Seeking advice about securing postgres on Fly

paulrudy · October 13, 2022, 11:05pm

Ok, here’s what I did to encrypt my existing unencrypted postgres volume(s):

Create a replica outside of my postgres primary region with fly postgres create and fly scale count. If I actually want to finish with a replica in that region, then make it an encrypted replica.
Use these steps to change the primary region to the new region.
Wait until fly status shows the new region as leader, and the original region as replica.
Delete the volume in the original region.
Create an encrypted replica in the original region.
Go through the instructions linked in step 2 again, this time to change the primary region to the original region.
Wait until fly status shows the original region as leader, and the new region as replica.
Delete unencrypted replicas and create encrypted replicas as needed.

Topic		Replies	Views
Connecting to a postgres DB externally securely Questions / Help postgres	12	2864	February 11, 2022
hosted postgres provider with secure network connection postgres	0	206	December 6, 2022
External managed db Questions / Help postgres	6	1120	October 25, 2022
export Postgres backups Questions / Help postgres	13	2510	April 24, 2024
Postgres public access Questions / Help postgres	4	1128	September 1, 2022