hachyderm.io is one of the many independent Mastodon servers you can use to participate in the fediverse.
Hachyderm is a safe space, LGBTQIA+ and BLM, primarily comprised of tech industry professionals world wide. Note that many non-user account types have restrictions - please see our About page.

Administered by:

Server stats:

10K
active users

@mikael I use Wireguard to encrypt traffic between Kubernetes nodes. Since there are so many vendor specific quirks with vxlan, using Wireguard ends up simplifying things while adding to the general security.

Flannel CNI supports Wireguard natively. (Node traffic encryption with Cilium CNI is also coming soon, but this is one area where Flannel is still better.)

@vwbusguy not a bad use case for it. Does it affect throughput for you in a meaningful way?

@mikael Not in any appreciable way. The overhead is negligible, especially since Wireguard is built directly into the Linux kernel.

If etcd doesn't complain about added latency, it's a pretty good sign you're not going to notice it for anything else.

@vwbusguy sounds really good! I’ll definitely keep this in mind.

@UnderEu @noipv6 Ouch, yep, that sucks. Didn’t do extensive testing, but it did resolve some common stuff to IPv6. I’ve got to look into that behavior.