We have a website that we want to limit traffic to so that only admin can access the website. We don't have DNS set up for it. For instance, http://01.235.06.30:7000 and http://01.235.06.30:7000/api both allow traffic routing from the internet (users IPs).
I want http://01.235.06.30:7000 to be exposed to only a specific user's IP and block other user's IP, but keep http://01.235.06.30:7000/api exposed to all users since it's the endpoint that user's will hit.
So far, I haven't find any helpful resources online. I have thought about using Application Load Balancer, but I'm not sure how that will work.
Do you think this will be possible and if so, how?
Filtering traffic based on source IP and requested HTTP content would be the job of a firewall. It can't be done through Route 53, since Route 53 does the domain name resolution and does not deal with the HTTP layer. AWS web application firewall can accomplish the behavior you describe https://aws.amazon.com/waf/