Page MenuHomePhabricator
Create Task
Maniphest T242715

Webproxies are a SPOF
Open, MediumPublic
Actions

Description

Reading T242602 made me realize that the web-proxies are a SPOF.

As it's not possible to specify more than one proxy uri per client server, and the current FQDN are only CNAMEs to single servers. A server failure requires a DNS change. https://wikitech.wikimedia.org/wiki/HTTP_proxy

I'm not sure how critical those proxies are, and what level of availability is expected from them, but they look like good candidates for anycast.

It would mean simplified configuration (all hosts use webproxy.anycast.wmnet. And automatic (cross-DC) failover if a node fails, similar to rec-dns.

I haven't look at the current webproxy Puppet stanzas but configuration should be straightforward: https://wikitech.wikimedia.org/wiki/Anycast#How_to_deploy_a_new_service?

Related Objects

Event Timeline

ayounsi triaged this task as Medium priority.Jan 14 2020, 8:29 AM
ayounsi created this task.
Restricted Application added subscribers: Gilles, Aklapper. · View Herald TranscriptJan 14 2020, 8:29 AM
jijiki added a subscriber: jijiki.Jan 14 2020, 8:33 AM
Joe added a subscriber: Joe.Jan 14 2020, 8:38 AM

One problem I see with this is - proxy IPs regularly get banned by third-party services by accident. So having multiple *external* IPs, and being able to switch between them, is a plus.

I think you're right that the proxies are a SPOF, but I see more controlled ways we could use to make them redundant, like having more than one of them per DC, and load-balance between them.

faidon added a subscriber: faidon.Jan 16 2020, 12:18 PM

I think increasing the availability and resilience of this service is an excellent idea! However, adding more servers to per site feels like a requirement, and a standard Pybal/IPVS setup sounds much more appropriate than anycast for this use case.

More broadly: Pybal/IPVS and anycast have some overlap in the feature set that they provide to services, but given both how we use and have architected these two solutions, I think we should favor the former over the latter for the vast majority of the use cases and limit the anycast deployments only to special cases. Ideally these two offerings would eventually converge, but I feel like we're far from that right now.

Volans added a subscriber: Volans.Feb 18 2020, 10:41 PM

+1 for improving HA of them and I agree that the LVS approach seems the saner one
If we don't plan to do this anytime soon though, maybe we could make an intermediate step with geodns.
We could have webproxy.discovery.wmnet resolving the local proxy by default but in case of maintenance or such we could depool one and have the clients use the proxy in another DC.

ayounsi renamed this task from Anycast for webproxies to Webproxies are a SPOF.Feb 18 2020, 10:43 PM
Dzahn added a subscriber: Dzahn.Mar 4 2020, 5:40 PM
jbond added a subscriber: jbond.Jun 11 2021, 1:49 PM
cmooney added a subscriber: cmooney.Jun 11 2021, 3:10 PM
ayounsi mentioned this in T303803: Prometheus use of Squid proxies.Mar 21 2022, 9:44 AM
jbond edited projects, added Infrastructure-Foundations; removed SRE.May 23 2023, 12:14 PM
Content licensed under Creative Commons Attribution-ShareAlike 4.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL