aslamnotes

cloudfront to s3

1 min read

  • AWS’s CDN service
  • Cached at edge for perfomance
  • UX
  • 216 edge locations

Origins

  • s3 bucket
    • For distributing the files across the edges
    • For uploading via cloudfront to s3
    • Secured using OAC Origin Access Control
    • !Important cloudfront uses HTTP to connect with S3, you can optionally mandate public access to cloudfront via HTTPs
  • VPC origin
    • Application hosted in a private subnet?
    • ALB, NLB, EC2 instances
  • Custom Origin (HTTP)
    • s3 website
    • any public http, in or out of aws

The Origin access control police gets automatically genereated when we use the recommended option

Graph View