Posted On: Apr 26, 2022

Amazon Lightsail has added two new security features for the Lightsail load balancer: the ability to automatically redirect HTTP requests to HTTPS and the ability to configure the security policy used for TLS termination of the HTTPS requests. With these features, you can easily make your websites more secure, meet compliance goals, achieve better search ranking and high SSL/TLS scores just by configuring a Lightsail load balancer with the Lightsail instances hosting your websites.

With just a click, the automatic redirect feature forces all load balancer HTTP traffic on port 80 to HTTPS on port 443. This ensures all requests to your load balancer are served securely over HTTPS. Further, with this update you now have the flexibility to pick from predefined security policies for your TLS listener, including a TLS 1.2 only policy (security policy defines a combination of protocols and ciphers used for TLS termination). Both of these features can be configured on existing and new Lightsail load balancers, either via the Lightsail console, AWS CLI, and AWS SDKs. There is no additional cost for using these features with your load balancers.  

Lightsail load balancers are available in all AWS Regions where Lightsail is available. For more information about HTTP to HTTPS redirects, see Configuring HTTP to HTTPS redirection on your Amazon Lightsail load balancers. For more information about TLS security policies, see Configuring TLS security policies on your Amazon Lightsail load balancers.