I just successfully set up BGP routing with FRR to help with load balancing my K8s cluster (with Metallb). I followed instructions from https://blog.xirion.net/posts/metallb-opnsense/ (https://blog.xirion.net/posts/metallb-opnsense/). I want the services in my k8s cluster to be advertised only to the local network. However, after setting up BGP I started seeing crazy amounts of suspicious traffic to the internet in Suricata on one of my K8s nodes. What did I screw up? Screenshots attached. Any tips would be much appreciated!
You need to post the routing table ...
Sorry, routing table attached
There is no default gateway so there shouldnt be anything
Thank you. By "there shouldn't be anything" do you mean there shouldn't be any security vulnerabilities associated with BGP? Many thanks
If this is the routing table of k8s node then its safe :)
This is the routing table from opnsense, not from the K8s nodes
OK, and when k8s use OPN as Gateway, also safe
8) That's great news. I must have been just paranoid about the traffic I saw. Many thanks!