Load-Balancers Release Notes

January 2022

January 19

  • Managed Let’s Encrypt certificates will begin using Elliptic Curve Digital Signature Algorithm (ECDSA) instead of RSA. ECDSA is equally secure and more computationally efficient than RSA. ECDSA certificates follow the shorter root chain and aren’t rooted using the DST Root CA X3 cross-sign which expired on 30 September 2021.

    As we roll out this change, new Let’s Encrypt certificates provisioned for DigitalOcean Load Balancers and Spaces will increasingly use ECDSA and existing certificiates secured with RSA will be secured with ECDSA upon auto-renewal. This change doesn’t require any action from DigitalOcean customers.

January 10

  • You can now resize load balancers once per minute, instead of once per hour. The cost is prorated based on how long the load balancer operates at each size, with a minimum charge of $0.01.

November 2021

November 9

  • You can now scale load balancers with more granularity by adding or removing nodes. The number of nodes a load balancer contains determines how many simultaneous connections and requests per second it can manage.

    Each additional node increases the load balancer’s maximum:

    • Requests per second by 10,000
    • Simultaneous connections by 10,000
    • New SSL connections per second by 250

    You can add up to 100 nodes to a load balancer.

    The scaling feature is not available in the following regions at this time: AMS2, NYC2, SFO1. In these regions, you can only create load balancers with one node, which equates to a small size load balancer under the legacy scaling system.

    The load balancer’s cost per month is based on the number of nodes it contains.

October 2021

October 27

  • We have deprecated TLS DHE ciphers for all load balancers.

October 12

  • Released v1.65.0 of doctl, the official DigitalOcean CLI. This release includes a number of new features:

    • The --ha flag was added to the kubernetes cluster create sub-command to optionally create a cluster configured with a highly-available control plane. This feature is in early availability
    • The kubernetes cluster sub-commands now include a “Support Features” field when displaying version options
    • The --disable-lets-encrypt-dns-records flag was added to the compute load-balancer create sub-command to optionally disable automatic DNS record creation for Let’s Encrypt certificates that are added to the load balancer

  • You can now opt out of DigitalOcean automatically creating DNS records for Let’s Encrypt certificates during SSL certificate creation, load balancer creation, and SSL forwarding rule management.

September 2021

September 21

March 2021

March 16

March 1

  • Fixed a bug with DigitalOcean Load Balancers that prevented outbound data transfer from Droplets from being added to bandwidth usage totals. Any inconsistencies will be updated on the April invoice.

July 2020

July 8

  • Load balancer health checks now support the HTTPS protocol. You can now configure load balancers to verify the health of your Droplets' HTTPS endpoints.

May 2020

May 12

May 5

  • v1.18.0 of the DigitalOcean Terraform Provider is now available. This release includes support for the backend keepalive option for the load balancer resource and data source.

April 2020

April 28

  • Load balancers now allow you to set a keepalive option for target Droplets.

  • The DigitalOcean Virtual Private Cloud (VPC) service is now available for all customers. VPC replaces the private networking service. Existing private networks will continue to function as normal but with the enhanced security and features of the VPC service. See the description of VPC features for more information.

April 7

October 2019

October 23

August 2019

August 20

  • DigitalOcean Load Balancers no longer support downgrading TLS connections to TLS 1.0. We will stop supporting TLS 1.1 later this year.

March 2019

March 19

October 2018

October 1

May 2018

May 8