Page MenuHomePhabricator
Create Task
Maniphest T319460

Q1:rack/setup/install frbast1002, frmon1002, frpig1002
Closed, ResolvedPublic
Actions

Description

This task will track the racking, setup, and OS installation of frbast1002, frmon1002, frpig1002

Hostname / Racking / Installation Details

Hostnames: frbast1002, frmon1002, frpig1002
Racking Proposal: c1-frack
Networking Setup: Use both 1G ports, 1 to each fasw.

  • frbast1002: vlan:frack-bastion-eqiad ip:10.64.40.36
  • frmon1002: vlan:frack-administration-eqiad ip:10.64.40.68
  • frpig1002: vlan:frack-listener-eqiad ip:10.64.40.165

Partitioning/Raid: fundraising techops will handle this
OS Distro: fundraising techops will handle this
Sub-team Technical Contact: @Jgreen
<Each procurement task also has a section with racking details, with the heading of "Hostname / Racking / Installation Details", this section will need to be copied and pasted here.>

Per host setup checklist

frbast1002:
  • - receive in system on procurement task T319444 & in coupa
  • - rack system with proposed racking plan (see above) & update netbox (include all system info plus location, state of planned)
  • - add mgmt dns (asset tag and hostname) and production dns entries in netbox, run cookbook sre.dns.netbox.
  • - network port setup via netbox, run homer from an active cumin host to commit
  • - bios/drac/serial setup/testing, see Lifecycle Steps & Automatic BIOS setup details
  • - firmware update (idrac, bios, network, raid controller)
  • - network policy configuration
  • - fundraising/puppet update
  • - OS installation
  • - network NAT configuration
  • - shift frbast dns to point to frbast1002
frmon1002:
  • - receive in system on procurement task T319444 & in coupa
  • - rack system with proposed racking plan (see above) & update netbox (include all system info plus location, state of planned)
  • - add mgmt dns (asset tag and hostname) and production dns entries in netbox, run cookbook sre.dns.netbox.
  • - network port setup via netbox, run homer from an active cumin host to commit
  • - bios/drac/serial setup/testing, see Lifecycle Steps & Automatic BIOS setup details
  • - firmware update (idrac, bios, network, raid controller)
  • - network policy configuration
  • - fundraising/puppet update
  • - OS installation.
  • - network NAT configuration - T340252
  • - migrate LE certbot
frpig1002:
  • - receive in system on procurement task T319444 & in coupa
  • - rack system with proposed racking plan (see above) & update netbox (include all system info plus location, state of planned)
  • - add mgmt dns (asset tag and hostname) and production dns entries in netbox, run cookbook sre.dns.netbox.
  • - network port setup via netbox, run homer from an active cumin host to commit
  • - bios/drac/serial setup/testing, see Lifecycle Steps & Automatic BIOS setup details
  • - firmware update (idrac, bios, network, raid controller)
  • - network policy configuration
  • - fundraising/puppet update
  • - OS installation
  • - network NAT configuration
  • - shift payments-listener dns to point to frpig1002
  • - migrate LE certbot

Details

SubjectRepoBranchLines +/-
Add frmon1002 to monitoringoperations/puppetproduction+13 -0
Remove frpig1001 from nsca_frack.cfg.erb in prep for decom.operations/puppetproduction+0 -13
Switch blackbox_smoke_hosts check from frpig.* to payments-listener-.*operations/puppetproduction+2 -2
Switch payments-listener-eqiad to the new server/ip.operations/dnsmaster+4 -4
Shift frbast names to using the new hostsoperations/dnsmaster+5 -9
Shift frbast names to using the new hostsoperations/dnsmaster+3 -5
Add monitoring for new fr-tech hostsoperations/puppetproduction+65 -0
Direct frbast.wm.o at the new frbast1002 hostoperations/dnsmaster+1 -1
Add mappings for new frbast and payments-listener hostsoperations/dnsmaster+4 -0
Add hosts frbast1002,frmon1002,frpig1002, remove frauth1001,frpm1001operations/dnsmaster+6 -4
Customize query in gerrit

Related Objects
Search...

StatusSubtypeAssignedTask
Unknown Object (Task)
 ResolvedDwisehauptT319460 Q1:rack/setup/install frbast1002, frmon1002, frpig1002
Restricted Task

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes
RobH added a parent task: Unknown Object (Task).Oct 5 2022, 6:52 PM
RobH mentioned this in Unknown Object (Task).
Jgreen moved this task from Triage to Backlog on the fundraising-tech-ops board.Oct 6 2022, 12:48 PM
Cmjohnson moved this task from Backlog to Racking Tasks on the ops-eqiad board.Oct 27 2022, 2:51 PM
RobH unsubscribed.Oct 27 2022, 7:35 PM
Jclark-ctr updated the task description. (Show Details)Dec 9 2022, 2:39 PM

@Jgreen these have been received is this urgent or could I wait till after fundraising to rack and cable these?

Dwisehaupt subscribed.Feb 7 2023, 11:03 PM

@Jclark-ctr Sorry for the delay on this. They weren't urgent and now the December fundraising is complete. You are clear to rack and cable these hosts when you are available.

Dwisehaupt moved this task from Backlog to Up Next on the fundraising-tech-ops board.Feb 7 2023, 11:05 PM
Jclark-ctr added a comment.Feb 24 2023, 4:14 PM

frbast1002 port 9
frmon1002 port 11
frpig1002 port 1

Jclark-ctr updated the task description. (Show Details)Feb 24 2023, 4:14 PM
Jclark-ctr moved this task from Racking Tasks to Remote Work on the ops-eqiad board.Mar 2 2023, 2:18 PM
Jgreen updated the task description. (Show Details)Mar 3 2023, 1:54 PM
gerritbot added a comment.Mar 3 2023, 1:59 PM

Change 894044 had a related patch set uploaded (by Jgreen; author: Jgreen):

[operations/dns@master] Add hosts frbast1002,frmon1002,frpig1002, remove frauth1001,frpm1001

https://gerrit.wikimedia.org/r/894044

gerritbot added a project: Patch-For-Review.Mar 3 2023, 1:59 PM
gerritbot added a comment.Mar 3 2023, 2:02 PM

Change 894044 merged by Jgreen:

[operations/dns@master] Add hosts frbast1002,frmon1002,frpig1002, remove frauth1001,frpm1001

https://gerrit.wikimedia.org/r/894044

Maintenance_bot removed a project: Patch-For-Review.Mar 3 2023, 2:10 PM
Cmjohnson claimed this task.Mar 3 2023, 3:50 PM
Cmjohnson updated the task description. (Show Details)
Cmjohnson added a subscriber: Jclark-ctr.

updated network switches

Cmjohnson added a comment.Mar 9 2023, 4:43 PM

I received an idrac error on 3 of these hosts, I confirmed with Jeff that he is not able to access the host. I am going to try and update the idrac firmware

Papaul mentioned this in T332523: Eqiad: Backlog HW failure-racking tasks - Decommision and remote work tasks .Mar 19 2023, 8:38 PM
Papaul subscribed.EditedMar 31 2023, 7:13 PM

@Cmjohnson @Jgreen i did a quick look in Netbox for frbast1002 mgmt IP address it looks like this node is using 10.64.40.36/26 or eqiad mgmt network is 10.64.40.192/26 so no ip address below 192 maybe this is why your guys are having issue because the IP address is not in the management network. I think this will be also true for the other 2 servers.
https://netbox.wikimedia.org/ipam/prefixes/118/

Jclark-ctr added a comment.Apr 14 2023, 2:31 PM

Updated netbox and idracs on all three servers

frbast1002: vlan:frack-bastion-eqiad ip:10.64.40.196
frmon1002: vlan:frack-administration-eqiad ip:10.64.40.198
frpig1002: vlan:frack-listener-eqiad ip:10.64.40.202

Papaul added a comment.Apr 14 2023, 4:16 PM

@Jgreen can you please confirm that you an not access those servers so you can take over the task?

thanks

Jgreen added a comment.Apr 14 2023, 4:18 PM
In T319460#8782417, @Papaul wrote:

@Jgreen can you please confirm that you an not access those servers so you can take over the task?

thanks

I can access them now, thanks! Is there still firmware updating to be done? Otherwise I think we're all set.

Papaul added a comment.Apr 14 2023, 8:16 PM

@Jgreen I can check and let you know on the firmware update.

Papaul added a comment.Apr 14 2023, 8:56 PM

@Jgreen we will have to update the firmware on those.

Papaul reassigned this task from Cmjohnson to Jgreen.Apr 18 2023, 12:54 PM
Papaul added a subscriber: Cmjohnson.

@Jgreen All firmware up to date on servers. All yours

Jgreen added a subtask: Restricted Task.Apr 18 2023, 6:16 PM
Jgreen updated the task description. (Show Details)Apr 18 2023, 6:20 PM
ayounsi closed subtask Restricted Task as Resolved.Apr 19 2023, 7:12 AM
Dwisehaupt added a comment.Apr 19 2023, 6:51 PM

I just attempted to build frbast1002 and frpig1002 and neither got a dhcp offer. Could we please verify that all the hosts are in the correct VLANs? Thanks.

Dwisehaupt reassigned this task from Jgreen to Cmjohnson.Apr 19 2023, 6:58 PM
Papaul added a comment.Apr 19 2023, 10:55 PM

@Dwisehaupt i checked on the switch all the interfaces are configured and up maybe the server were not added to DNS since we do not manage Frack DNS in netbox we need to add those servers manually into the DNS file.l I will cehck the DNS file once i am home. Thanks

papaul@fasw-c-eqiad> show interfaces ge-[0-1]/0/9 descriptions 
Interface       Admin Link Description
ge-0/0/9        up    up   frbast1002
ge-1/0/9        up    up   frbast1002

{master:0}
papaul@fasw-c-eqiad> show interfaces ge-[0-1]/0/11 descriptions   
Interface       Admin Link Description
ge-0/0/11       up    up   frmon1002
ge-1/0/11       up    up   frmon1002

{master:0}
papaul@fasw-c-eqiad> show interfaces ge-[0-1]/0/1 descriptions     
Interface       Admin Link Description
ge-0/0/1        up    up   frpig1002
ge-1/0/1        up    up   frpig1002
Dwisehaupt added a comment.Apr 19 2023, 11:32 PM

@Papaul Thanks, I have verified they are in DNS.

I think there may be some crossing in cables or vlans. When I try to build a host, I'm seeing the entry in the dhcp server logs, but they are coming from the wrong subnets.

When trying to build frbast1002, I see the following:

    frbast1002:
        ipaddress: '10.64.40.36'
        macaddress: 'F4:EE:08:3F:01:FF'

$ host frbast1002
frbast1002.frack.eqiad.wmnet has address 10.64.40.36

$ tail -f /var/log/syslog | grep dhcp
Apr 19 23:11:20 frpm1002 dhcpd[4010214]: DHCPDISCOVER from f4:ee:08:3f:01:ff via 10.64.40.161: network 10.64.40.160/27: no free leases
Apr 19 23:11:24 frpm1002 dhcpd[4010214]: DHCPDISCOVER from f4:ee:08:3f:01:ff via 10.64.40.161: network 10.64.40.160/27: no free leases

When trying to build frpig1002, I see:

    frpig1002:
        ipaddress: '10.64.40.165'
        macaddress: 'f4:ee:08:3f:04:c7'

$ host frpig1002
frpig1002.frack.eqiad.wmnet has address 10.64.40.165

$ tail -f /var/log/syslog | grep dhcp
Apr 19 23:25:52 frpm1002 dhcpd[4010214]: DHCPDISCOVER from f4:ee:08:3f:04:c7 via 10.64.40.33: network 10.64.40.32/27: no free leases
Apr 19 23:25:56 frpm1002 dhcpd[4010214]: DHCPDISCOVER from f4:ee:08:3f:04:c7 via 10.64.40.33: network 10.64.40.32/27: no free leases

Thanks for any help.

Dwisehaupt added a comment.Apr 20 2023, 12:15 AM

@Cmjohnson I did some debugging with @Papaul online and we think there may be a crossed cable issue between frbast1002 and frpig1002.

Could you please verify the cable paths of the two hosts when you are next on site? Thanks.

Jclark-ctr added a comment.Apr 20 2023, 2:56 PM

Verified cables and corrected them @Dwisehaupt

Dwisehaupt added a comment.Apr 20 2023, 6:23 PM

@Jclark-ctr Thanks! I can verify that worked and I have been able to start building out the hosts.

Dwisehaupt claimed this task.Apr 20 2023, 6:24 PM
Dwisehaupt updated the task description. (Show Details)
Dwisehaupt mentioned this in T333485: Fr-Tech 2022q4 maintenance window.Apr 25 2023, 11:56 PM
gerritbot added a comment.Apr 26 2023, 4:53 PM

Change 912340 had a related patch set uploaded (by Dwisehaupt; author: Dwisehaupt):

[operations/dns@master] Add mappings for new frbast and payments-listener hosts

https://gerrit.wikimedia.org/r/912340

gerritbot added a project: Patch-For-Review.Apr 26 2023, 4:53 PM
gerritbot added a comment.Apr 26 2023, 5:04 PM

Change 912340 merged by Jgreen:

[operations/dns@master] Add mappings for new frbast and payments-listener hosts

https://gerrit.wikimedia.org/r/912340

Maintenance_bot removed a project: Patch-For-Review.Apr 26 2023, 5:11 PM
Dwisehaupt moved this task from Up Next to In Progress on the fundraising-tech-ops board.Apr 26 2023, 5:43 PM
Dwisehaupt updated the task description. (Show Details)Apr 27 2023, 6:30 PM

NAT mappings in place. Tested frbast1002 usage via a host file change on my local host with my current config and the stock config we provide users.

gerritbot added a comment.May 4 2023, 5:51 PM

Change 915811 had a related patch set uploaded (by Dwisehaupt; author: Dwisehaupt):

[operations/dns@master] Direct frbast.wm.o at the new frbast1002 host

https://gerrit.wikimedia.org/r/915811

gerritbot added a project: Patch-For-Review.May 4 2023, 5:51 PM
gerritbot added a comment.May 4 2023, 5:58 PM

Change 915811 merged by Jgreen:

[operations/dns@master] Direct frbast.wm.o at the new frbast1002 host

https://gerrit.wikimedia.org/r/915811

Maintenance_bot removed a project: Patch-For-Review.May 4 2023, 6:10 PM
Dwisehaupt updated the task description. (Show Details)May 4 2023, 6:13 PM
Dwisehaupt mentioned this in T333246: reimage fundraising bastion (frbast) role servers to Bullseye.May 8 2023, 9:52 PM
gerritbot added a comment.May 10 2023, 12:30 AM

Change 916617 had a related patch set uploaded (by Dwisehaupt; author: Dwisehaupt):

[operations/puppet@production] Add monitoring for new fr-tech hosts

https://gerrit.wikimedia.org/r/916617

gerritbot added a project: Patch-For-Review.May 10 2023, 12:30 AM
gerritbot added a comment.May 10 2023, 12:20 PM

Change 916617 merged by Jgreen:

[operations/puppet@production] Add monitoring for new fr-tech hosts

https://gerrit.wikimedia.org/r/916617

Maintenance_bot removed a project: Patch-For-Review.May 10 2023, 12:30 PM
Dwisehaupt moved this task from In Progress to Up Next on the fundraising-tech-ops board.May 11 2023, 7:59 PM
gerritbot added a comment.May 17 2023, 7:36 PM

Change 920777 had a related patch set uploaded (by Dwisehaupt; author: Dwisehaupt):

[operations/dns@master] Shift frbast names to using the new hosts

https://gerrit.wikimedia.org/r/920777

gerritbot added a project: Patch-For-Review.May 17 2023, 7:36 PM
gerritbot added a comment.May 17 2023, 7:42 PM

Change 920779 had a related patch set uploaded (by Dwisehaupt; author: Dwisehaupt):

[operations/dns@master] Shift frbast names to using the new hosts

https://gerrit.wikimedia.org/r/920779

gerritbot added a comment.May 17 2023, 7:43 PM

Change 920777 abandoned by Dwisehaupt:

[operations/dns@master] Shift frbast names to using the new hosts

Reason:

https://gerrit.wikimedia.org/r/920777

gerritbot added a comment.May 17 2023, 7:45 PM

Change 920779 merged by Jgreen:

[operations/dns@master] Shift frbast names to using the new hosts

https://gerrit.wikimedia.org/r/920779

Maintenance_bot removed a project: Patch-For-Review.May 17 2023, 8:12 PM
Dwisehaupt updated the task description. (Show Details)May 22 2023, 8:40 PM
Papaul added a comment.Jun 12 2023, 1:00 PM

@Dwisehaupt anything else we can do to help with this task?

Dwisehaupt added a comment.Jun 12 2023, 6:32 PM

@Papaul Your side is all set. We have some switch overs scheduled for the end of the month to finish up our side of the task too. Thanks for checking in.

gerritbot added a comment.Jun 21 2023, 6:12 PM

Change 931985 had a related patch set uploaded (by Jgreen; author: Jgreen):

[operations/dns@master] Switch payments-listener-eqiad to the new server/ip.

https://gerrit.wikimedia.org/r/931985

gerritbot added a project: Patch-For-Review.Jun 21 2023, 6:12 PM
gerritbot added a comment.Jun 21 2023, 6:18 PM

Change 931985 merged by Jgreen:

[operations/dns@master] Switch payments-listener-eqiad to the new server/ip.

https://gerrit.wikimedia.org/r/931985

Maintenance_bot removed a project: Patch-For-Review.Jun 21 2023, 6:30 PM
Dwisehaupt updated the task description. (Show Details)Jun 21 2023, 6:37 PM
Jgreen added a comment.Jun 22 2023, 2:58 PM

Confirmed traffic to frpig1001 has stopped. Taking it out of monitoring so we can shut it down and start the decom.

gerritbot added a comment.Jun 22 2023, 2:59 PM

Change 932257 had a related patch set uploaded (by Jgreen; author: Jgreen):

[operations/puppet@production] Remove frpig1001.frack.eqiad.wmnet from nsca_frack.cfg.erb in prep for decommission.

https://gerrit.wikimedia.org/r/932257

gerritbot added a project: Patch-For-Review.Jun 22 2023, 2:59 PM
gerritbot added a comment.Jun 23 2023, 1:31 PM

Change 932257 merged by Filippo Giunchedi:

[operations/puppet@production] Remove frpig1001 from nsca_frack.cfg.erb in prep for decom.

https://gerrit.wikimedia.org/r/932257

gerritbot added a comment.Jun 23 2023, 2:00 PM

Change 932420 had a related patch set uploaded (by Jgreen; author: Jgreen):

[operations/puppet@production] Switch blackbox_smoke_hosts check from frpig.* to payments-listener-.*

https://gerrit.wikimedia.org/r/932420

gerritbot added a comment.Jun 23 2023, 2:01 PM

Change 932420 merged by Filippo Giunchedi:

[operations/puppet@production] Switch blackbox_smoke_hosts check from frpig.* to payments-listener-.*

https://gerrit.wikimedia.org/r/932420

Maintenance_bot removed a project: Patch-For-Review.Jun 23 2023, 2:10 PM
Dwisehaupt updated the task description. (Show Details)Jun 23 2023, 7:32 PM
Dwisehaupt moved this task from Up Next to In Progress on the fundraising-tech-ops board.Jun 23 2023, 11:23 PM
gerritbot added a comment.Jun 26 2023, 11:01 PM

Change 933199 had a related patch set uploaded (by Dwisehaupt; author: Dwisehaupt):

[operations/puppet@production] Add frmon1002 to monitoring

https://gerrit.wikimedia.org/r/933199

gerritbot added a project: Patch-For-Review.Jun 26 2023, 11:01 PM
gerritbot added a comment.Jul 5 2023, 2:12 PM

Change 933199 merged by Jgreen:

[operations/puppet@production] Add frmon1002 to monitoring

https://gerrit.wikimedia.org/r/933199

Maintenance_bot removed a project: Patch-For-Review.Jul 5 2023, 2:30 PM
Dwisehaupt closed this task as Resolved.Jul 19 2023, 6:44 PM
Dwisehaupt updated the task description. (Show Details)
Dwisehaupt moved this task from In Progress to Done on the fundraising-tech-ops board.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL