We have a Security concern: In same datacenter, if other droplets have “promiscuous mode” enabled, can they listen to my packets going through my VPC private network ?? If Yes they can listen, then I will encrypt all packets even in my VPC private network. If No they cannot listen in “promiscuous mode”, then I will trust digital ocean VPC private networking and avoid encrypting through my private VPC network.As this is serious security concern, pls explain in brief how do you stop other droplets listening to my private networking packets using “promiscuous mode”

- Community
- DigitalOcean
- Community
- DigitalOcean

Using "promiscuous mode" Can other Droplets in same DC listen to my packets on my VPC (Private Network) ?

Posted on July 9, 2020

We have a Security concern: In same datacenter, if other droplets have “promiscuous mode” enabled, can they listen to my packets going through my VPC private network ??

If Yes they can listen, then I will encrypt all packets even in my VPC private network.
If No they cannot listen in “promiscuous mode”, then I will trust digital ocean VPC private networking and avoid encrypting through my private VPC network. As this is serious security concern, pls explain in brief how do you stop other droplets listening to my private networking packets using “promiscuous mode”

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Bobby

July 9, 2020

Hi there @jazzshop222,

With the new DigitalOcean VPC networks, your resources are completely isolated from both other customers and other VPCs on your own account. See here for more details:

https://www.digitalocean.com/docs/networking/vpc/

Regards, Bobby