HTTPS 443?
hello017 2018-04-18 14:42:45 https 443
grahamhar 2018-04-18 14:43:09 and the cert is defined in the listener too?
hello017 2018-04-18 14:44:45 yes
nocode 2018-04-18 14:45:01 @hello017 the custom TCP or HTTPS are the same for the security group that is
hello017 2018-04-18 14:46:27 Right, thanks for the info! I guess this shouldn't be the problem then Could this be the issue? I also have a security policy for the HTTPS listener
nocode 2018-04-18 14:52:47 a custom one?
hello017 2018-04-18 14:53:02 No, one picked from the list
nocode 2018-04-18 14:53:03 can you telnet to your LB on port 443? that shouldn't be an issue then
grahamhar 2018-04-18 14:54:27 is the SG limited to an IP or is it open to the world?
hello017 2018-04-18 14:59:34 I get a connection refused when I telnet my instance ip on 443 @grahamhar the SG is fully opened

Related Questions