We’re excited that Digital Ocean has announced free cloud firewalls for all of its customers. You can now filter traffic to specific ports inbound and also outbound from any and all of your droplets, for free.
At DigitalOcean, we are working to make it easier for developers to build applications and deploy them to the cloud by simplifying the infrastructure experience. Today, we’re excited to bring that approach to security with Cloud Firewalls, an easily configurable service for securing your Droplets. It is free to use and designed to scale with you as you grow.
By using Cloud Firewalls, you will have a central location to define access rules and apply them to all of your Droplets. We enforce these rules on our network layer. Unauthorized traffic will not reach your Droplets, and this protection doesn’t consume any resources from your Droplet.
For example, you could block inbound traffic on port 22 and open up a secret inbound port for SSH. And, you could allow http and https traffic but block access via all other ports.
If you run a large number of droplets, you can leverage tags to set firewall rule for specific groups of droplets that have specific tags.
This doubles down on why I prefer Digital Ocean over AWS and other cloud providers.