Page MenuHomePhabricator
Files F34434184

cloudgw_after_checklist.yaml
No One
Actions

Authored By
aborrero
Apr 29 2021, 1:21 PM
Size
2 KB
Referenced Files
None
Subscribers
None

cloudgw_after_checklist.yaml
View Options

---
# cloudgw after-migration checklist!
- name: "VM (no floating IP) contacting the internet gets NAT'd using routing_source_ip"
tests:
- cmd: ssh tools-k8s-control-1.tools.eqiad1.wikimedia.cloud "curl -s ifconfig.me ; echo "
# this is routing_source_ip
stdout: "185.15.56.1"
retcode: 0
stderr: ""
- name: "VM (no floating IP) contacting an address covered by dmz_cidr doesn't get NAT'd"
tests:
- cmd: ssh tools-k8s-control-1.tools.eqiad1.wikimedia.cloud "curl -Is https://es.wikipedia.org | grep x-client-ip"
# this is the internal VM address
stdout: "x-client-ip: 172.16.0.104"
retcode: 0
stderr: ""
- name: "VM (using floating IP) isn't affected by either routing_source_ip or dmz_cidr"
tests:
- cmd: ssh dev.toolforge.org "curl -s ifconfig.me ; echo"
# this is the VM floating IP address
stdout: "185.15.56.50"
retcode: 0
stderr: ""
- cmd: ssh dev.toolforge.org "curl -Is https://es.wikipedia.org | grep x-client-ip"
# this is the VM private address, after the migration, it should be the floating IP
stdout: "x-client-ip: 185.15.56.50"
retcode: 0
stderr: ""
- name: "VM (no floating IP) can contact auth DNS server"
tests:
- cmd: ssh tools-k8s-control-1.tools.eqiad1.wikimedia.cloud "dig +short toolforge.org @208.80.154.11"
# this the A apex record in the toolforge.org DNS domain zone
stdout: "185.15.56.11"
retcode: 0
stderr: ""
- name: "VM (no floating IP) can contact recursor DNS server"
tests:
- cmd: ssh tools-k8s-control-1.tools.eqiad1.wikimedia.cloud "dig +short www.basket.com @208.80.154.143 | wc -l"
# this a somewhat random IPv4 on the internet, so only check that we get "something"
stdout: "1"
retcode: 0
stderr: ""
- name: "VM (using floating IP) can contact auth DNS server"
tests:
- cmd: ssh dev.toolforge.org "dig +short toolforge.org @208.80.154.11"
# this the A apex record in the toolforge.org DNS domain zone
stdout: "185.15.56.11"
retcode: 0
stderr: ""
- name: "VM (using floating IP) can contact recursor DNS server"
tests:
- cmd: ssh dev.toolforge.org "dig +short www.basket.com @208.80.154.143 | wc -l"
# this a somewhat random IPv4 on the internet, so only check that we get "something"
stdout: "1"
retcode: 0
stderr: ""
- name: "VM (using floating IP) can contact LDAP server"
tests:
- cmd: ssh dev.toolforge.org 'ldapsearch -x whatever | grep -q ^"# numResponses"'
# grep is happy, we are too
stdout: ""
retcode: 0
stderr: ""
- name: "VM (not using floating IP) can contact LDAP server"
tests:
- cmd: ssh ssh tools-k8s-control-1.tools.eqiad1.wikimedia.cloud 'ldapsearch -x whatever | grep -q ^"# numResponses"'
# grep is happy, we are too
stdout: ""
retcode: 0
stderr: ""

File Metadata

Mime Type
text/plain; charset=utf-8
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
9059962
Default Alt Text
cloudgw_after_checklist.yaml (2 KB)

Event Timeline

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits