Create a Load Balancer with the Anypoint Platform CLI
You can create a dedicated load balancer (DLB) using the Anypoint Platform CLI.
Prerequisites
Before you create a load balancer:
-
Ensure that you are an administrator in the organization where you are creating the DLB.
-
Create an Anypoint Virtual Private Cloud (Anypoint VPC) instance in the organization where you want to create a DLB.
-
Create at least one certificate and private key for your certificate.
Create a Load Balancer Using the CLI
Use this command to create a DLB from the CLI:
cloudhub load-balancer create myVPC myLB_name certificateName privateKeylinenums
This command specifies the Anypoint VPC instance myVPC in which to create the DLB and the certificateName and privateKey that the DLB uses.
| You cannot change the name of a DLB after you create it. To change the name, delete and re-create it using the new name. |
The CloudHub DLB name cannot start with internal-.
Enable TLS 1.0 on a DLB Using the CLI
Although TLS 1.0 is not recommended due to security vulnerabilities, you can enable support if required for communication with legacy clients.
You can enable TLS 1.0 support only on the default SSL endpoint of the DLB. Enabling TLS 1.0 support applies to the entire DLB, not a single SSL endpoint.
For security reasons, do not leave TLS 1.0 enabled.
After you no longer need TLS 1.0, replace the default cipher suite, for example, with NewDefault.
|
To enable TLS 1.0 support on a DLB using the CLI:
-
Run the following command to re-create the SSL endpoint for the myLB_name load balancer and add TLS 1.0 support:
cloudhub load-balancer ssl-endpoint add --tlsv1 myLB_name certificateName privateKeylinenums -
Run the following command to set certificateName as the default SSL endpoint for the myLB_name load balancer:
cloudhub load-balancer ssl-endpoint set-default myLB_name certificateNamelinenums -
Using the API, change the default cipher suite to
OldDefault.