Elastic Load Balancing
Network Load Balancers

Create a Listener for Your Network Load Balancer

A listener is a process that checks for connection requests. You define a listener when you create your load balancer, and you can add listeners to your load balancer at any time.


  • You must specify a target group for the listener rule. For more information, see Create a Target Group for Your Network Load Balancer.

  • You must specify an SSL certificate for a TLS listener. The load balancer uses the certificate to terminate the connection and decrypt requests from clients before routing them to targets. For more information, see Server Certificates.

Add a Listener

You configure a listener with a protocol and a port for connections from clients to the load balancer, and a target group for the default listener rule. For more information, see Listener Configuration.

To add a listener using the console

  1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

  2. In the navigation pane, under LOAD BALANCING, choose Load Balancers.

  3. Select the load balancer and choose Listeners.

  4. Choose Add listener.

  5. For Protocol : port, choose TCP or TLS. Keep the default port or type a different port.

  6. For Default actions, choose Add action, Forward to and then choose an available target group.

  7. [TLS listeners] For Security policy, we recommend that you keep the default security policy.

  8. [TLS listeners] For Default SSL certificate, do one of the following:

    • If you created or imported a certificate using AWS Certificate Manager, choose From ACM and choose the certificate.

    • If you uploaded a certificate using IAM, choose From IAM and choose the certificate.

  9. Choose Save.

To add a listener using the AWS CLI

Use the create-listener command to create the listener.