Hot!Digital Ocean - Droplets

Author
tbryant
New Member
  • Total Posts : 1
  • Scores: 0
  • Reward points: 0
  • Joined: 2017/02/07 05:50:28
  • Status: offline
2017/09/15 11:52:56 (permalink) 5.4
0

Digital Ocean - Droplets

Has anyone dealt with the "droplets" from Digital Ocean? I am seeing a bunch of VPN traffic to them, ISAKMP. Trying to figure out the best way to block that traffic on our network.
 
Thanks!
#1

3 Replies Related Threads

    hmtay_FTNT
    Platinum Member
    • Total Posts : 221
    • Scores: 40
    • Reward points: 0
    • Joined: 2017/02/22 11:02:10
    • Status: offline
    Re: Digital Ocean - Droplets 2017/09/19 15:12:01 (permalink)
    0
    Hello tbryant,
     
    If you are okay blocking ISAKMP traffic in your network, you could use the Application Control signature, "ISAKMP" to block those traffic.
    #2
    MikePruett
    Platinum Member
    • Total Posts : 676
    • Scores: 15
    • Reward points: 0
    • Joined: 2014/01/08 19:39:40
    • Location: Montgomery, Al
    • Status: offline
    Re: Digital Ocean - Droplets 2017/10/13 06:50:05 (permalink)
    0
    I have used droplets before as a developer. Made it easy to stand up a VM, test some app stuff etc.
     
    The people may be building tunnels so their droplets aren't publicly accessible. Block it and see who comes screaming (as long as you have the approval of your leadership/change management of course)

    Mike Pruett
    Fortinet GURU
    #3
    emnoc
    Expert Member
    • Total Posts : 4989
    • Scores: 306
    • Reward points: 0
    • Joined: 2008/03/20 13:30:33
    • Location: AUSTIN TX AREA
    • Status: offline
    Re: Digital Ocean - Droplets 2017/10/13 09:30:58 (permalink)
    0
    Same here, I've used Digital Ocean dev and POCs and we do just this for droplets. Do you have any particular reason for disallowing ISAKMP?
     
    Ken
     

    PCNSE,  NSE , Forcepoint ,  StrongSwan Specialist
    #4
    Jump to:
    © 2018 APG vNext Commercial Version 5.5