Per host encryption
Pre-release
Pre-release
This release brings a brand new feature which allows end users to choose individual servers that can accept un-encrypted communication. The feature is split into two different configuration options, which consist of a boolean flag and a list of trusted servers/subnets to accept traffic from.
The theory is as follows:
- The destination server must have un-encrypted communication enabled.
- The destination server must consider the source server as trusted.
The above allows for the ultimate in granularity over which servers can communicate in an un-encrypted fashion. While also guaranteeing security of the rest of the end-users servers.