Encrypt traffic on private network

Posted June 14, 2015 2.7k views
UbuntuSecurityLoad Balancing

We use a load balancer (pound) to terminate SSL (https), leaving traffic from pound to the application server in clear text (http).
This traffic goes through the Digital Ocean SHARED private network, meaning the data is not secure.
AFAIK pound cannot receive incoming https and then forward as https. How do you secure the shared private network traffic.

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
1 answer
by Brennen Bearnes
The droplan utility can help secure private network interfaces on DigitalOcean Droplets by querying the API and adding iptables firewall rules that only allow traffic from your other Droplets in the same datacenter.