I cleaned up old proxy stuff in T218633, this task covers non-proxy things. Some project-specific stuff is lurking here:
client = designateclient.Client(session=get_keystone_session('wmflabsdotorg'))
zone = client.zones.get('wmflabs.org.')
for recordset in client.recordsets.list(zone['id']):
if recordset['type'] != 'A' or recordset['records'] != ['185.15.56.49']:
print('|' + recordset['name'] + '|' + recordset['type'] + '|' + repr(recordset['records']) + '|' + repr(recordset['description']) + '|')Infra includes very special projects such as bastion, project-proxy, cloudinfra. Projects which are only like normal-level special are not considered infra.
| Name | Type | Records | Description | Notes |
|---|---|---|---|---|
| wmflabs.org. | SOA | [u'labs-ns1.wikimedia.org. root.wmflabs.org. 1553018358 3600 600 86400 3600'] | None | infra |
| wmflabs.org. | NS | [u'labs-ns3.wikimedia.org.', u'labs-ns0.wikimedia.org.', u'labs-ns1.wikimedia.org.', u'labs-ns2.wikimedia.org.'] | None | infra |
| A | [u'185.15.56.24'] | u'This was imported from ldap where it was associated with instance <Server: huggle> in project huggle' | huggle | |
| A | [u'208.80.155.229'] | u'This was imported from ldap where it was associated with instance <Server: tools-checker-01> in project tools' | tools | |
| bastion-restricted.wmflabs.org. | A | [u'185.15.56.14'] | u'restricted bastion for Ops use' | infra |
| tools-static.wmflabs.org. | A | [u'208.80.155.174'] | u'This was imported from ldap where it was associated with instance <Server: tools-web-static-01> in project tools' | tools |
| wmflabs.org. | MX | [u'10 mx1001.wikimedia.org.', u'50 mx2001.wikimedia.org.'] | None | it should be here though the value may be questionable |
| wmflabs.org. | TXT | [u'"v=spf1 mx ip4:185.15.56.18 ip4:185.15.56.19 ?all"'] | None | infra |
| internal-server-nat.wmflabs.org. | A | [u'208.80.155.255'] | None | Should be here but value is questionable, does not include eqiad1-r NAT IP |
| www.wmflabs.org. | CNAME | [u'proxy-eqiad1.wmflabs.org.'] | None | infra |
| _psl.wmflabs.org. | TXT | [u'https://github.com/publicsuffix/list/pull/284'] | None | Still needed or not? |
| m.wmflabs.org. | CNAME | [u'proxy-eqiad1.wmflabs.org.'] | u'Attempt to protect against mobile variant of https://bugs.chromium.org/p/chromium/issues/detail?id=881410 getting abused. -- Alex 2018-09-07' | Still needed or not? |
| mx-out01.wmflabs.org. | A | [u'185.15.56.18'] | u'Mail exchange' | infra |
| mx-out02.wmflabs.org. | A | [u'185.15.56.19'] | u'Mail exchange' | infra |
| ntp-01.wmflabs.org. | A | [u'185.15.56.3'] | u'time server for cloud instances' | infra |
| ntp-02.wmflabs.org. | A | [u'185.15.56.27'] | u'time server for cloud instances' | infra |
| A | [u'185.15.56.57', u'185.15.56.43', u'185.15.56.42'] | u'New PAWS cluster' | paws | |
| CNAME | [u'login-trusty.tools.wmflabs.org.'] | None | tools, but at least it's a CNAME into tools, likely going away soon | |
| tools-login.wmflabs.org. | CNAME | [u'login.tools.wmflabs.org.'] | u'Legacy alias for login.tools.wmflabs.org.' | tools, but at least it's a CNAME into tools, likely difficult to get rid of |
| tools-dev.wmflabs.org. | CNAME | [u'stretch-dev.tools.wmflabs.org.'] | u'Legacy alias for Toolforge secondary bastion' | tools, but at least it's a CNAME into tools |
| paws.wmflabs.org. | A | [u'185.15.56.58'] | None | paws |
| paws-public.wmflabs.org. | A | [u'185.15.56.58'] | None | paws |
| paws-apiserver.wmflabs.org. | A | [u'172.16.2.151', u'172.16.2.149', u'172.16.2.150'] | None | paws, also internal IPs for HA work |