I’ve been reading/studying the official helm chart and the official cloudformation template to deploy consul on k8s and AWS and I can’t wrap my head around few discrepancies between the 2 deployment models.
The helm chart runs consul using a statefulset that retains the identity of the node (IP - dataDisk), the cftemplate doesn’t care about neither of those.
The helm chart generates agent client certificates instead of leveraging the auto_encrypt feature that consul have to distribute certificates to the agents.
The 2 deployment strategies obviously work but I wonder what are the recommendation around retaining data disk, agents certs, consul servers IP addresses.
What are the drawbacks of using one or the other?