Create a listener for your Network Load Balancer
A listener is a process that checks for connection requests. You define a listener when you create your load balancer, and you can add listeners to your load balancer at any time.
Prerequisites
-
You must specify a target group for the listener rule. For more information, see Create a target group for your Network Load Balancer.
-
You must specify an SSL certificate for a TLS listener. The load balancer uses the certificate to terminate the connection and decrypt requests from clients before routing them to targets. For more information, see Server certificates.
Add a listener
You configure a listener with a protocol and a port for connections from clients to the load balancer, and a target group for the default listener rule. For more information, see Listener configuration.
To add a listener using the console
Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/
. -
In the navigation pane, choose Load Balancers.
-
Select the name of the load balancer to open its details page.
-
On the Listeners tab, choose Add listener.
-
For Protocol, choose TCP, UDP, TCP_UDP, or TLS. Keep the default port or type a different port. For dualstack Network Load Balancers, only the TCP and TLS protocols are supported.
-
For Default action, choose an available target group.
-
[TLS listeners] For Security policy, we recommend that you keep the default security policy.
-
[TLS listeners] For Default SSL certificate, do one of the following:
-
If you created or imported a certificate using AWS Certificate Manager, choose From ACM and choose the certificate.
-
If you uploaded a certificate using IAM, choose From IAM and choose the certificate.
-
-
[TLS listeners] For ALPN policy, choose a policy to enable ALPN or choose None to disable ALPN. For more information, see ALPN policies.
-
Choose Add.
-
[TLS listeners] To add an optional certificate list for use with the SNI protocol, see Add certificates to the certificate list.
To add a listener using the AWS CLI
Use the create-listener command to create the listener.