mikael,
@mikael@hachyderm.io avatar

does it right: I configured hosted on my for my and my laptops, and it supports and out of the box without issues.

https://oxcrag.net/blog/2024/04/14/Connecting-to-Home-From-Abroad.html

vwbusguy,
@vwbusguy@mastodon.online avatar

@mikael I use Wireguard to encrypt traffic between Kubernetes nodes. Since there are so many vendor specific quirks with vxlan, using Wireguard ends up simplifying things while adding to the general security.

Flannel CNI supports Wireguard natively. (Node traffic encryption with Cilium CNI is also coming soon, but this is one area where Flannel is still better.)

mikael,
@mikael@hachyderm.io avatar

@vwbusguy not a bad use case for it. Does it affect throughput for you in a meaningful way?

vwbusguy,
@vwbusguy@mastodon.online avatar

@mikael Not in any appreciable way. The overhead is negligible, especially since Wireguard is built directly into the Linux kernel.

If etcd doesn't complain about added latency, it's a pretty good sign you're not going to notice it for anything else.

mikael,
@mikael@hachyderm.io avatar

@vwbusguy sounds really good! I’ll definitely keep this in mind.

vwbusguy,
@vwbusguy@mastodon.online avatar

@mikael

https://github.com/flannel-io/flannel/blob/master/Documentation/backends.md#wireguard

  • All
  • Subscribed
  • Moderated
  • Favorites
  • wireguard
  • kavyap
  • thenastyranch
  • GTA5RPClips
  • tester
  • InstantRegret
  • DreamBathrooms
  • ngwrru68w68
  • magazineikmin
  • everett
  • Youngstown
  • mdbf
  • slotface
  • rosin
  • cisconetworking
  • megavids
  • khanakhh
  • normalnudes
  • osvaldo12
  • cubers
  • tacticalgear
  • Durango
  • ethstaker
  • modclub
  • anitta
  • provamag3
  • Leos
  • JUstTest
  • lostlight
  • All magazines
    •