in rke2 version 1.28.9… did the agent\worker nodes connection config change? In my config file on the managers i have it connect to a LB using port :9345 and the managers connect to the primary manager and join the cluster but for agents i have the same setup and the agent connects (i can see the secret for the agent is created in the cluster) but it cant fully connect to the cluster… it seems to be trying to use the “connect” lb instead of getting the lb with the api on port 6443 form the primary manger this config was working fine in 1.27.x so not sure what changed and why in 1.28?

The servers have always needed 6443 open... That's the apiserver port, without that all they get is the supervisor for provisioning stuff.

@creamy-pencil-82913 - I used to have 2 LBs… one for HA on port 9345 (clustername-connect.domain.com) with the primary manager behind it and another for 6443 (clustername-k8.domain.com) and all secondary managers and agents connected to clustername-connect.domain.com and registered without any issue… for some reason in 1.28.9 the agents connect on clustername-connect.domain.com:9345 but then try to register to the cluster on clustername-connect.domain.com:6443 which fails because the lb with clustername-connect.domain.com is only open on port 9345