Application Load Balancer (ALB) provides basic, standard, and Web Application Firewall (WAF)-enabled instances. This topic describes the features supported by different editions.
The following table describes the features supported by different ALB editions.
The performance metrics of an ALB instance vary only based on the IP mode of the ALB instance, and are not affected by the edition of the ALB instance. For more information about the performance metrics of ALB instances, see Performance metrics.
Feature | Basic | Standard | WAF-enabled |
Listener protocol | |||
QUIC | Supported | Supported | Supported |
HTTP/2 | Supported | Supported | Supported |
WebSocket | Supported | Supported | Supported |
Forwarding rule | |||
Distributing network traffic based on domain names or URLs | Supported | Supported | Supported |
Distributing network traffic based on HTTP headers | Supported | Supported | Supported |
Distributing network traffic based on query strings | Not supported | Supported | Supported |
Distributing network traffic based on cookies | Not supported | Supported | Supported |
Distributing network traffic based on HTTP request methods | Not supported | Supported | Supported |
Distributing network traffic based on source IP addresses | Not supported | Supported | Supported |
Distributing network traffic based on response status codes | Not supported | Supported | Supported |
Distributing network traffic based on response headers | Not supported | Supported | Supported |
Redirects | Supported | Supported | Supported |
Rewriting requests or returning custom responses | Not supported | Supported | Supported |
Adding or deleting headers | Not supported | Supported | Supported |
Traffic mirroring | Not supported | Supported | Supported |
QPS throttling | Not supported | Supported | Supported |
AScript | Not supported | Supported | Supported |
Security | |||
Access control based on whitelists or blacklists | Supported | Supported | Supported |
TLS cipher suites | Supported | Supported | Supported |
Server Name Indication (SNI) for multiple certificates | Supported | Supported | Supported |
Rivest-Shamir-Adleman (RSA) and elliptic-curve cryptography (ECC) certificates | Supported | Supported | Supported |
ECC certificates | Supported | Supported | Supported |
End-to-end data transfer over HTTPS | Not supported | Supported | Supported |
Custom TLS cipher suites | Not supported | Supported | Supported |
TLS 1.3 | Supported | Supported | Supported |
WAF | Not supported | Not supported | Supported |
Monitoring | |||
Access log management | Supported | Supported | Supported |