Page MenuHomePhabricator
Create Task
Maniphest T303045

decommission kubernetes200[1-4]
Closed, ResolvedPublicRequest
Actions

Description

This task will track the decommission-hardware of server kubernetes200[1-4].

With the launch of updates to the decom cookbook, the majority of these steps can be handled by the service owners directly. The DC Ops team only gets involved once the system has been fully removed from service and powered down by the decommission cookbook.

kubernetes2001

Steps for service owner:

  • - all system services confirmed offline from production use
  • - set all icinga checks to maint mode/disabled while reclaim/decommmission takes place. (likely done by script)
  • - remove system from all lvs/pybal active configuration
  • - any service group puppet/hiera/dsh config removed
  • - remove site.pp, replace with role(spare::system) recommended to ensure services offline but not 100% required as long as the decom script is IMMEDIATELY run below.
  • - login to cumin host and run the decom cookbook: cookbook sre.hosts.decommission <host fqdn> -t <phab task>. This does: bootloader wipe, host power down, netbox update to decommissioning status, puppet node clean, puppet node deactivate, debmonitor removal, and run homer.
  • - remove all remaining puppet references and all host entries in the puppet repo
  • - reassign task from service owner to DC ops team member and site project (ops-sitename) depending on site of server

End service owner steps / Begin DC-Ops team steps:

  • - system disks removed (by onsite)
  • - determine system age, under 5 years are reclaimed to spare, over 5 years are decommissioned.
  • - IF DECOM: system unracked and decommissioned (by onsite), update netbox with result and set state to offline
  • - IF DECOM: mgmt dns entries removed.
  • - IF RECLAIM: set netbox state to 'inventory' and hostname to asset tag

kubernetes2002

Steps for service owner:

  • - all system services confirmed offline from production use
  • - set all icinga checks to maint mode/disabled while reclaim/decommmission takes place. (likely done by script)
  • - remove system from all lvs/pybal active configuration
  • - any service group puppet/hiera/dsh config removed
  • - remove site.pp, replace with role(spare::system) recommended to ensure services offline but not 100% required as long as the decom script is IMMEDIATELY run below.
  • - login to cumin host and run the decom cookbook: cookbook sre.hosts.decommission <host fqdn> -t <phab task>. This does: bootloader wipe, host power down, netbox update to decommissioning status, puppet node clean, puppet node deactivate, debmonitor removal, and run homer.
  • - remove all remaining puppet references and all host entries in the puppet repo
  • - reassign task from service owner to DC ops team member and site project (ops-sitename) depending on site of server

End service owner steps / Begin DC-Ops team steps:

  • - system disks removed (by onsite)
  • - determine system age, under 5 years are reclaimed to spare, over 5 years are decommissioned.
  • - IF DECOM: system unracked and decommissioned (by onsite), update netbox with result and set state to offline
  • - IF DECOM: mgmt dns entries removed.
  • - IF RECLAIM: set netbox state to 'inventory' and hostname to asset tag

kubernetes2003

Steps for service owner:

  • - all system services confirmed offline from production use
  • - set all icinga checks to maint mode/disabled while reclaim/decommmission takes place. (likely done by script)
  • - remove system from all lvs/pybal active configuration
  • - any service group puppet/hiera/dsh config removed
  • - remove site.pp, replace with role(spare::system) recommended to ensure services offline but not 100% required as long as the decom script is IMMEDIATELY run below.
  • - login to cumin host and run the decom cookbook: cookbook sre.hosts.decommission <host fqdn> -t <phab task>. This does: bootloader wipe, host power down, netbox update to decommissioning status, puppet node clean, puppet node deactivate, debmonitor removal, and run homer.
  • - remove all remaining puppet references and all host entries in the puppet repo
  • - reassign task from service owner to DC ops team member and site project (ops-sitename) depending on site of server

End service owner steps / Begin DC-Ops team steps:

  • - system disks removed (by onsite)
  • - determine system age, under 5 years are reclaimed to spare, over 5 years are decommissioned.
  • - IF DECOM: system unracked and decommissioned (by onsite), update netbox with result and set state to offline
  • - IF DECOM: mgmt dns entries removed.
  • - IF RECLAIM: set netbox state to 'inventory' and hostname to asset tag

kubernetes2004

Steps for service owner:

  • - all system services confirmed offline from production use
  • - set all icinga checks to maint mode/disabled while reclaim/decommmission takes place. (likely done by script)
  • - remove system from all lvs/pybal active configuration
  • - any service group puppet/hiera/dsh config removed
  • - remove site.pp, replace with role(spare::system) recommended to ensure services offline but not 100% required as long as the decom script is IMMEDIATELY run below.
  • - login to cumin host and run the decom cookbook: cookbook sre.hosts.decommission <host fqdn> -t <phab task>. This does: bootloader wipe, host power down, netbox update to decommissioning status, puppet node clean, puppet node deactivate, debmonitor removal, and run homer.
  • - remove all remaining puppet references and all host entries in the puppet repo
  • - reassign task from service owner to DC ops team member and site project (ops-sitename) depending on site of server

End service owner steps / Begin DC-Ops team steps:

  • - system disks removed (by onsite)
  • - determine system age, under 5 years are reclaimed to spare, over 5 years are decommissioned.
  • - IF DECOM: system unracked and decommissioned (by onsite), update netbox with result and set state to offline
  • - IF DECOM: mgmt dns entries removed.
  • - IF RECLAIM: set netbox state to 'inventory' and hostname to asset tag

Details

SubjectRepoBranchLines +/-
Remove BGP config for kubernetes[12]00[1-4]operations/homer/publicmaster+0 -8
decommission kubernetes[12]00[1-4]operations/puppetproduction+2 -103
Customize query in gerrit

Related Objects
Search...

Event Timeline

JMeybohm changed the task status from Open to Stalled.Mar 4 2022, 1:52 PM
JMeybohm created this task.
JMeybohm added parent tasks: T302208: setup/install kubernetes20[1(89)|2(012)], T300744: Move kubernetes workers to bullseye and docker to overlayfs.
JMeybohm mentioned this in T300744: Move kubernetes workers to bullseye and docker to overlayfs.
akosiaris changed the task status from Stalled to Open.Mar 18 2022, 10:50 AM
Stashbot added a comment.Mar 18 2022, 10:51 AM

Mentioned in SAL (#wikimedia-operations) [2022-03-18T10:51:24Z] <akosiaris> depool kubernetes200[1-4] T303045

Stashbot added a comment.Mar 18 2022, 10:52 AM

Mentioned in SAL (#wikimedia-operations) [2022-03-18T10:52:48Z] <akosiaris> drain kubernetes200[1-4] T303045

gerritbot added a comment.Mar 18 2022, 10:55 AM

Change 771850 had a related patch set uploaded (by Alexandros Kosiaris; author: Alexandros Kosiaris):

[operations/puppet@production] decommission kubernetes[12]00[1-4]

https://gerrit.wikimedia.org/r/771850

gerritbot added a project: Patch-For-Review.Mar 18 2022, 10:55 AM
gerritbot added a comment.Mar 28 2022, 2:12 PM

Change 771850 merged by Alexandros Kosiaris:

[operations/puppet@production] decommission kubernetes[12]00[1-4]

https://gerrit.wikimedia.org/r/771850

Maintenance_bot removed a project: Patch-For-Review.Mar 28 2022, 3:11 PM
ops-monitoring-bot added a comment.Mar 28 2022, 3:15 PM

cookbooks.sre.hosts.decommission executed by akosiaris@cumin1001 for hosts: kubernetes[2001-2004].codfw.wmnet

  • kubernetes2001.codfw.wmnet (PASS)
    • Downtimed host on Icinga/Alertmanager
    • Found physical host
    • Downtimed management interface on Icinga/Alertmanager
    • Wiped all swraid, partition-table and filesystem signatures
    • Powered off
    • Set Netbox status to Decommissioning and deleted all non-mgmt interfaces and related IPs
    • Removed from DebMonitor
    • Removed from Puppet master and PuppetDB
  • kubernetes2002.codfw.wmnet (PASS)
    • Downtimed host on Icinga/Alertmanager
    • Found physical host
    • Downtimed management interface on Icinga/Alertmanager
    • Wiped all swraid, partition-table and filesystem signatures
    • Powered off
    • Set Netbox status to Decommissioning and deleted all non-mgmt interfaces and related IPs
    • Removed from DebMonitor
    • Removed from Puppet master and PuppetDB
  • kubernetes2003.codfw.wmnet (PASS)
    • Downtimed host on Icinga/Alertmanager
    • Found physical host
    • Downtimed management interface on Icinga/Alertmanager
    • Wiped all swraid, partition-table and filesystem signatures
    • Powered off
    • Set Netbox status to Decommissioning and deleted all non-mgmt interfaces and related IPs
    • Removed from DebMonitor
    • Removed from Puppet master and PuppetDB
  • kubernetes2004.codfw.wmnet (PASS)
    • Downtimed host on Icinga/Alertmanager
    • Found physical host
    • Downtimed management interface on Icinga/Alertmanager
    • Wiped all swraid, partition-table and filesystem signatures
    • Powered off
    • Set Netbox status to Decommissioning and deleted all non-mgmt interfaces and related IPs
    • Removed from DebMonitor
    • Removed from Puppet master and PuppetDB
akosiaris updated the task description. (Show Details)Mar 28 2022, 3:25 PM
akosiaris edited projects, added ops-codfw; removed serviceops.
gerritbot added a comment.Mar 31 2022, 9:44 AM

Change 775814 had a related patch set uploaded (by JMeybohm; author: JMeybohm):

[operations/homer/public@master] Remove BGP config for kubernetes[12]00[1-4]

https://gerrit.wikimedia.org/r/775814

gerritbot added a project: Patch-For-Review.Mar 31 2022, 9:44 AM
Maintenance_bot added a project: SRE.Mar 31 2022, 9:45 AM
gerritbot added a comment.Mar 31 2022, 9:50 AM

Change 775814 merged by JMeybohm:

[operations/homer/public@master] Remove BGP config for kubernetes[12]00[1-4]

https://gerrit.wikimedia.org/r/775814

Maintenance_bot removed a project: Patch-For-Review.Mar 31 2022, 10:11 AM
Papaul claimed this task.Mar 31 2022, 3:19 PM
Papaul closed this task as Resolved.Mar 31 2022, 4:15 PM
Papaul updated the task description. (Show Details)

complete

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL