Route specific subnet traffic beween application and devices connected through a management VPN tunnel

nemesisdesign · July 5, 2022, 8:07pm

Given two pods deployed on different nodes:

myapp pod deployed on apps node
wireguard pod deployed on vpn node, using a subnet like 172.16.30.0/16

I need myapp to be able to be able to route traffic to the wireguard peers (VPN clients) having IPs in the subnet 172.16.30.0/16, the traffic is mostly ICMP probes, SSH and iperf tests.

I already enabled IP forwarding on the wireguard pode and VPN node, now I need to understand: how do I set up routes in a way that plays nicely with the Kubernetes networking model?

That is, I want to instruct the myapp pods to send traffic for the subnet used by wireguard (172.16.30.0/16) to the wireguard container so that the traffic is routed to the VPN clients.

Is the problem clear?

Cluster information:

Kubernetes version: 1.23
Cloud being used: Linode / Vultr / Bare metal

Faisal_Basha · November 1, 2022, 1:36pm

were you able to find a solution for this? I have something similiar of a problem, wondering how to solve this problem?

MohammedNoureldin · January 2, 2023, 12:12am

DId you find any reasonable solution? I am doing the same use case, and I am interested in how you solve it.

Topic		Replies	Views
Traffic Encryption inside a cluster? General Discussions security	1	2034	January 28, 2019
Communication between nodes microk8s	1	6009	September 4, 2020
How traffic is routed to POD by node port General Discussions	1	1188	September 21, 2020
Kubernetes networking issues General Discussions	0	39	August 16, 2024
Kubernetes wireguard flannel overlay network on VMs blocked by kubefirewall General Discussions	2	4790	December 2, 2021

Route specific subnet traffic beween application and devices connected through a management VPN tunnel

Cluster information:

Related topics