markdark
By:
markdark

Is there any information regarding security between droplets of different customers?

December 14, 2017 334 views
Security

A customer of ours is asking if we can provide how the virtual servers are protected from other customers. I assume all is protected on some network level. For example how is security done so somebody from a different droplet can't reach our servers.
Any other security matters around this would also be great.

1 Answer

We are in the process of rolling out a new network specifically for private communication between droplets which is tentatively scheduled for release in Q1 of 2018. Currently the private network setting for droplet creates (via control panel or API) creates a second IP address for a droplet that is segmented from the public internet but accessible internally from any other droplet.

To augment that we rolled out cloud firewalls which allow you to create rules to restrict and shape communication between droplets more specifically.

For the larger update that is happening to the network topology it's best to refer here:
https://www.digitalocean.com/community/tutorials/digitalocean-private-networking-faq

And also post your questions as comments there as well so that you can get the most up to date information directly from the product manager responsible for that project.

Beginning in May of 2018, communication over DigitalOcean Private Network IPs will be isolated within the account or team where they were created. For most users, this security enhancement requires no action. All Droplets that were provisioned with Private Networking will continue to be able...
Have another answer? Share your knowledge.