Page MenuHomePhabricator
Create Task
Maniphest T271133

Some Analytics clusters apparently do not support IPv6
Closed, ResolvedPublic
Actions

Description

Greetings!

During importation of DNS into Netbox as part of the transition to automation, we discovered some clusters do not have IPv6 DNS entries, which we interpreted as intentional (given that this was the mechanism used to prevent potential clients from accessing the IPv6 interfaces on the machine, if a given service did not support IPv6), and prevented from being imported into automation.

We are now triaging these clusters for their potential at supporting IPv6 in the future, so below are hosts which were left out of IPv6 DNS which we think that your team is responsible for. If you could take some time to put any information you have about supporting IPv6 on these clusters, specific plans for doing so, or if it will not in the forseeable future be possible to do so, it would be greatly appreciated!

If any of these machines don't belong to you let us know on this ticket or the parent task (T253173), thanks!

cc: Foundations

  • kafka-main[2001-2005].codfw.wmnet

Related Objects
Search...

Event Timeline

crusnov created this task.Jan 4 2021, 6:33 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJan 4 2021, 6:33 PM
crusnov triaged this task as Medium priority.Jan 4 2021, 6:35 PM
crusnov updated the task description. (Show Details)
Aklapper added a project: IPv6.Jan 4 2021, 7:42 PM
elukey subscribed.Jan 11 2021, 8:24 AM

The Druid nodes are part of different clusters already using ipv6, so we can add the records anytime (we'll also need to update some rules in puppet but it will be very quick). The notebook hosts are not in production anymore, we renamed them to different hostname (that should have ipv6).
The kafka-main node are all handled by infra foundations, but I think that they can work without any issue with ipv6.

What is the correct procedure to fix the records? Add them in netbox and then run the cookbook?

Volans subscribed.EditedJan 11 2021, 9:43 AM
In T271133#6735120, @elukey wrote:

What is the correct procedure to fix the records? Add them in netbox and then run the cookbook?

Yes, I've added this to the docs few days ago:
DNS/Netbox#How_can_I_add_the_IPv6_AAAA/PTR_records_to_a_host_that_doesn't_have_it?

elukey added a comment.Jan 11 2021, 10:53 AM

@crusnov I checked all the druid nodes and they have the AAAA records, and the notebook nodes have been repurposed, so I think that we are good from the analytics point of view. The kafka-main nodes are handled by SRE, I think that we can safely add the records incrementally as Volans pointed out.

elukey removed a project: Analytics.Jan 13 2021, 10:04 AM

Removed the Analytics tag since the work is done, ping me in case something is not right :)

crusnov moved this task from Backlog to In Progress on the User-crusnov board.Feb 23 2021, 4:40 PM
crusnov closed this task as Resolved.Mar 26 2021, 11:45 PM
crusnov claimed this task.

Thanks! I'm closing this ticket and updating the parent to reflect these changes.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL