Adding and Managing Listeners

This guide explains how to add listeners to load balancers, view the listener list, modify information, set rules and conditions, and manage listeners.

Add Listener

Add HTTP Listener

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer where you want to add an HTTP listener from the Load Balancer list.
In the detail screen, click the Listener tab and then click the [Add Listener] button.
In the Add Listener pop-up window, select the HTTP protocol and modify the port if necessary.
Select the Default Forwarding Target and click the [Add] button.

Add HTTPS Listener

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer where you want to add an HTTPS listener from the Load Balancer list.
In the detail screen, click the Listener tab and then click the [Add Listener] button.
In the Add Listener pop-up window, select the HTTPS protocol and modify the port if necessary.
Select the Default Forwarding Target and Minimum TLS Version.
Choose the Default SSL Certificate. If a certificate is already registered, select it. If not, click the dropdown button and then click the [Add New Certificate] button to go to Certificate Manager and register a new certificate.

Supported Cipher Suites by Minimum TLS Version

Minimum TLS Version	TLSv1.0	TLSv1.1	TLSv1.2
TLS Protocol
TLSv1.0	v
TLSv1.1	v	v
TLSv1.2	v	v	v
Cipher Suite
ECDHE-RSA-AES128-GCM-SHA256			v
ECDHE_RSA_AES128_CBC_SHA	v	v	v
ECDHE-RSA-AES128-SHA256			v
ECDHE-RSA-AES256-GCM-SHA384			v
ECDHE_RSA_AES256_CBC_SHA	v	v	v
ECDHE-RSA-AES256-SHA384			v
AES128-GCM-SHA256			v
AES128-SHA	v	v	v
AES128-SHA256			v
AES256-GCM-SHA384			v
AES256-SHA	v	v	v
AES256-SHA256			v
CAMELLIA128-SHA	v	v	v
CAMELLIA256-SHA	v	v	v
DHE-RSA-AES128-GCM-SHA256			v
DHE-RSA-AES128-SHA	v	v	v
DHE-RSA-AES128-SHA256			v
DHE-RSA-AES256-GCM-SHA384			v
DHE-RSA-AES256-SHA	v	v	v
DHE-RSA-AES256-SHA256			v
DHE-RSA-CAMELLIA128-SHA	v	v	v
DHE-RSA-CAMELLIA256-SHA	v	v	v
ECDHE_ECDSA_AES128_SHA	v	v	v

info

Once the listener is added, you can connect a target group via Listener Settings. If the default forwarding target is set to "None," errors will occur when accessing the service externally. Please connect a target group for smooth service operation.

View Listener

In the load balancer detail screen, you can modify or delete existing listeners or add new listeners.

View Listener List

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer whose listener list you want to view from the Load Balancer list.

In the detail screen, click the Listener tab to view the list of listeners connected to the load balancer.

Item	Description
Protocol:Port	Listener's protocol and port
ID	The ID assigned at creation
Provisioning Status	Information on whether the listener was successfully created or is being modified or deleted
Operational Status	Information on whether the listener is in a usable state
Minimum TLS Version	Security policy used for HTTPS communication between the client and the load balancer
Default SSL Certificate	Certificate used for HTTPS communication between the client and the load balancer
Default Action	The default action for handling incoming traffic to the listener. It is fixed to Forward. - If a target group is connected, the target group name is shown
Rules	Number of rules added. One rule is applied by default
[More options] Icon	Provides options for listener settings and deletion

View Listener Details

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer whose listener details you want to view.

In the load balancer detail screen, click the Listener tab and then select the listener whose details you want to view.

Listener Details

Category	Item	Description
Rules	Rule Order	The order in which the rule is applied (lower numbers are applied first)
	Condition	When a rule has multiple conditions, it operates with AND for conditions within the rule and OR for conditions between rules. The rule applies when the final condition is TRUE.
	Action	The action that occurs when the rule is applied
	Edit Icon	Click to open the rule edit pop-up window
	Delete Icon	Click to open the rule delete pop-up window
Attributes	HTTP/2	Fixed to HTTP/2 not used
	Idle Timeout	Idle timeout setting
	X-Forwarded-For Header Handling	Options for handling X-Forwarded-For header: Attach, Preserve, Delete
	X-Forwarded-Port Forwarding	Whether to forward the X-Forwarded-Port header
	X-Forwarded-Proto Forwarding	Whether to forward the X-Forwarded-Proto header
	Maximum Connection Setting	Displays the maximum value when enabled
Certificate Information	Default	Whether it is the default certificate
	Certificate ID	The ID assigned to the certificate upon registration
	Domain	The domain of the certificate
	Registration Date	The date the certificate was registered
	Expiration Date	The expiration date of the certificate
	Disconnect Icon	Click to open the disconnect pop-up window

Manage Listener

Change Target Group

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer that contains the listener you want to modify from the Load Balancer list.
Click the Listener tab and then click the [More options] icon for the listener you want to modify.
In the [More options] menu, select Listener Settings.
In the Listener Settings pop-up window, select the target group you want to change and click [Save].

Set Minimum TLS Version

If the listener protocol is set to HTTPS, you can set the minimum TLS version.

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer that contains the listener you want to modify from the Load Balancer list.
In the detail screen, click the Listener tab and then click the [More options] icon for the listener you want to modify.
In the [More options] menu, select Listener Settings.
In the Minimum TLS Version section, select the version from the list and click [Save].

Change Default Certificate from All Certificates

If the listener protocol is HTTPS, you must connect a default certificate. You can change the default certificate to another one among the connected certificates.

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer that contains the listener whose certificate you want to change.
In the detail screen, click the Listener tab and then click the [More options] icon for the listener you want to modify.
In the [More options] menu, select Listener Settings.
In the Listener Settings modal, choose the certificate from the Default SSL Certificate list and click [Confirm].

caution

If there are no connected certificates or all certificates have been deleted, you cannot change the default certificate. Please add a certificate in Certificate Manager and retry.

Add Additional Certificates

If the listener protocol is HTTPS, you can add up to 5 additional certificates excluding the default certificate.

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer that contains the listener you want to modify from the Load Balancer list.
In the detail screen, click the Listener tab and then click the listener to which you want to add certificates.

In the listener detail screen, click the [Add Certificate] button.

Item	Description
Select Existing Certificate	Click the dropdown button and select an existing certificate
New Certificate	1. Click the dropdown button and then click [Add New Certificate]. 2. In the certificate registration pop-up, enter the necessary information and click [Add]. 3. From the SSL certificate list, select the newly added certificate.

Add Certificate to Listener

Add New Certificate

In the Add Certificate pop-up window, select the SSL certificate to connect.
Click the [Connect] button.

Disconnect Certificate

If the listener protocol is HTTPS, you can disconnect all certificates except the default certificate.

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer that contains the listener you want to modify from the Load Balancer list.
In the detail screen, click the Listener tab and then click the expand button on the left of the displayed listener.
If two or more certificates are connected under the [SSL Certificate] section, a [Disconnect] button will appear at the top right. You can disconnect certificates other than the default certificate.
Check all the certificates you want to disconnect (excluding the default certificate) and click the [Disconnect] button.
In the Disconnect Certificate modal, click [Disconnect].

caution

If any disconnected certificates are in a deleted state, please check all those certificates (except the default one) and try disconnecting them at once.

Set or Remove Maximum Connection Limit

If the listener protocol is HTTP or HTTPS, you can set or remove the maximum connection limit.

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer that contains the listener you want to modify from the Load Balancer list.
In the detail screen, click the Listener tab and then click the listener to which you want to apply the maximum connection limit.
In the listener detail screen, click the [Set Maximum Connections] button at the top of the properties section.
In the Maximum Connections pop-up window, make changes.
- To set a limit: Enable the maximum connection option and enter the maximum allowed value (1-2,147,483,647).
- To remove the limit: Disable the maximum connection option.
Set Maximum Connections for Listener
Click [Apply].

Set Idle Timeout

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer that contains the listener you want to modify from the Load Balancer list.
In the detail screen, click the Listener tab and then click the listener to modify the idle timeout.
In the listener detail screen, click the [Set Properties] button at the top of the properties section.
In the Listener Property Settings pop-up, modify the idle timeout.
- Idle Timeout: Enter a value between 1 and 4000 (default: 50 seconds).
Click the [Save] button.

Set Packet (X-Forwarded-For Header)

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer that contains the listener you want to modify from the Load Balancer list.
In the detail screen, click the Listener tab and then click the listener to modify the packet settings.
In the listener detail screen, click the [Set Properties] button at the top of the properties section.
In the Listener Property Settings pop-up, modify the packet settings.
- X-Forwarded-For Header Processing
  Attach: Choose Attach to forward the client IP addresses stored in the X-Forwarded-For header.
  Preserve: Choose Preserve to leave the X-Forwarded-For header unchanged when forwarded.
  Delete: Choose Delete to remove the X-Forwarded-For header before forwarding.
- X-Forwarded-Port Forwarding
  Turn on if you want to forward the port in the header.
  Turn off if you don't want to forward the port.
- X-Forwarded-Proto Forwarding
  Turn on to forward the protocol in the header.
  Turn off to not forward the protocol.
Set Listener Properties
Click the [Save] button.

Delete Listener

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer that contains the listener you want to delete from the Load Balancer list.
In the detail screen, click the Listener tab.
Click the [More options] icon for the listener you want to delete.
In the [More options] menu, select Delete Listener.
In the Delete Listener pop-up window, enter the confirmation text and click the [Delete] button.

Add ALB Rules

ALB rules are only used in ALB listeners (HTTP, HTTPS) and define how the Application Load Balancer routes traffic to multiple targets within a target group.
One rule is automatically created when a listener is created, and this rule is applied last.

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer for which you want to add ALB rules.
In the detail screen, click the Listener tab.
Select the listener to which you want to add rules, then click the [Add Rule] button.

In the Add Rule pop-up window, set the order, conditions, and actions of the rule.

Add Listener Rule

Condition Types

Type	Comparison Mode	Key Condition	Value Condition
Host-Header	Match or Not Match	No input required	Must input - Maximum 63 characters excluding domain after dot - Supports uppercase/lowercase letters, numbers, and some special characters (`-`, `.`)
Path	Contains, Does not contain, Matches, Does not match, Starts with, Does not start with, Ends with, Does not end with	No input required	Must input - 1-255 characters - Supports uppercase/lowercase letters, numbers, and some special characters (`-`, `_`, `.`, `/`)
HTTP-Header	Contains, Does not contain, Matches, Does not match, Starts with, Does not start with, Ends with, Does not end with	Must input - 1-255 characters - Supports uppercase/lowercase letters, numbers, and some special characters (`-`, `_`)	Must input - 1-255 characters - Supports uppercase/lowercase letters, numbers, and some special characters (`(`, `)`, `-`, `=`, `*`, `.`, `?`, `;`, `+`, `:`, `&`, `_`)
File Type	Match or Not Match	No input required	Must input - 1-255 characters - Supports uppercase/lowercase letters, numbers, and special characters (`!`, `@`, `#`, `$`, `%`, `^`, `&`, `{`, `}`, `_`, `+`, `-`, `=`, `,`, `.`, `~`, `'`)
Cookie	Contains, Does not contain, Matches, Does not match, Starts with, Does not start with, Ends with, Does not end with	Must input - 1-32 characters - Supports uppercase/lowercase letters, numbers, and some special characters (`-`, `_`)	Must input - 1-255 characters - Supports uppercase/lowercase letters, numbers, and some special characters (`-`, `/`, `+`, `=`, `_`, `.`, `\`)

Rule Actions

Action Type	Settings
Forward	Target Group Settings - `HTTP`: `HTTP`, `PROXY` - `HTTPS`: `HTTP`
Redirect to URL	Protocol Settings - `HTTP`: `HTTP`, `HTTPS` - `HTTPS`: `HTTPS` URL: Max 247 characters Response Code - `301`: Moved Permanently - `302`: Found (Default) - `303`: See Other - `307`: Temporary Redirect
Redirect Prefix	Protocol Settings - `HTTP`: `HTTP`, `PROXY` - `HTTPS`: `HTTPS` URL: Max 247 characters Response Code - `301`: Moved Permanently - `302`: Found (Default) - `303`: See Other - `307`: Temporary Redirect

In Condition Settings, set the condition type, key, value, and comparison method. If necessary, click the [Add Condition] button to add more conditions, or click the delete icon next to a condition to remove it.
In Action Settings, choose the action type and enter the corresponding settings, then click [Add].

Manage ALB Rules

View Rules

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer whose ALB listener rules you want to manage from the Load Balancer list.
In the detail screen, click the Listener tab.

Click the listener whose rules you want to view.

Item	Description
Rule Order	The order in which the rules are applied; the lower the number, the earlier the rule is applied.
Condition	If a rule has multiple conditions, it works with AND within a rule and OR between rules. The rule applies when the final condition is evaluated as `TRUE`.
Action	The action that occurs when the rule is applied.

Set Rule Order

You can change the order of rules, except for the last automatically created rule.

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer whose ALB listener rules you want to manage from the Load Balancer list.
In the detail screen, click the Listener tab.
Select the listener whose rule order you want to change.
In the listener detail screen, click the [Set Rule Order] button.
In the Set Rule Order pop-up window, change the order and click [Save].

Modify Rule

You can modify rules, except for the last automatically created rule.

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer whose ALB listener rules you want to manage from the Load Balancer list.
In the detail screen, click the Listener tab.
Select the listener whose rule you want to modify.
In the listener detail screen, click the [Edit] icon for the rule you want to modify.
In the Modify Rule pop-up window, modify the information and click [Confirm].

Delete Rule

Go to the KakaoCloud Console > Beyond Networking Service > Load Balancing > Load Balancers menu.
Select the load balancer whose ALB listener rules you want to manage from the Load Balancer list.
In the detail screen, click the Listener tab.
Select the listener whose rule you want to delete.
In the listener detail screen, click the [Delete] icon for the rule you want to delete.
In the Delete Rule pop-up window, click [Delete].

Add Listener​

Add HTTP Listener​

Add HTTPS Listener​

Supported Cipher Suites by Minimum TLS Version​

View Listener​

View Listener List​

View Listener Details​

Manage Listener​

Change Target Group​

Set Minimum TLS Version​

Change Default Certificate from All Certificates​

Add Additional Certificates​

Disconnect Certificate​

Set or Remove Maximum Connection Limit​

Set Idle Timeout​

Set Packet (X-Forwarded-For Header)​

Delete Listener​

Add ALB Rules​

Condition Types​

Rule Actions​

Manage ALB Rules​

View Rules​

Set Rule Order​

Modify Rule​

Delete Rule​