Multi-Cluster Kubernetes: When and How to Run Multiple Clusters

A single cluster is simpler and should be your default. Move to multi-cluster when you need: geographic proximity to users in multiple regions, hard isolation between production and staging, regulatory requirements that data stay in specific regions, or blast-radius containment so a control-plane failure does not take down everything. Avoid multi-cluster purely for scaling: a single cluster can run thousands of nodes. The overhead of managing multiple clusters (separate upgrades, separate monitoring, cross-cluster networking) should be justified by a concrete requirement.

Tools like Rancher, Tanzu, and Red Hat Advanced Cluster Management provide a control plane that manages multiple clusters. You define workloads once and they are distributed across clusters based on placement policies. For lighter-weight approaches, use ArgoCD with ApplicationSets to deploy the same Helm chart to multiple clusters from a single Git repository. Crossplane extends this pattern by letting you provision cloud resources (databases, queues, buckets) alongside Kubernetes workloads using a unified API.

Services in one cluster cannot reach services in another by default. Solutions include: Submariner, which creates encrypted tunnels between clusters and extends service discovery across them; Cilium ClusterMesh, which connects clusters at the CNI level with identity-based policies; and Istio multi-cluster, which uses a shared control plane or replicated control planes to route traffic between clusters. For simpler needs, expose services via external load balancers and use DNS-based routing with health checks.