Proxy Question

Imported Google Group message. Original thread at: https://groups.google.com/forum/#!topic/tyk-community-support/Vp-a1stSXl4 Import Date: 2016-01-19 21:31:41 +0000.
Sender:Kent Babin.
Date:Monday, 23 November 2015 09:22:43 UTC.

Hi Martin,

Hope all is well.

We’re very close to launching tyk in a production environment. However, one issue has come up:

When a request is made to Tyk, who actually makes the request to the API? Is it Tyk or the client?

The reason I ask is because I ran a test in AWS where my Tyk and API servers are. I opened access on port 80/443 to the Tyk server and closed access to the API server for everyone but the Tyk server security group.

After I did this, the API server could not be accessed when requests were made to Tyk.

Is this the expected behavior? I don’t really want to expose my API server if I can avoid it.

Thanks!

Kent

Imported Google Group message.
Sender:Martin Buhr.
Date:Monday, 23 November 2015 09:49:27 UTC.

Hi Kent,

That shouldn’t happen - Tyk makes the requests on the clients behalf (it copied the request object, makes the request and copies the response back).

Can you “see” the API server from Tyk as in - curl port 80 of the API instance from the Tyk instance?

Cheers,
Martin


From: Kent Babin [email protected]
Sent: Monday, November 23, 2015 09:22
Subject: Proxy Question
To: Tyk Community Support [email protected]

  • show quoted text -


You received this message because you are subscribed to the Google Groups “Tyk Community Support” group.
To unsubscribe from this group and stop receiving emails from it, send an email to [email protected].
To view this discussion on the web, visit https://groups.google.com/d/msgid/tyk-community-support/3b14939a-00ed-4d78-adbc-0446825d9631%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Imported Google Group message.
Sender:Kent Babin.
Date:Monday, 23 November 2015 10:33:33 UTC.

Thanks for the quick reply.

I think the problem is with the IP I am using to access the API from the Tyk server. AWS doesn’t resolve the public IP to the private IP, so the API server thinks the request is coming from the public web, not the Tyk server.

I’ll test this theory and then post the answer.

Sorry to bother you!

  • show quoted text -

  • show quoted text -