Next Steps
Where to go after completing the Getting Started tutorials
Next Steps
You now have a working Arctic cluster with encrypted tunnels between your hosts. Here are some next steps to explore.
What You Have Learned
Through these tutorials, you have:
- Prepared your Linux hosts with the required packages
- Installed the Arctic agent and CLI
- Created a cluster configuration file
- Applied the configuration to form a cluster
- Understood how Arctic manages network configuration automatically
Explore Further
Here are recommended paths depending on your goals.
For Day-to-Day Operations
The How-To Guides provide task-focused instructions for common operations:
Compose Guide
Detailed guide for IaC-based cluster management
Peer Management
Add, remove, and update peers in your cluster
Service Configuration
Create and configure services with advanced options
Troubleshooting
Diagnose and fix common issues
For CLI and API Reference
The Reference section provides complete documentation for all commands and endpoints:
CLI Reference
All commands, flags, and options
API Reference
HTTP endpoints and request/response formats
Configuration
Agent and CLI configuration options
For Understanding How Things Work
The Concepts section explains the architecture and design decisions:
Architecture
System components and how they interact
Clustering
Gossip protocol and state synchronization
Routing
TProxy and IP tunnel traffic flow
Security
Authentication and trust model
Common Next Tasks
Here are tasks you might want to accomplish next:
Add More Peers
Expand your cluster by adding hosts to your cluster.yaml:
peers:
- name: node-a
address: 192.168.1.10:8080
- name: node-b
address: 192.168.1.20:8080
- name: node-c # New peer
address: 192.168.1.30:8080Then apply the changes:
arctic compose apply ./cluster.yamlConfigure Routes
Use policy-based routing to route specific subnets through tunnels:
services:
- name: tunnel-a-to-b
source_peer: node-a
target_peer: node-b
transport_type: tcp
routes:
- dest_cidr: 172.31.8.0/24
priority: 100Explore the Full Documentation
Launch the local documentation server:
arctic docsCreate Scoped Credentials
Create credentials with limited permissions for automation:
arctic credentials create \
urn:tillered:arctic:services.read \
urn:tillered:arctic:services.writeSet Up Shell Completions
Enable tab completion for faster CLI usage:
# For bash (add to ~/.bashrc)
source <(arctic completion bash)
# For zsh (add to ~/.zshrc)
source <(arctic completion zsh)
# Populate the completion cache for peer/service ID suggestions
arctic cache refreshProduction Considerations
Before deploying to production, consider:
- Use HTTPS - Configure a reverse proxy with TLS certificates
- Rotate credentials - Set up regular credential rotation
- Monitor health - Implement alerting on
arctic healthstatus - Backup data - Regularly backup
/opt/tillered/arctic.db - License management - Plan for license renewal before expiration
Alternative: Imperative Commands
While the compose approach is recommended, Arctic also supports imperative CLI commands for individual resource management. See the CLI Reference for commands like:
arctic peers add- Add a peer manuallyarctic services create- Create a service individuallyarctic routes add- Add routing rules one at a time
Get Help
If you encounter issues:
- Check the Troubleshooting guides
- Review the Error Codes reference
- Enable debug logging:
arctic --debug <command> - View agent logs:
journalctl -u arctic-agent -f