Let's quickly go through some more important concepts related to application load balancers:
- Application load balancers only support HTTP or HTTPS protocols. For other protocols, such as TCP, we need to use a network load balancer or classic load balancer.
- Application load balancers only support TLS/SSL termination at the ELB level.
- We can enable sticky sessions for application load balancers at the target group level. We cannot, however, enable sticky sessions at individual EC2 instances with application load balancers.
- We can do path-based routing with application load balancers if path patterns are enabled.
- We set the Security policy for SSL/TLS negotiation to ELBSecurityPolicy-2016-08, which is the default. The following are the current list of policies that are available: ELBSecurityPolicy-2016-08, ELBSecurityPolicy-TLS-1-2-2017-01, ELBSecurityPolicy-TLS-1-1-2017-01, ELBSecurityPolicy-TLS-1-2-Ext-2018-06, ELBSecurityPolicy-FS-2018-06, ELBSecurityPolicy-2015-05, ELBSecurityPolicy-TLS-1-0-2015-04, ELBSecurityPolicy-FS-1-2-Res-2019-08, ELBSecurityPolicy-FS-1-1-2019-08, and ELBSecurityPolicy-FS-1-2-2019-08.