Howdy again! I’m wondering if it’s possible, and how, to setup private networking between clusters. I have a cluster I want exposed to the entire internet through a load balancer as a back end service for a web app. I have a separate cluster which I only want to allow traffic from it’s load balancer and the other cluster.

I’ve tried limiting the k8s ports in the digital ocean firewall to only come from the private cluster’s load balancer, but that throws the load balancer into an unhealthy state.

Any tips? Thanks!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
1 answer

@vegemike Did you get it to work?

  • Unfortunately no. What I did instead was to add more machines to my existing cluster with a specific tag. From there I configured the two workers I have to only deploy to machines with those tags. The “private” worker only has a NodePort service which isn’t exposed through the load balancer. The other worker has a LoadBalancer server, which is exposed through the load balancer.