I am wanting to test on six bare metal servers in my office first, then use with VMs by several different providers where there is no private network connecting all of the nodes.
So, I will probably want to read "Demonstration with libnetwork" rather than docker default, correct? It seems there would be no starting point with docker default networking since some nodes are at different datacenters. Or am I getting it wrong, and calico networking does fine with public IPs for etcd2 servers in a coreos cluster? Is the idea behind calico that you don't create VPNs, and so public IPs are used? How do you keep attackers from trying those IPs in a barrage? Limit incoming to few ports? Hide existence of server nodes by some stealth maneuver with DNS? _______________________________________________ calico-tech mailing list calico-tech@lists.projectcalico.org http://lists.projectcalico.org/mailman/listinfo/calico-tech_lists.projectcalico.org
