PublishedFebruary 26, 2024

Last UpdatedApril 16, 2026

Understanding AWS Load Balancers

Ready to start learning?

▼

Understanding AWS Load Balancers: ALB vs. NLB vs. Classic ELB

If your application is slow, uneven under load, or falling over during traffic spikes, the problem is often not the app itself. It is the traffic path in front of it. In AWS, the alb is usually the first place teams look when they need smarter HTTP routing, while Network Load Balancer handles high-speed connection traffic and Classic Load Balancer remains in older environments.

This article breaks down what is load balancing in AWS, how the major AWS Elastic Load Balancing options differ, and how to choose the right one for your workload. You will get a practical comparison of alb aws, NLB, and Classic ELB, plus real decision points you can use for web apps, APIs, microservices, and non-HTTP services.

AWS has moved from a one-size-fits-all model to purpose-built load balancers because application architectures changed. Microservices, containers, APIs, and real-time systems all need different routing behavior. That is why the choice between alb amazon and NLB is not just technical trivia; it affects uptime, scalability, and how easy your application is to operate.

Load balancing is not just about spreading traffic. It is about routing requests to the right place, protecting backends from overload, and keeping an application available when one target fails.

Note

For official terminology and service behavior, AWS documents these features under AWS Elastic Load Balancing documentation. When you see alb full form in aws, it means Application Load Balancer.

AWS Load Balancers at a Glance

A load balancer is a traffic distribution layer. It receives incoming requests and forwards them across healthy targets so no single instance, container, or service gets overloaded. That improves availability, smooths out spikes, and makes failover less painful when something breaks.

In AWS, load balancing is part of AWS Elastic Load Balancing, which includes multiple services designed for different traffic patterns. The main question is not “Do I need a load balancer?” but “Which load balancer matches my protocol, latency target, and routing logic?”

The three main AWS options

Classic Load Balancer for legacy, general-purpose use cases.
Application Load Balancer for HTTP and HTTPS traffic with content-aware routing.
Network Load Balancer for TCP, UDP, and TLS traffic where speed and connection handling matter most.

This matters in real architectures. A modern web app may front user traffic with an ALB, send API requests to different target groups based on the URL path, and still use an NLB for a separate real-time service that needs static endpoints and low latency. That is a common pattern in microservices and container-based systems.

For the broader AWS model, the official overview on AWS Elastic Load Balancing is the best starting point. For workload context, the U.S. Bureau of Labor Statistics also shows continued growth in network and systems-related roles that keep these architectures running, including cloud infrastructure and operations functions: BLS Computer and Information Technology Occupations.

Key Takeaway

ALB handles request-level routing for web traffic. NLB handles fast connection-level forwarding. CLB is the older option and still appears in legacy environments, but it is not where most new designs should start.

Understanding the Classic Load Balancer

Classic Load Balancer, often shortened to CLB, was AWS’s original general-purpose load balancer. It helped teams distribute traffic across EC2 instances when cloud applications were simpler and when many workloads were still single-tier or lightly layered.

CLB supported basic balancing for HTTP/HTTPS and TCP traffic, and for a long time that was enough. If a team just needed to spread traffic across a handful of instances behind one public endpoint, CLB did the job. It was especially common in early cloud migrations when applications were moved from on-premises hosting without being redesigned.

Why teams moved away from CLB

CLB became less attractive as applications got more complex. It does not provide the same level of application-aware routing as ALB, and it lacks the protocol and performance focus of NLB. That means fewer choices for host-based routing, path-based routing, and modern container or microservices traffic patterns.

Limited routing intelligence compared with ALB.
Less protocol flexibility than NLB.
Less alignment with containerized workloads and segmented services.
Legacy footprint in older AWS environments.

For modernization planning, the point is not that CLB is unusable. It is that CLB is usually a sign the workload was built before specialized load balancing became the norm. AWS’s own load balancing docs reflect the shift toward ALB and NLB as the preferred modern choices: AWS ELB documentation.

What Is an Application Load Balancer?

The Application Load Balancer, or ALB, works at the application layer of the OSI model. That means it can inspect HTTP and HTTPS requests and make routing decisions based on what is inside the request, not just where the connection came from.

That difference is the reason ALB is the default choice for most web applications, REST APIs, and service architectures that need request-based routing. If one URL path should go to a product catalog service and another should go to checkout, ALB can do that cleanly.

How host-based and path-based routing works

Host-based routing sends traffic to different target groups based on the domain name. For example, app.example.com could go to one service, while api.example.com goes to another.

Path-based routing sends traffic based on the URL path. For example, /api can go to an API service, /images can go to a media service, and /admin can go to a restricted admin backend.

That is why ALB fits microservices and container platforms so well. You can keep multiple services behind one front door, then route requests to the right target group without exposing every backend directly. The practical result is simpler DNS, cleaner security boundaries, and easier deployment of separate service teams.

For AWS’s official explanation of routing behavior, use AWS Application Load Balancer documentation. For request-routing security patterns, the OWASP guidance is useful when validating web-facing services.

Key Features of Application Load Balancer

ALB is more than a traffic splitter. It adds application-level controls that reduce complexity at the backend and make deployment safer. The most useful features are the ones that directly affect how your web application behaves under load.

SSL/TLS termination

With SSL/TLS termination, the ALB handles encryption and decryption at the edge. That reduces certificate management work on backend servers and can simplify the app layer, especially when backend targets only need internal traffic protection. It also lets you centralize TLS policy changes without touching every service.

Sticky sessions and target groups

Sticky sessions, also called session affinity, can help when a user must stay on the same backend during a workflow. That can matter for legacy shopping carts, multi-step forms, or apps that still keep session state in memory. Still, use it carefully. In modern designs, shared session stores are usually cleaner than depending on sticky behavior.

Modern protocol support

ALB supports HTTP/2 and WebSocket connections, which matter for interactive applications, dashboards, live updates, and collaborative tools. If your app pushes updates to the browser or keeps long-lived application sessions open, those protocol features can be a real advantage.

Multiple target groups for separate services or tiers.
Health checks to remove failing targets from rotation.
Content-based routing for host and path rules.
SSL/TLS offload for simpler backend operations.

The official AWS reference for these capabilities is here: Target groups for Application Load Balancers. For web-service architecture and API design patterns, Microsoft’s API guidance is also relevant even in AWS-heavy shops because it explains request design and separation of concerns: Microsoft Learn.

Pro Tip

If your backend only needs to see clean HTTP traffic after the edge, terminate TLS at the ALB. If the backend must inspect or enforce its own encryption, evaluate end-to-end TLS carefully before making the load balancer the only TLS point.

Common Use Cases for ALB

The alb is the right fit whenever routing decisions depend on the content of an HTTP request. That includes websites, REST APIs, and SaaS platforms where different URLs map to different services. It is also the easiest AWS option for most application-layer traffic.

A very common pattern is a public web app with several backend services. A request to /products may route to one target group, while /orders routes to another. That keeps each service focused and avoids putting all requests through the same backend pool.

Microservices and containers

In microservices, the ALB often acts like a shared front door. It helps route traffic to the right service without requiring every service to have its own public endpoint. In container environments, target groups can map to services that scale independently, which makes deployments easier to manage.

Deployment strategies

ALB also works well for blue/green and canary style deployment patterns. You can send a small percentage of traffic to a new target group, observe errors and latency, then expand the rollout if metrics look good. That reduces the blast radius of application changes.

For cloud security and architecture validation, NIST’s guidance on resilient system design is worth reviewing: NIST SP 800-160 Volume 1. For organizations under federal cloud controls, ALB-based architectures often need to fit within the broader control family expectations described in FedRAMP.

What Is a Network Load Balancer?

Network Load Balancer, or NLB, works at the transport layer. It does not inspect HTTP request paths or host headers. Instead, it focuses on fast connection handling for protocols like TCP, UDP, and TLS.

That makes NLB the right answer when speed, scale, and protocol flexibility matter more than application-aware routing. It is built for very high throughput and low latency, which is why you see it in real-time systems, connection-heavy services, and workloads that cannot tolerate extra processing overhead.

Why NLB is different from ALB

Where ALB tries to understand the request, NLB simply forwards the connection efficiently. That keeps the performance profile lean. It also means NLB is often easier to justify for custom TCP protocols, UDP-based applications, and services that need to preserve network characteristics closely.

Low latency for fast connection setup and forwarding.
Very high throughput for bursty or sustained traffic.
TCP, UDP, and TLS support for broader protocol coverage.
Static IP behavior that helps with firewall rules and endpoint stability.

For the official service behavior, see AWS Network Load Balancer documentation. If you are evaluating networking behavior at scale, Cisco’s materials on load balancing and traffic engineering are also a useful external reference: Cisco.

Key Features of Network Load Balancer

NLB is built to do one job very well: move traffic fast and reliably. That focus is why it is so effective for high-volume systems and traffic patterns that would stress a more feature-rich application-layer balancer.

Ultra-low latency and connection scale

Ultra-low latency is one of the main reasons teams choose NLB. It processes traffic with minimal overhead, which matters when milliseconds affect user experience or transaction throughput. AWS documents its ability to scale automatically for very high traffic demand, making it suitable for workloads that see sudden spikes.

Protocol flexibility and static endpoints

NLB supports TCP, UDP, and TLS, which expands its use far beyond web apps. A gaming backend, for example, may use UDP for rapid packet delivery, while a secure TCP service may need predictable connection behavior. Static IP characteristics also help when you need a stable endpoint for allowlists, partner integrations, or firewall policies.

Source IP preservation

Another practical advantage is source IP visibility. For logging, fraud detection, IP-based controls, or backend analytics, preserving the original client IP can be more useful than having all requests appear to originate from a proxy layer.

For security and logging best practices, look at CISA guidance on resilient network operations and the MITRE ATT&CK framework for understanding how exposure and visibility affect detection and response.

Warning

Do not choose NLB just because it sounds “faster.” If your application needs host-based routing, URL-based splitting, or request inspection, NLB will not replace ALB. Use the right layer for the job.

Common Use Cases for NLB

NLB is the right tool when you care more about network throughput than HTTP intelligence. That makes it a strong fit for real-time systems, internal service endpoints, and custom application protocols.

Latency-sensitive workloads

Gaming backends, voice applications, trading systems, and real-time messaging platforms often need a load balancer that can keep up without adding much delay. NLB works well here because it does not try to parse the request at the application layer.

Non-HTTP protocols

If your service uses custom TCP or UDP, NLB is usually the practical choice. A telemetry collector, a device communication gateway, or a proprietary protocol service may not benefit from ALB’s application routing features at all.

High burst or connection-heavy traffic

For sudden traffic spikes, NLB can absorb connection volume without the same routing complexity you would manage with an application-layer balancer. That is useful for event-driven systems, batch-triggered services, and systems that establish many short-lived connections.

For context on high-volume internet services and scalability design, Verizon’s data breach report is not a load balancing document, but it highlights how exposed internet-facing systems can become when traffic and access patterns are not managed well: Verizon Data Breach Investigations Report. For cloud-resilient design, AWS’s own reference remains the best source: AWS Network Load Balancer.

ALB vs. NLB: Core Differences That Matter

The most important difference between ALB and NLB in AWS is the layer at which they operate. That one detail determines how they route traffic, what protocols they support, and what kind of application architecture they serve best.

Application Load Balancer	Network Load Balancer
Operates at the application layer and inspects HTTP/HTTPS requests.	Operates at the transport layer and forwards TCP/UDP/TLS connections.
Supports host-based and path-based routing.	Does not inspect request content for routing decisions.
Best for websites, APIs, microservices, and content-based routing.	Best for latency-sensitive services, custom protocols, and high-throughput traffic.

In practical terms, ALB gives you more intelligence. NLB gives you more raw transport performance. If your service is built around domains, paths, and user-facing web logic, ALB is usually the better fit. If your service is a custom TCP listener or a real-time UDP backend, NLB is usually the better fit.

AWS’s own comparison and product pages are the authoritative source here: AWS ALB and AWS NLB. For security architecture, the NIST Cybersecurity Framework is useful when aligning traffic design with resilience and monitoring goals.

How to Choose the Right AWS Load Balancer

Choosing between ALB, NLB, and Classic ELB becomes much easier when you start with the workload instead of the product name. The best choice depends on protocol, routing needs, latency targets, and how your backend is built.

Start with protocol. If traffic is HTTP or HTTPS, ALB is usually the default choice. If it is TCP, UDP, or TLS and not web-native, NLB is often the better fit.
Ask whether routing must be content-aware. If you need host headers, URL paths, or request-based rules, choose ALB.
Check performance needs. If your top priority is very low latency or very high connection volume, choose NLB.
Review application architecture. Microservices and containerized applications usually benefit from ALB. Simple or legacy instance-based workloads may still sit behind CLB or NLB depending on protocol.
Think about operations. TLS termination, session stickiness, endpoint stability, and source IP visibility all matter in production.

If you are still unsure, a simple rule works well: ALB for web intelligence, NLB for transport speed. That rule will not solve every exception, but it gets most teams to the right answer quickly.

For broader cloud workload guidance, AWS architecture documentation is the primary source. For operating model alignment and platform resilience, it can also help to review the NICE Framework from NIST and the workforce role definitions used across infrastructure teams: NICE Framework.

The Evolution from ELB to ALB and NLB

Classic ELB was built for a simpler cloud era. It offered a general-purpose way to distribute traffic, and that was enough when many applications were still monoliths or lightly tiered web systems. As architectures changed, the old model started to show its limits.

Modern workloads needed more than “send traffic to healthy instances.” They needed rules based on hostnames, paths, protocols, and deployment strategies. That demand is what drove AWS to create specialized options: ALB for request-aware HTTP traffic and NLB for high-performance network traffic.

Why specialization won

Specialized services reduce tradeoffs. With ALB, you get routing intelligence. With NLB, you get performance and connection scale. That separation aligns with the broader cloud pattern of using the right managed service for the exact workload instead of forcing every system through the same generic layer.

That evolution also matches how DevOps and platform teams now work. They separate concerns more cleanly, automate more aggressively, and scale parts of the system independently. Elastic load balancing followed the same path.

For historical context and cloud governance, AWS documentation is still the best source. For enterprise architecture and modernization planning, ISACA’s COBIT framework is often used to align technical decisions with operational control objectives: ISACA COBIT.

Practical AWS Load Balancer Decision Scenarios

Real decisions are easier than abstract comparisons. If you are trying to choose the right load balancer, map the service to the traffic pattern and backend design.

Scenario where ALB is the clear choice

You are running a public e-commerce app with multiple URL paths: product pages, checkout, account management, and an API for the front-end. ALB fits because it can route /api to one service, /checkout to another, and still support TLS termination and health checks on each target group.

Scenario where NLB is the better choice

You are operating a low-latency TCP gateway for a payment processor or a UDP-based real-time application. NLB is the better fit because it handles connection traffic efficiently, preserves source IP in useful ways, and supports the protocol without trying to interpret application content.

Scenario where CLB still appears

A legacy application may already rely on Classic Load Balancer, especially if it was built years ago and never re-architected. In that case, the question is not whether CLB is glamorous. The question is whether the app should be modernized to fit ALB or NLB, or whether the current design still works with acceptable risk.

For workload sizing and labor market context, IT infrastructure roles remain in demand across the U.S. labor market. BLS job outlook data for computer and information technology occupations provides a useful benchmark: BLS Occupational Outlook Handbook. That matters because cloud load balancing is not just a design decision; it is an operations skill.

Best Practices for Using AWS Load Balancers

Picking the right load balancer is only part of the job. The way you configure, monitor, and secure it determines whether it actually improves reliability or just adds another layer to troubleshoot.

Health checks and target design

Health checks should match the real readiness of the application, not just whether a process is running. If your app depends on a database, cache, or upstream service, make sure the health endpoint reflects that dependency. Otherwise, the load balancer may keep sending traffic to a service that is technically alive but functionally broken.

Availability zone and subnet placement

Place load balancers in the correct subnets and across multiple Availability Zones. That is basic, but teams still get it wrong. A load balancer that is not spread properly loses much of its fault tolerance value.

Security and monitoring

Review TLS policy, listener configuration, security groups, logging, and target group metrics. Monitor request count, latency, unhealthy host count, and 4xx or 5xx response spikes. Those signals usually tell you where the bottleneck is before users complain.

Use least-privilege security groups for backend targets.
Enable access logs where supported and needed for troubleshooting.
Watch for uneven target distribution after deployments.
Validate TLS settings against your organization’s security baseline.

For benchmarks and secure configuration baselines, the CIS Benchmarks are a practical reference point, especially for infrastructure teams that need repeatable hardening guidance.

Conclusion

The choice between alb, NLB, and Classic ELB comes down to one question: what kind of traffic are you handling, and what does the application need from the layer in front of it? ALB is for application-aware HTTP routing. NLB is for low-latency network forwarding. Classic ELB is the older general-purpose option that still matters mainly in legacy environments.

If you are designing a new web app, API, or microservices platform, start with ALB in most cases. If you need TCP, UDP, TLS, static endpoints, or extreme connection performance, start with NLB. If you inherit CLB, treat it as a modernization candidate and review whether the workload now fits a more specialized AWS load balancer.

The right load balancer improves uptime, scalability, and user experience. More importantly, it reduces the amount of complexity your backend has to absorb. For teams building or maintaining production systems, that is not a small decision.

For official service details, use AWS’s documentation first, then validate the design against your security, compliance, and operational requirements. If you want to go deeper, the next step is to map your own traffic patterns against ALB and NLB behavior and document the choice as part of your cloud architecture standard.

CompTIA®, AWS®, Cisco®, Microsoft®, ISACA®, and NIST are referenced for educational context where applicable.

AWS, AWS Cloud Practitioner, Cloud Computing

[ FAQ ]

Frequently Asked Questions.

What is the primary difference between Application Load Balancer (ALB) and Network Load Balancer (NLB) in AWS?

The primary difference between ALB and NLB lies in their handling of traffic and use cases. ALB operates at the application layer (Layer 7 of the OSI model) and is optimized for HTTP and HTTPS traffic, offering advanced routing features such as host-based and path-based routing.

In contrast, NLB works at the transport layer (Layer 4) and is designed for ultra-high performance and low latency. It handles TCP and UDP traffic, making it ideal for applications requiring rapid, high-speed connections, such as real-time communications or gaming applications.

Why might an application experience uneven load distribution with an AWS Classic Load Balancer?

The Classic Load Balancer (CLB) is an older AWS load balancing service that operates at both Layer 4 and Layer 7 but lacks the sophisticated routing features of ALB and NLB. This can lead to uneven load distribution because it primarily uses simple round-robin or flow-based algorithms without deep inspection of traffic.

Additionally, CLB does not support some of the advanced routing rules or health checks available in newer load balancers. As a result, during traffic spikes or complex traffic patterns, some instances may become overloaded while others remain underutilized, impacting application performance and reliability.

How does load balancing improve application reliability in AWS?

Load balancing distributes incoming network traffic across multiple servers or resources, preventing any single instance from becoming a bottleneck. This ensures that applications can handle higher traffic volumes without degradation in performance.

Moreover, AWS load balancers regularly monitor the health of backend instances and automatically reroute traffic away from unhealthy instances. This automatic failover increases overall application availability and resilience during failures or maintenance activities.

What are common best practices when configuring AWS load balancers?

Some best practices include configuring health checks to accurately reflect application status, enabling sticky sessions if session persistence is required, and setting appropriate security policies to protect the traffic.

It’s also recommended to use path-based routing with ALB for microservices architectures, and to optimize listener and target group configurations based on application load patterns. Regularly monitoring load balancer metrics and logs helps in fine-tuning performance and ensuring high availability.

Can I migrate from a Classic Load Balancer to an Application or Network Load Balancer?

Yes, migrating from a Classic Load Balancer to ALB or NLB is possible and often recommended for improved features and performance. The migration process involves creating a new load balancer, configuring target groups, and updating DNS records or application settings to point to the new load balancer.

It’s important to test the new setup thoroughly before decommissioning the old CLB. Consider using DNS weight or staged migration strategies to minimize downtime and ensure a smooth transition for your applications.