Mục Lục

Create a listener for your Network Load Balancer

A listener is a process that checks for connection requests. You define a listener
when you create your load balancer, and you can add listeners to your load balancer at
any time.

Prerequisites

You must specify a target group for the listener rule. For more
information, see Create a target group for your Network Load Balancer.
You must specify an SSL certificate for a TLS listener. The load balancer
uses the certificate to terminate the connection and decrypt requests from
clients before routing them to targets. For more information, see Server certificates.

Add a listener

You configure a listener with a protocol and a port for connections from clients
to the load balancer, and a target group for the default listener rule. For more
information, see Listener configuration.

To add a listener using the console

Open the Amazon EC2 console at
https://console.aws.amazon.com/ec2/.
In the navigation pane, choose Load Balancers.
Select the name of the load balancer to open its details page.
On the Listeners tab, choose Add listener.
For Protocol, choose TCP,
UDP, TCP_UDP, or
TLS. Keep the default port or type a different
port. For dualstack Network Load Balancers, only the TCP and TLS protocols are supported.
For Default action, choose an available target group.
[TLS listeners] For Security policy, we recommend
that you keep the default security policy.
[TLS listeners] For Default SSL certificate, do one
of the following:
- If you created or imported a certificate using AWS Certificate Manager, choose
  From ACM and choose the
  certificate.
- If you uploaded a certificate using IAM, choose From
  IAM and choose the certificate.
[TLS listeners] For ALPN policy, choose a policy to
enable ALPN or choose None to disable ALPN. For more
information, see ALPN policies.
Choose Add.
[TLS listeners] To add an optional certificate list for use with the SNI
protocol, see Add certificates to the certificate list.