This topic describes how to add a Quick UDP Internet Connections (QUIC) listener to an Application Load Balancer (ALB) instance to encrypt data transmission. You can add a QUIC listener to forward QUIC requests.
- An ALB instance is created. For more information, see Create an ALB instance.
- At least one SSL server certificate is deployed on the ALB instance.
- A group of backend servers is specified in the default forwarding rule of the listener to receive requests. For more information, see Manage server groups.
Step 1: Configure a listener
To configure a QUIC listener, perform the following operations:
- Log on to the ALB console.
- Use one of the following methods to open the listener configuration wizard:
- On the Instances page, find the ALB instance that you want to manage and click Create Listener in the Actions column.
- On the Instances page, click the ID of the ALB instance that you want to manage. On the Listener tab, click Create Listener.
- On the Configure Listener wizard page, set the following parameters and click Next.
Parameter Description Listener Protocol Select a listening protocol.
In this example, QUIC is selected.
Listener Port Specify a port on which the ALB instance listens. The ALB instance uses the port to receive requests and forward the requests to backend servers.
Valid values: 1 to 65535.Note The ports on which an ALB instance listens must be unique.
Listener Name Enter a name for the listener. The name must be 2 to 256 characters in length, and can contain strings that match the regular expression. Advanced Settings You can click Modify to configure the advanced settings. Idle Connection Timeout Period Specify a timeout period for idle connections. Unit: seconds. Valid values: 1 to 60.
If no request is received within the specified timeout period, ALB closes the connection. When another request is received, ALB establishes a new connection.
Connection Request Timeout Period Specify a request timeout period. Unit: seconds. Valid values: 1 to 180.
If no response is received from the backend server within the request timeout period, ALB returns an HTTP 504 error code to the client.
Compression If you enable compression, files of specific types are compressed. If you disable compression, no file is compressed.
All file types support Brotli compression. File types that support Gzip compression:
Add HTTP Header Fields Supported headers:
SLB-ID: retrieves the ID of the ALB instance.
X-Forwarded-Proto: retrieves the listening protocol.
X-Forwarded-Port: retrieves the listening port.
Step 2: Configure an SSL certificate
Configure an SSL certificate to ensure that data transmission is encrypted and the identities of users are verified by a trusted authority. For more information, see SSL Certificates.
On the Configure SSL Certificate wizard page, select a server certificate or click Buy Certificate in the Server Certificate drop-down list to purchase a new certificate. Then, click Next.
Step 3: Select a server group
On the Select Server Group wizard page, specify Server Type and select a server group based on the specified Server Type, confirm the backend servers, and then click Next.
Step 4: Confirm the configurations
On the Confirm wizard page, confirm the configurations and click Submit.