Is anyone aware of a workaround for supporting proxy_protocol_v2 with kong?
I am running Kong in aws fargate behind an NLB. Since NLB does not preserve source ip, I decided to use NLB’s proxy_protocol_v2 to implement IP whitelisting. However, kong and openresty both are still on 0.13.6.1, and proxy_protocol_v2 was implemented in nginx 1.13.11 (03 Apr 2018).
Is it possible to safely update nginx version shipped with kong?
Is anyone aware of a better way to support ip whitelisting with NLB and fargate?
Thanks.
http://nginx.org/en/CHANGES
Changes with nginx 1.13.11 03 Apr 2018
*) Feature: the "proxy_protocol" parameter of the "listen" directive now
supports the PROXY protocol version 2.