Page MenuHomePhabricator
Create Task
Maniphest T248944

Decommission dbproxy1010.eqiad.wmnet
Closed, ResolvedPublicRequest
Actions

Description

This task will track the decommission-hardware of server dbproxy1010.eqiad.wmnet

With the launch of updates to the decom cookbook, the majority of these steps can be handled by the service owners directly. The DC Ops team only gets involved once the system has been fully removed from service and powered down by the decommission cookbook.

dbproxy1010

Steps for service owner:

  • - all system services confirmed offline from production use
  • - Drop grants for 'haproxy'@'10.64.37.14' T231280
  • - set all icinga checks to maint mode/disabled while reclaim/decommmission takes place. https://gerrit.wikimedia.org/r/#/c/operations/puppet/+/584816/
  • - remove system from all lvs/pybal active configuration
  • - any service group puppet/hiera/dsh config removed
  • - remove site.pp, replace with role(spare::system) recommended to ensure services offline but not 100% required as long as the decom script is IMMEDIATELY run below. https://gerrit.wikimedia.org/r/#/c/operations/puppet/+/586165/
  • - login to cumin host and run the decom cookbook: cookbook sre.hosts.decommission <host fqdn> -t <phab task>. This does: bootloader wipe, host power down, netbox update to decommissioning status, puppet node clean, puppet node deactivate, debmonitor removal.
  • - remove all remaining puppet references (include role::spare) and all host entries in the puppet repo
  • - remove ALL dns entries except the asset tag mgmt entries. https://gerrit.wikimedia.org/r/#/c/operations/dns/+/586166/
  • - reassign task from service owner to DC ops team member depending on site of server: codfw = @Papaul, eqiad = @Jclark-ctr, all other sites = @RobH.

End service owner steps / Begin DC-Ops team steps:

  • - disable switch port / set to asset tag if host isn't being unracked / remove from switch if being unracked.
  • - system disks wiped (by onsite)
  • - determine system age, under 5 years are reclaimed to spare, over 5 years are decommissioned. If uncertain, ask @wiki_willy.
  • - IF DECOM: system unracked and decommissioned (by onsite), update netbox with result and set state to offline
  • - IF DECOM: switch port configration removed from switch once system is unracked.
  • - IF DECOM: add system to decommission tracking google sheet
  • - IF DECOM: mgmt dns entries removed.
  • - IF RECLAIM: set netbox state to 'inventory' and hostname to asset tag

Details

SubjectRepoBranchLines +/-
Removing mgmt dns entries for decom host dbproxy1010operations/dnsmaster+0 -4
dbproxy1010: Remove all puppet referencesoperations/puppetproduction+1 -19
wmnet: Remove production DNS entries for dbproxy1010operations/dnsmaster+0 -2
dbproxy1010: Disable notificationsoperations/puppetproduction+1 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

Marostegui created this task.Mar 31 2020, 5:49 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 31 2020, 5:49 AM
Marostegui added parent tasks: T231520: Replace labsdb (wikireplicas) dbproxies: dbproxy1010 and dbproxy1011, T231280: Remove grants for the old dbproxy hosts from the misc databases.Mar 31 2020, 5:49 AM
gerritbot added a comment.Mar 31 2020, 5:49 AM

Change 584816 had a related patch set uploaded (by Marostegui; owner: Marostegui):
[operations/puppet@production] dbproxy1010: Disable notifications

https://gerrit.wikimedia.org/r/584816

gerritbot added a project: Patch-For-Review.Mar 31 2020, 5:49 AM

Change 584816 merged by Marostegui:
[operations/puppet@production] dbproxy1010: Disable notifications

https://gerrit.wikimedia.org/r/584816

Marostegui updated the task description. (Show Details)Mar 31 2020, 5:53 AM
Marostegui mentioned this in T231520: Replace labsdb (wikireplicas) dbproxies: dbproxy1010 and dbproxy1011.
Marostegui moved this task from Triage to In progress on the DBA board.Mar 31 2020, 5:59 AM
Maintenance_bot removed a project: Patch-For-Review.Mar 31 2020, 6:10 AM
Stashbot added a comment.Apr 1 2020, 8:43 AM

Mentioned in SAL (#wikimedia-operations) [2020-04-01T08:43:29Z] <marostegui> Stop haproxy on dbproxy1010 T248944

Marostegui added a comment.Apr 1 2020, 8:46 AM

Stopped haproxy on dbproxy1010 - there were no active connections:

root@cumin1001:/home/marostegui# host dbproxy1010
dbproxy1010.eqiad.wmnet has address 10.64.37.14
root@cumin1001:/home/marostegui# for i in labsdb1009 labsdb1010 labsdb1011 labsdb1012; do echo $i; mysql.py -h $i  -e "show processlist" | grep "37.14" ; done
labsdb1009
labsdb1010
labsdb1011
labsdb1012
Marostegui updated the task description. (Show Details)Apr 1 2020, 8:47 AM
RobH unsubscribed.Apr 1 2020, 2:32 PM
Stashbot mentioned this in T231280: Remove grants for the old dbproxy hosts from the misc databases.Apr 2 2020, 9:47 AM

Mentioned in SAL (#wikimedia-operations) [2020-04-02T09:47:32Z] <marostegui> Remove haproxy@10.64.37.14 from labsdb hosts - T231280 T248944

Marostegui updated the task description. (Show Details)Apr 2 2020, 9:48 AM
Marostegui added a subscriber: RobH.
Marostegui added a comment.Apr 2 2020, 10:01 AM

Dropped haproxy user:

root@cumin1001:~# host dbproxy1010
dbproxy1010.eqiad.wmnet has address 10.64.37.14
root@cumin1001:~# for i in labsdb1009 labsdb1010 labsdb1011 labsdb1012; do mysql.py -h$i -e "show grants for 'haproxy'@'10.64.37.14';";done
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'haproxy' on host '10.64.37.14'
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'haproxy' on host '10.64.37.14'
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'haproxy' on host '10.64.37.14'
ERROR 1141 (42000) at line 1: There is no such grant defined for user 'haproxy' on host '10.64.37.14'
gerritbot added a comment.Apr 6 2020, 5:52 AM

Change 586165 had a related patch set uploaded (by Marostegui; owner: Marostegui):
[operations/puppet@production] dbproxy1010: Remove all puppet references

https://gerrit.wikimedia.org/r/586165

gerritbot added a project: Patch-For-Review.Apr 6 2020, 5:52 AM

Change 586166 had a related patch set uploaded (by Marostegui; owner: Marostegui):
[operations/dns@master] wmnet: Remove production DNS entries for dbproxy1010

https://gerrit.wikimedia.org/r/586166

ops-monitoring-bot added a comment.Apr 6 2020, 5:54 AM

cookbooks.sre.hosts.decommission executed by marostegui@cumin1001 for hosts: dbproxy1010.eqiad.wmnet

  • dbproxy1010.eqiad.wmnet (PASS)
    • Downtimed host on Icinga
    • Found physical host
    • Downtimed management interface on Icinga
    • Wiped bootloaders
    • Powered off
    • Set Netbox status to Decommissioning
    • Removed from DebMonitor
    • Removed from Puppet master and PuppetDB
gerritbot added a comment.Apr 6 2020, 5:55 AM

Change 586165 merged by Marostegui:
[operations/puppet@production] dbproxy1010: Remove all puppet references

https://gerrit.wikimedia.org/r/586165

gerritbot added a comment.Apr 6 2020, 5:56 AM

Change 586166 merged by Marostegui:
[operations/dns@master] wmnet: Remove production DNS entries for dbproxy1010

https://gerrit.wikimedia.org/r/586166

Marostegui reassigned this task from Marostegui to Jclark-ctr.Apr 6 2020, 5:57 AM
Marostegui updated the task description. (Show Details)
Marostegui edited projects, added SRE, decommission-hardware, ops-eqiad; removed Patch-For-Review, DBA.
Marostegui updated the task description. (Show Details)
Marostegui added a project: DC-Ops.

Ready for DC-Ops!

Cmjohnson moved this task from Backlog to Decommission on the ops-eqiad board.Apr 13 2020, 5:11 PM
gerritbot added a comment.May 18 2020, 3:32 PM

Change 597104 had a related patch set uploaded (by Cmjohnson; owner: Cmjohnson):
[operations/dns@master] Removing mgmt dns entries for decom host dbproxy1010

https://gerrit.wikimedia.org/r/597104

gerritbot added a project: Patch-For-Review.May 18 2020, 3:32 PM
gerritbot added a comment.May 18 2020, 3:35 PM

Change 597104 merged by Cmjohnson:
[operations/dns@master] Removing mgmt dns entries for decom host dbproxy1010

https://gerrit.wikimedia.org/r/597104

Cmjohnson closed this task as Resolved.May 18 2020, 3:41 PM
Cmjohnson updated the task description. (Show Details)
Cmjohnson subscribed.

updated and removed

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits