Question

Only allow traffic to Droplets through Load Balancer

Posted July 1, 2019 795 views
CentOS DigitalOcean Firewall Load Balancing

I have two droplets, a firewall and a load balancer.

I can access HTTP on droplets & load balancer address.

If I change the Firewall Inbound rule from
HTTP TCP 80 All IPv4 All IPv6
To
HTTP TCP 80 {IP of Load balancer]

The Load balancer health checks then report both Droplets down. Health checks are performed on
http://0.0.0.0:80/

I get HTTP response:
503 Service Unavailable
No server is available to handle this request.

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

1 answer

Found the answer: add the name of the load balancer to the firewall rule rather than it’s public IP address

Submit an Answer