I have an application which is running a flask component with the help of elasticbeanstack set up the infrastructure.
The LB is private a LB present in private subnet.
Now, what I want to do is make the connect securely available publicly.
What would be the best option to integrate it?
Having LB(public) -> NAT(Public) - > LB(private) feels to much of moving component.
You could add a ALB in a public subnet, and point it to your instances. Allow traffic from the public subnet in your application instances' security group. Essentially a public/private setup.