By using AWS re:Post, you agree to the AWS re:Post Terms of Use

Lightsail instance firewall rule for WSS

0

I'm trying to set up a secure web socket connection to my lightsail instance, and I need help determining the correct firewall rule setting to use. As I have it now, my web client fails to connect.<br>

I have a web socket listener running on my server:<br> (Log Output)<br> Server started<br> Listening on: 0.0.0.0:2000<br> Server's ip: 127.0.1.1<br> Server's host: ...<br> Client connected<br>

My web page is trying to connect:<br> var socket=$.websocket('wss://[my_domain_name_here]:2000');<br>

And besides the regular SSH, HTTP, and HTTPS firewall rules for my lightsail wordpress instance, I have added:<br> **Application Protocol Port or range / Code Restricted to **<br> Custom TCP 2000 Any IPv4 address<br>

Is this the correct firewall setting for this connection setup? The web page request hangs (pending) and then fails about 30 seconds later.

1 Answer
0

Hello, the firewall rule is correct. I think the issue is that you are trying to establish a secure websocket connection (wss://). Using ws:// should work. If you want a secured connection, you can setup a load balancer with a certificate and put it in front of your instance. The load balancer can be configured to send the request to the required port on the instance.

https://www.reddit.com/r/aws/comments/p3pje9/using_aws_ec2_instance_as_a_websocket_server/

Creating Lightsail load balancer and attaching instance: https://lightsail.aws.amazon.com/ls/docs/en_us/articles/create-lightsail-load-balancer-and-attach-lightsail-instances.
Attaching SSL/TLS certificate to load balancer: https://lightsail.aws.amazon.com/ls/docs/en_us/articles/create-tls-ssl-certificate-and-attach-to-lightsail-load-balancer-https.

AWS
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions