VPC with Apps, Droplets and Managed Databases
F
Frederik Löffert
Being able to integrate Apps into a VPC together with droplets and managed databases, would allow secure / private access to them. Maybe even kubernetes could be integrated.
B
Bikram Gupta
VPC integration is currently in progress. We’ll share an update as we approach beta or early access.
B
Bikram Gupta
VPC integration is currently in progress. We’ll share an update as we approach beta or early access.
N
Naveen Clokam
Bikram Gupta Thanks for the Update Bikram. Can we also expect something for Private only or Internal VPCs? That will be a deadly combo. Thank you
C
Clava Mantock
Any update on this important feature
D
David G
Clava Mantock We have had to migrate everything to Droplets again. Performance with App Platform is very bad. Waiting this feature since 2020...
C
Clava Mantock
David G
It is sad that Digital Ocean does not seem to have a credible update on this and unwilling to share a road map or timeline for when this will be in place. I regularly check this thread for updates on this hoping that it would be addressed soon. I see where they announced DOKS improved networking with VPC and VPC peering, and hoping that was a precursor to App Platform in VPC. Again Bikram Gupta any update on this.
B
Bikram Gupta
Clava Mantock David G I apologize for the delay in responding. VPC integration is currently at the top of our engineering team’s priority list, and we’ll keep this group updated as we get closer to the beta phase.
On the latency side, we’ve conducted additional testing based on the feedback from Clava Mantock. Our initial assessment suggests that the trustedsource integration may be contributing to the latency in the app platform → database path. We are actively reviewing if there’s a feasible short-term solution, and I’ll let you know if we make any progress on that front.
b
bubblez
I am somewhat irritated why this crucial feature is given so little priority. Due to the missing VPC, we have a significantly worse performance than on an otherwise comparable reference system, to such an extent that we are unfortunately forced to consider switching to another PaaS. Unfortunately, because we otherwise really appreciate digitalocean...
B
Bikram Gupta
bubblez Thank you for your patience. Just wanted to let you know that VPC integration is being actively worked on. We will share an update as we approach the beta.
D
David G
bubblez We made a migration to App platform and we had to migrate again to Droplets. We are waiting for this feature.
Bikram Gupta any estimate of when there will be a beta? I have emails from last year from digitalocean saying it's on the roadmap....
B
Bikram Gupta
David G Thank you for your patience. I can confirm that it is being worked on, and will share a timeline as soon as available.
We really appreciated your feedback on latency in the thread below. On digging further, we could confirm that the latency was due to the TrustedSource feature, and not VPC. That said, TrustedSource for DBs will not be relevant after VPC integration, so the latency problem will go away.
C
Clava Mantock
Bikram Gupta any update or timeline on this? Apps deployed on App Platform that need to interact with managed database performance is considerable slower than droplets.
meteo-domani
Essential ❤
D
David G
Bikram Gupta
The problem is latency. And especially the connection handshake between App Platform and Managed Databases.
It is not a good idea to connect the App Platform to the database over the public network.
We migrated to App Platform and had to remove it because it was very slow.
I attach two images. The same query in App Platform and a Droplet with VPC
App Platform --> 23.14ms
Droplet With VPC --> 9.60ms
Miguel Alcaino
David G I had exactly the same experience. I was very glad to finally migrate my infra to a dockerized environment and looking forward to use the app platform. But as soon as I started using it I realised that it was much slower than my old VPS with VPC.
It's very strange that such essential feature did not come out of the box. The only thing I can imagine is that DO have the apps of App Platform somewhere else and that's why we've been without VPC for so long.
I'm looking for an alternative outside DO in the meantime, because I'm not coming back to vps.
D
David G
Miguel Alcaino
I think that the app platform is very good, but for applications that do not require high performance.
We have been waiting for a long time. This post is from 2020 and last year digitalocean already told me that it was on the roadmap. But they have never given a date.
We are looking at specialists to migrate to Amazon AWS. For example AWS Elastic Beanstalk, AWS Lambda, etc.
We have done some testing with AWS and the performance is much better
B
Bikram Gupta
Frederik Löffert Kristian David G Simo Elalj bubblez Lukas Bohler Max Carlson Jan David Langr Komninos Chatzipapas and all, Thank you for your valuable feedback.
As the Product Manager for App Platform, I can confirm that we are actively investigating this feature. In the meantime, I'd like to share some interim workarounds for enhancing security.
1) For managed databases: App Platform supports a trusted source capability. While traffic still travels over the public network, this feature allows you to conveniently enforce access control on the database side.
For more information, please refer to our documentation on managing databases:
2) For connecting to Droplets and DOKS from your apps: You can leverage dedicated egress IPs. This allows you to enforce access control on the receiving end (e.g., Droplet), effectively creating a firewalled connection.
For details on implementing this, please see our guide on adding IP addresses:
We would love to hear if these workarounds solve your problem or if you have any further questions or concerns.
W
Whitney Jutzin
Merged in a post:
Apps + VPC?
Kristian
Allow developers to add apps to a VPC network would be great!
D
David G
Is there any update about this?
Simo Elalj
This is a dealbreaker to migrate to app platform
b
bubblez
I can only agree with the others, this is extremely important and THE pain point that makes us consider moving away from app platform again and again. Are there any concrete plans to realise this?
Load More
→