Hi, the port requirements of RKE2 say

The VXLAN port on nodes should not be exposed to the world as it opens up your cluster network to be accessed by anyone. Run your nodes behind a firewall/security group that disables access to port 8472.

Does this also apply to clusters that use Cilium as the CNI? Asking because it is a lot more convenient on our hosting provider to not use a firewall