I use the Digital Ocean managed Kubernetes cluster and would like to create a wireguard interface. For the command wg-quick up wg0
the error message is ‘RTNETLINK answers: Not supported’.
How would I go about getting a node that has the support for the wireguard kernel module?
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
Accepted Answer
We currently run a debian-maintained Linux 4.19 whereas the in-tree wireguard didn’t make it into the kernel until 5.6. We’re currently looking into upgrading to Linux 5.7 which is consideration to be released soon.
Still looking forward to the wireguard server and client support in the Linux kernel and being able to deploy it from the Pods. Being able to use the module may require additional privileges. While you are at it, can you also look into using the eBPF feature of the node’s kernel?
A tangential questions: Is there a specific reason to use Debian as your OS instead of Ubuntu (say, licensing or the ability to customize…)
For now I manually installed wireguard on a node and tagged it as wireguard_capable.
Become a contributor for community
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
DigitalOcean Documentation
Full documentation for every DigitalOcean product.
Resources for startups and SMBs
The Wave has everything you need to know about building a business, from raising funding to marketing your product.
The developer cloud
Scale up as you grow — whether you're running one virtual machine or ten thousand.
Get started for free
Sign up and get $200 in credit for your first 60 days with DigitalOcean.*
*This promotional offer applies to new accounts only.