Page MenuHomePhabricator
Create Task
Maniphest T234464

Echostore service endpoints
Closed, ResolvedPublic
Actions

Description

LVS will need to be setup for Echo timestamp storage (echostore.svc.{eqiad,codfw}.wmnet?), along with discovery (echostore.discovery.wmnet?).

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
echostore: add discovery recordoperations/dnsmaster+2 -0
echostore: add LVS configuration stanzasoperations/puppetproduction+38 -0
echostore: add LVS service IPsoperations/dnsmaster+4 -2
Customize query in gerrit

Related Objects
Search...

Event Timeline

Eevans created this task.Oct 2 2019, 6:20 PM
Eevans triaged this task as Medium priority.
Eevans removed a project: Story.
Eevans added projects: SRE, serviceops.Oct 3 2019, 6:25 PM
gerritbot added a comment.Oct 7 2019, 2:56 PM

Change 541275 had a related patch set uploaded (by Giuseppe Lavagetto; owner: Giuseppe Lavagetto):
[operations/dns@master] echostore: add LVS service IPs

https://gerrit.wikimedia.org/r/541275

gerritbot added a project: Patch-For-Review.Oct 7 2019, 2:56 PM

Change 541276 had a related patch set uploaded (by Giuseppe Lavagetto; owner: Giuseppe Lavagetto):
[operations/dns@master] echostore: add discovery record

https://gerrit.wikimedia.org/r/541276

gerritbot added a comment.Oct 15 2019, 11:35 AM

Change 543123 had a related patch set uploaded (by Giuseppe Lavagetto; owner: Giuseppe Lavagetto):
[operations/puppet@production] echostore: add LVS configuration stanzas

https://gerrit.wikimedia.org/r/543123

gerritbot added a comment.Oct 15 2019, 3:00 PM

Change 541275 merged by Giuseppe Lavagetto:
[operations/dns@master] echostore: add LVS service IPs

https://gerrit.wikimedia.org/r/541275

Joe subscribed.Oct 15 2019, 3:17 PM

I've done all the puppet/dns prep work. You can now proceed to prepare this new kask deployment in operations/deployment-charts.

Data you will need:

  • use port 8082
  • for the kask cert, use
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

which I generated for echostore.discovery.wmnet

  • for the cassandra ca cert, use
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

(the contents of the CA for the restbase cassandra cluster) in production, and the appropriate value for staging.

and ofc otherwise substitute the values used for sessionstore with the appropriate ones for echostore.

Eevans added a comment.Oct 15 2019, 3:23 PM
In T234464#5575683, @Joe wrote:

I've done all the puppet/dns prep work. You can now proceed to prepare this new kask deployment in operations/deployment-charts.

[ ... ]

This is great; Thanks again @Joe !

gerritbot added a comment.Oct 18 2019, 9:12 AM

Change 543123 merged by Giuseppe Lavagetto:
[operations/puppet@production] echostore: add LVS configuration stanzas

https://gerrit.wikimedia.org/r/543123

gerritbot added a comment.Oct 18 2019, 10:04 AM

Change 541276 merged by Giuseppe Lavagetto:
[operations/dns@master] echostore: add discovery record

https://gerrit.wikimedia.org/r/541276

Joe closed this task as Resolved.Oct 18 2019, 10:08 AM
Joe claimed this task.
~$ curl https://echostore.discovery.wmnet:8082/healthz
{
  "version": "v1.0.5",
  "build_date": "2019-10-03T19:30:15+00:00",
  "build_host": "87a0b5ccf9a6",
  "go_version": "go1.11.5"
}

Echostore is now properly installed in production. Resolving the task.

Maintenance_bot removed a project: Patch-For-Review.Oct 18 2019, 10:10 AM
CCicalese_WMF moved this task from Backlog to Done! on the Platform Team Workboards (User Stories) board.Oct 22 2019, 7:36 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits