How to Create a Private ALB with Custom Domain and HTTPS (Self-Signed Certificate)

Leave a Comment / By /

Back to: AWS-Basics-Advanced

0

In this tutorial, we will build a Private Application Load Balancer (ALB) with:

  • ✅ Custom domain: shanvipanda.com

  • ✅ HTTPS enabled

  • ✅ Self-signed certificate

  • ✅ Private DNS using Route53

  • ✅ Secure internal access

This is a very important real-world DevOps concept for internal applications inside VPC.

In this tutorial, we will build a Private Application Load Balancer (ALB) with:

  • ✅ Custom domain: shanvipanda.com

  • ✅ HTTPS enabled

  • ✅ Self-signed certificate

  • ✅ Private DNS using Route53

  • ✅ Secure internal access

This is a very important real-world DevOps concept for internal applications inside VPC.

Architecture Diagram

Flow:

Private Hosted Zone (Route53)

shanvipanda.com

Private ALB (HTTPS 443)

Target Group

EC2 / Application

⚠️ Since ALB is private, traffic works only inside VPC.

Step 1: Generate Self-Signed Certificate

We use OpenSSL to generate certificate locally.

openssl req -x509 -newkey rsa:2048 \
-keyout shanvi.key \
-out shanvi.crt \
-days 365 \
-nodes \
-subj ‘//CN=shanvipanda.com’

openssl req -x509 -newkey rsa:2048 \
-keyout shanvi1.key \
-out shanvi1.crt \
-days 365 \
-nodes \
-subj ‘//CN=shanvipanda.net’

openssl x509 -in shanvi.crt -text -noout

Leave a Reply

Your email address will not be published. Required fields are marked *

Scroll to Top