Internal Floating IP #25
Comments
|
I'm not sure I understand your example. K8s already takes care of creating its own overlay network on top of the wesher mesh, so I don't see why the control-plane traffic has to go through the LBs. What am I missing? Putting the specific example aside, the actual feature being requested - assuming I understood it correctly - is not currently supported: wesher assigns each node one mesh IP address and currently doesn't do any routing. |
|
BTW, since you seem to be using hetzner, you might be interested in this instead of - or as a complement to - keepalived. |
|
This should be implemented as an additional benefit to the currently proposed fix for #28. The implementation allows nodes to announce routed prefixes through wesher, currently focusing on device scope routes, so it should be compatible with keepalived. |
In some cloud or bare metal environments so called floating or failover ip's are provided. Those can be assigned to any server as required. Using a daemon tracking the life status of the servers, like keepalived, one can easily create a simple high availability environment. This is primary useful to connect a static ip to a domain.
For some specific use cases it might be useful to have a similar feature inside a vpn. An ip always pointing to some server alive.
A real world usecase:
Below is some typical self-made HA kubernetes cluster setup.
Every k8s component has to communicate to the control place through a load balancer. If you want all traffic routed through the vpn you need to take care that the load balancer nodes are always be reachable. Both LB nodes running some alive keeper daemon (e.g. keepalived). If one of the nodes goes offline, the other automatically assigns the vpn floating ip to itself.
Is this possible somehow with wireguard and wesher already? Starting a second wesher instance on a connected server understandably failed, cause the port is still used.
The text was updated successfully, but these errors were encountered: