Skip to main content
Warning This document has not been updated for a while now. It may be out of date.
Last updated: 9 Jun 2020

govuk-aws: 27. Move PublicAPI away from frontend-lb

Date: 2017-09-04




Traffic flows for frontend applications in the following way:

Frontend traffic flow

Most frontend applications can go straight from the cache instances to the application instances, bypassing frontend-lb. They do this by creating a DNS entry for each application service ELB, and setting the appropriate upstream DNS entry for the nginx configuration on the cache machines.

The exception to this rule is the "publicapi" application (reference).

This is a set of nginx configuration that sits on frontend-lb, and forwards specific paths to applications upstream.

Router on the cache instances forwards all traffic bound for /api to frontend-lb, and then publicapi handles the forwarding from there.

The configuration for the paths is relatively simple.


Move publicapi application to either the cache instances themselves, or replace the configuration with an Application Load Balancer.


The frontend-lb will be able to be removed from the stack.