Is encryption required on shared private networking?
So I need to scale out my web application, but I need to ensure the data between my droplets stays private. All the tutorials on Digital Ocean only describe setting iptables to limit who can access you droplets. My question is, shouldn’t encryption be used for communication between nodes as well as iptables? So that no third party droplet can eaves drop on the conversation between nodes? I don’t see that discussed at all as a best practice. If it isn’t needed, can someone fill me in as why this wouldn’t be needed. My biggest concern is SSL on MySql kills performance by between 15-25% and if someone can tell me it isn’t needed that would be great.
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.×