Skip to content

xdevelsistemas/traefik-aws-es-proxy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
entrypoint.sh
entrypoint.sh
 
 
traefik.toml
traefik.toml
 
 

Repository files navigation

Traefik proxy for AWS elasticsearch service

The problem

the major problem with elasticsearch service is the access for developers.

There are two elasticsearch vpc's configuration:

  • public domain

  • private domain inner vpc

The second option is better because this reduce atack surface in all your cloud resources.

Private vpc

Solution

We can increment a proxy with Application load balancer and authenticate the access with Cognito.

Solution

This image create conteiner with configured proxy between public access and private domain.

Compose example

version: "3"

services:
  app:
    image: xdevelsistemas/traefik-aws-es-proxy:stable
    environment:
      - EXTERNAL_DOMAIN=<YOUR-PUBLIC-DOMAIN>
      - VPC_DOMAIN=<YOUR-VPC-DOMAIN>
    restart: always
    ports:
      - "80:80"
      - "8080:8080"

You can monitor with "traefik monitor" in 8080's port

Tips

More about authenticate AWS Load Balancer:

https://medium.com/@sandrinodm/securing-your-applications-with-aws-alb-built-in-authentication-and-auth0-310ad84c8595

About

Traefik proxy for AWS elasticsearch service

Resources

Readme
Activity
Custom properties

Stars

4 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages