This message was deleted.
# k3sa
adamant-kite-43734
09/10/2022, 9:17 AMThis message was deleted.
c
creamy-pencil-82913
09/11/2022, 1:25 AMJust join the agents to the cluster. If they are not on the same network then the vxlan flannel backend probably won't work, and you'd need to build the cluster with the wireguard or ipsec flannel backend.
s
stocky-sundown-51677
09/11/2022, 10:52 AMThanks @creamy-pencil-82913, I will look this up and very likely come back with more questions 😅
stocky-sundown-51677
09/13/2022, 1:31 PMHey @creamy-pencil-82913, I have few newbie questions
1. Would setting up a cluster using Wireguard have any costs in terms of network (data transfer speeds) etc?
2. Would the data transfer between nodes which are on the same network (on prem) slow down as result of using Wireguard?
c
creamy-pencil-82913
09/13/2022, 5:05 PM1. Probably
2. Probably
Encrypting everything is almost certainly going to be more expensive in terms of cpu time than just encapsulating it in a vxlan header.
👍 1
creamy-pencil-82913
09/13/2022, 5:06 PMBut vxlan is not secure and won't work across NAT or most ISPs, so you really need to use either wireguard or ipsec if all of the nodes aren't hosted in the same place.
s
stocky-sundown-51677
09/13/2022, 11:24 PMThanks a lot @creamy-pencil-82913
59 Views