- 최신
- 최다 투표
- 가장 많은 댓글
Eventually I just tried it. It does work.
You can set up TLS termination in Nginx offloaded to CloudHSM and proxy non-HTTPS TLS connections through Nginx (stream block with server containing proxy-pass directive) to TCP on the back-end side.
This is not surprising since the OpenSSL Engine functionality is used for the offload, and OpenSSL doesn't know if it's HTTPS or not.
Hello,
From the correspondence I understand that you would like to know if TLS offloading that is documented for HTTPS would work for non HTTPS TLS connections.
In regards to TLS offloading we have examples of this for HTTPs using a third party product such as nginx, apache or openssl which are not AWS products. These examples would work specifically for HTTPS connections. Ultimately TLS offloading with an non HTTPs connection would be possible if there were an integration with a third party product or a custom solution as this is not a built in feature with CloudHSM. Currently AWS does not have an example for use with an SSL connection not using HTTPs at this time.
관련 콘텐츠
AWS 공식업데이트됨 3년 전- AWS 공식업데이트됨 3년 전
- AWS 공식업데이트됨 3년 전
- AWS 공식업데이트됨 6달 전
