Would you consider that to be a big enough risk to not deploy production apps in... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

CoachRufus87 on July 8, 2015 | parent | context | favorite | on: DigitalOcean Raises $83M in Series B Funding

Would you consider that to be a big enough risk to not deploy production apps in their environment? I.e. having your app on 1 droplet and a dedicated db on another. I'm new to ops and trying to learn all that I can :)

brianwawok on July 8, 2015 [–]

I do this in prod, you just need to take extra steps to protect. i.e. make a firewall rule on the database to only allow access to the database port on your private network card, from your specific web IPs (and make sure the traffic is encrypted).

jlgaddis on July 9, 2015 | | [–]

I'd probably create static ARP entries as well.

CoachRufus87 on July 8, 2015 | | [–]

Thanks for the info!

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact