Application Load Balancer
Layer 7 HTTP/HTTPS load balancer.
Configuration
Section titled “Configuration”| Setting | Type | Required | Default |
|---|---|---|---|
| Load balancer name | Text | Yes | — |
| Scheme Options: Internet-facing, Internal | Choice | — | internet-facing |
| IP address type Options: IPv4, Dual-stack (IPv4 + IPv6), Dualstack without public IPv4 | Choice | — | ipv4 |
| Deletion protection | Toggle | — | false |
| Cross-zone load balancing | Toggle | — | true |
| Access logs S3 bucket | Text | — | — |
| Access logs S3 prefix | Text | — | — |
| Access logs enabled | Toggle | — | false |
| Subnet IDs | List | — | — |
| Security group IDs | List | — | — |
| Customer-owned IPv4 pool | Text | — | — |
| Idle timeout (s) | Number | — | 60 |
| HTTP/2 enabled | Toggle | — | true |
| WAF fail open | Toggle | — | false |
| Drop invalid headers | Toggle | — | false |
| Preserve host header | Toggle | — | false |
| X-Forwarded-For client port | Toggle | — | false |
| X-Forwarded-For mode Options: Append, Preserve, Remove | Choice | — | append |
| Desync mitigation Options: Defensive, Strictest, Monitor | Choice | — | defensive |
| Client keep-alive (s) | Number | — | 3600 |
| Tags | Key–value | — | — |
Connections
Section titled “Connections”| Socket | Direction | Accepts | Terraform arg |
|---|---|---|---|
| Client traffic | Input | any | — |
| Subnetsmulti | Input | aws.subnet | subnets |
| Security groupsmulti | Input | aws.security-group | security_groups |
| Targets | Output | aws.target-group, aws.ecs-service, aws.ec2, aws.asg, aws.lambda | — |