Skip to content

docs: WireGuard doesn't require overlay port in Network Firewalls #36208

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 27, 2024
Merged

docs: WireGuard doesn't require overlay port in Network Firewalls #36208

merged 1 commit into from
Nov 27, 2024

Conversation

julianwiedmann
Copy link
Member

When using WireGuard, all of Cilium's overlay network traffic is encrypted and not visible to the network. Therefore the overlay port doesn't need to be allowed in Network Firewalls.

Also see f604ce2 ("docs: update note on WireGuard with tunnel routing").

@julianwiedmann
docs: WireGuard doesn't require overlay port in Network Firewalls
7876fb8 
When using WireGuard, all of Cilium's overlay network traffic is encrypted
and not visible to the network. Therefore the overlay port doesn't need
to be allowed in Network Firewalls.

Also see f604ce2 ("docs: update note on WireGuard with tunnel routing").

Signed-off-by: Julian Wiedmann <jwi@isovalent.com>
@julianwiedmann julianwiedmann added area/documentation Impacts the documentation, including textual changes, sphinx, or other doc generation code. release-note/misc This PR makes changes that have no direct user impact. feature/wireguard Relates to Cilium's Wireguard feature needs-backport/1.15 needs-backport/1.16 This PR / issue needs backporting to the v1.16 branch labels Nov 27, 2024
@julianwiedmann julianwiedmann requested a review from brb November 27, 2024 15:21
@julianwiedmann julianwiedmann requested review from a team as code owners November 27, 2024 15:21
@julianwiedmann julianwiedmann requested a review from a user November 27, 2024 15:21
@julianwiedmann
Copy link
Member Author

/test

@julianwiedmann julianwiedmann added this pull request to the merge queue Nov 27, 2024
Merged via the queue into cilium:main with commit 2a2b95f Nov 27, 2024
69 checks passed
@julianwiedmann julianwiedmann deleted the 1.17-wg-docs branch November 27, 2024 15:39
@nbusseneau nbusseneau mentioned this pull request Dec 1, 2024
Merged
2 tasks
@nbusseneau nbusseneau added backport-pending/1.15 The backport for Cilium 1.15.x for this PR is in progress. and removed needs-backport/1.15 labels Dec 1, 2024
@nbusseneau nbusseneau mentioned this pull request Dec 1, 2024
Merged
8 tasks
@nbusseneau nbusseneau added backport-pending/1.16 The backport for Cilium 1.16.x for this PR is in progress. and removed needs-backport/1.16 This PR / issue needs backporting to the v1.16 branch labels Dec 1, 2024
@github-actions github-actions bot added backport-done/1.15 The backport for Cilium 1.15.x for this PR is done. backport-done/1.16 The backport for Cilium 1.16.x for this PR is done. and removed backport-pending/1.15 The backport for Cilium 1.15.x for this PR is in progress. backport-pending/1.16 The backport for Cilium 1.16.x for this PR is in progress. labels Dec 2, 2024
This was referenced Dec 12, 2024
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@brb brb brb approved these changes

Assignees
No one assigned
Labels
area/documentation Impacts the documentation, including textual changes, sphinx, or other doc generation code. backport-done/1.15 The backport for Cilium 1.15.x for this PR is done. backport-done/1.16 The backport for Cilium 1.16.x for this PR is done. feature/wireguard Relates to Cilium's Wireguard feature release-note/misc This PR makes changes that have no direct user impact.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@julianwiedmann @brb @nbusseneau