我正在尝试在 Elastic Beanstalk 上运行一个简单的 WebSocket 回声应用程序。但是,如果我运行它,从 Tomcat 到 Socket Upgrade 就会出现 400 错误,但是只有在端口 80 上才会发生这种情况,如果我通过负载均衡器传递端口 8080,我可以访问 WebSocket 而无需在套接字升级时出现 400 错误(在端口 8080 上)。端口 8080 和端口 80 都在 TCP 上,而不是 HTTP。
我的问题是,谁在进行从 80 到 8080 的转换,因为负载均衡器上的默认配置只传输从 80 到 80 的流量。转换必须在 EC2 实例上。IPTables?在这个转换中出了问题。
从亚马逊那里获取一些关于这个流量如何路由的信息将是很好的。
Resources:
AWSEBSecurityGroup:
Type: "AWS::EC2::SecurityGroup"
Properties:
GroupDescription: "Security group to allow HTTP, SSH and 8080 for all"
SecurityGroupIngress:
- {CidrIp: "0.0.0.0/0", IpProtocol: "tcp", FromPort: "80", ToPort: "80"}
- {CidrIp: "0.0.0.0/0", IpProtocol: "tcp", FromPort: "8080", ToPort: "8080"}
- {CidrIp: "0.0.0.0/0", IpProtocol: "tcp", FromPort: "22", ToPort: "22"}
AWSEBLoadBalancer:
Type: "AWS::ElasticLoadBalancing::LoadBalancer"
Properties:
Listeners:
- {LoadBalancerPort: 443, InstanceProtocol: "TCP", InstancePort: 8080, Protocol: "SSL", SSLCertificateId: "arn:aws:iam::9999999999999:server-certificate/sslcert"}
- {LoadBalancerPort: 80, InstanceProtocol: "TCP", InstancePort: 8080, Protocol: "TCP"}
AppCookieStickinessPolicy:
- {PolicyName: "lb-session", CookieName: "lb-session"}
HealthCheck:
HealthyThreshold: "3"
Interval: "30"
Target: "HTTP:8080/ping.html"
Timeout: "5"
UnhealthyThreshold: "5"
对于没有SSL的设置,请删除此内容:
- {LoadBalancerPort: 443, InstanceProtocol: "TCP", InstancePort: 8080, Protocol: "SSL", SSLCertificateId: "arn:aws:iam::9999999999999:server-certificate/sslcert"}