Page MenuHomePhabricator
Create Task
Maniphest T341063

eqiad1: introduce cloud-private support
Closed, ResolvedPublic
Actions

Description

Introduce cloud-private network support, which includes at least:

  • network CIDR allocation
  • DNS integration w/ netbox
  • refresh puppet hiera to support per-row cloudsw FQDNs and vlan numbers
  • configure gateways, BGP, and other routing stuff in cloudsw devices

See also: T335759: cloud-private subnet: introduce new domain

Details

SubjectRepoBranchLines +/-
network: data: add new cloud CIDRs for eqiad1operations/puppetproduction+12 -0
wmcs: cloud_private_subnet: introduce per-rack vlan_id supportoperations/puppetproduction+73 -20
wmcs: cloud_private_subnet: introduce per-rack cloudsw gw supportoperations/puppetproduction+25 -9
private.eqiad.wikimedia.cloud: introduce support for new zoneoperations/dnsmaster+26 -6
Customize query in gerrit

Related Objects
Search...

Event Timeline

aborrero created this task.Jul 4 2023, 12:50 PM
aborrero mentioned this in T341060: openstack eqiad1: introduce cloud-private and cloudlb.Jul 4 2023, 2:33 PM
aborrero updated the task description. (Show Details)Jul 4 2023, 2:36 PM
gerritbot added a comment.Jul 4 2023, 2:47 PM

Change 935446 had a related patch set uploaded (by Arturo Borrero Gonzalez; author: Arturo Borrero Gonzalez):

[operations/dns@master] private.eqiad.wikimedia.cloud: introduce support for new zone

https://gerrit.wikimedia.org/r/935446

gerritbot added a project: Patch-For-Review.Jul 4 2023, 2:47 PM
aborrero updated the task description. (Show Details)Jul 4 2023, 2:58 PM
aborrero added a comment.Jul 4 2023, 3:57 PM
In T341063#8988417, @gerritbot wrote:

Change 935446 had a related patch set uploaded (by Arturo Borrero Gonzalez; author: Arturo Borrero Gonzalez):

[operations/dns@master] private.eqiad.wikimedia.cloud: introduce support for new zone

https://gerrit.wikimedia.org/r/935446

Before merging this change we need to 'bootstrap' the zone by adding some records to it, creating for example the cloudsw-xy addresses: https://netbox.wikimedia.org/ipam/ip-addresses/13611/
Then running the sre.dns.netbox cookbook for the files to exist.

aborrero moved this task from Backlog to Doing on the User-aborrero board.Jul 4 2023, 3:57 PM
aborrero updated the task description. (Show Details)Jul 5 2023, 8:43 AM
gerritbot added a comment.Jul 5 2023, 11:16 AM

Change 935446 merged by Arturo Borrero Gonzalez:

[operations/dns@master] private.eqiad.wikimedia.cloud: introduce support for new zone

https://gerrit.wikimedia.org/r/935446

Maintenance_bot removed a project: Patch-For-Review.Jul 5 2023, 11:30 AM
gerritbot added a comment.Jul 5 2023, 11:43 AM

Change 935721 had a related patch set uploaded (by Arturo Borrero Gonzalez; author: Arturo Borrero Gonzalez):

[operations/puppet@production] wmcs: cloud_private_subnet: introduce per-rack cloudsw gw support

https://gerrit.wikimedia.org/r/935721

gerritbot added a project: Patch-For-Review.Jul 5 2023, 11:43 AM
gerritbot added a comment.Jul 5 2023, 11:53 AM

Change 935725 had a related patch set uploaded (by Arturo Borrero Gonzalez; author: Arturo Borrero Gonzalez):

[operations/puppet@production] wmcs: cloud_private_subnet: introduce per-rack vlan_id support

https://gerrit.wikimedia.org/r/935725

gerritbot added a comment.Jul 5 2023, 12:17 PM

Change 935721 merged by Arturo Borrero Gonzalez:

[operations/puppet@production] wmcs: cloud_private_subnet: introduce per-rack cloudsw gw support

https://gerrit.wikimedia.org/r/935721

gerritbot added a comment.Jul 6 2023, 8:59 AM

Change 935725 merged by Arturo Borrero Gonzalez:

[operations/puppet@production] wmcs: cloud_private_subnet: introduce per-rack vlan_id support

https://gerrit.wikimedia.org/r/935725

Maintenance_bot removed a project: Patch-For-Review.Jul 6 2023, 9:10 AM
aborrero updated the task description. (Show Details)Jul 6 2023, 10:57 AM
aborrero updated the task description. (Show Details)
aborrero changed the task status from Open to In Progress.Jul 6 2023, 10:59 AM
aborrero reassigned this task from aborrero to cmooney.
aborrero triaged this task as Medium priority.
aborrero moved this task from Doing to Radar on the User-aborrero board.

Hey @cmooney could you please check the cloudsw devices @ eqiad to make sure they are correctly configured for cloud-private?

In parcitular:

  • vlan is defined in each rack, etc
  • per-subnet gateway is configured in each device
  • the routing / BGP / etc is correctly set up.

(note, we don't have any client or BGP peer as of the writing of this comment)

aborrero added a subtask: T341223: Configure eqiad cloudsw devices to support cloud-private.Jul 6 2023, 2:29 PM
aborrero added a subtask: T341220: eqiad1: allocate public IPv4 CIDR for BGP-based virtual IP addresses.Jul 6 2023, 2:31 PM
aborrero updated the task description. (Show Details)Jul 10 2023, 4:19 PM

This works!

aborrero closed this task as Resolved.Jul 10 2023, 4:19 PM
gerritbot added a comment.Jul 24 2023, 10:59 AM

Change 940887 had a related patch set uploaded (by Arturo Borrero Gonzalez; author: Arturo Borrero Gonzalez):

[operations/puppet@production] network: data: add new cloud CIDRs for eqiad1

https://gerrit.wikimedia.org/r/940887

gerritbot added a project: Patch-For-Review.Jul 24 2023, 10:59 AM
gerritbot added a comment.Jul 24 2023, 11:52 AM

Change 940887 merged by Arturo Borrero Gonzalez:

[operations/puppet@production] network: data: add new cloud CIDRs for eqiad1

https://gerrit.wikimedia.org/r/940887

Maintenance_bot removed a project: Patch-For-Review.Jul 24 2023, 12:10 PM
fnegri moved this task from Backlog to Done on the cloud-services-team (FY2022/2023-Q4) board.Jul 27 2023, 3:14 PM
aborrero closed subtask T341223: Configure eqiad cloudsw devices to support cloud-private as Resolved.Sep 15 2023, 12:46 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits