'Can I allow inbound traffic from internet to a private api gateway in a private aws vpc?

In aws, I have a private api gateway in my vpc. I want to allow one specific public ip to be allowed to send request to this private api while blocking all other public IP.

How do I achieve this? If I allow the security group and nacl for this one ip, could that ip able to invoke the api? Or would creating a proxy for the IP/ domain work?

aws-api-gatewayprivatevpc


Solution 1:[1]

Private API means not accessible from internet. So you can't enable any pubic IP to access it.

You have to develop some proxy for that. Probably the easiest would be a lambda function. So instead of directly calling the API, you use call lambda function which in turns calls the private api.

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source
Solution 1 Marcin

Related Questions

Terraform update Route53 DOMAIN NameServers

Terraform update Route53 DOMAIN NameServers

Terraform update Route53 DOMAIN NameServers

Amazon AWS S3 to Force Download Mp3 File instead of Stream It

How to enable terraform module only with a specific workspace

AWS RDS Postgres: WAL_LEVEL not set to 'logical' after changing rds.logical_replication = 1

Use terraform to set up a lambda function triggered by a scheduled event source

Use terraform to set up a lambda function triggered by a scheduled event source

Self stopping EC2 once task complete?

AWS - SWF - Asynchronous method

Why my cloudformation template is over 1 MB?

AWS elastic beanstalk - WARN install EACCES: permission denied, access '/tmp/.npm'

Aws step functions - Resume from failed step function activity instead of starting a new execution

Redirect Elastic Beanstalk URL to domain name

node-lambda - TypeError: handler is not a function