Hacker News new | ask | show | jobs
by rhuber 1513 days ago
It does! In fact replacing AWS security groups and making them cross region and cross platform was probably the first goal of the project. My coauthor, Nate, wrote Nebula's internal firewall code before we wrote a single line of the actual protocol, because he wanted to ensure it was performant enough for massive scale.
1 comments
stavros 1513 days ago
Well that is great, thank you! I will play with it today.
link
stavros 1513 days ago
Ah, it looks like the firewall rules need to be copied to each host separately. That's not a dealbreaker, but not as easy to deploy as having them managed centrally (by the lighthouse, I guess?).
link