Page MenuHomePhabricator
Create Task
Maniphest T351087

Migrate cloudlb hosts to nftables
Closed, ResolvedPublic
Actions

Description

Looks like the Ferm puppetization doesn't quite allow mixing source range + destination range + destination port filtering, but nftables does.

Details

SubjectRepoBranchLines +/-
hieradata: migrate all cloudlb hosts to nftablesoperations/puppetproduction+1 -2
hieradata: migrate codfw cloudlb to nftablesoperations/puppetproduction+2 -0
P:bird::anycast: migrate to nftablesoperations/puppetproduction+12 -14
cloudlb: haproxy: migrate to firewall::serviceoperations/puppetproduction+50 -34
Customize query in gerrit

Related Objects
Search...

Event Timeline

taavi created this task.Nov 13 2023, 2:05 PM
gerritbot added a comment.Nov 13 2023, 2:06 PM

Change 973781 had a related patch set uploaded (by Majavah; author: Majavah):

[operations/puppet@production] cloudlb: haproxy: migrate to firewall::service

https://gerrit.wikimedia.org/r/973781

gerritbot added a project: Patch-For-Review.Nov 13 2023, 2:06 PM

Change 973782 had a related patch set uploaded (by Majavah; author: Majavah):

[operations/puppet@production] P:bird::anycast: migrate to nftables

https://gerrit.wikimedia.org/r/973782

gerritbot added a comment.Nov 13 2023, 2:10 PM

Change 973785 had a related patch set uploaded (by Majavah; author: Majavah):

[operations/puppet@production] hieradata: migrate codfw cloudlb to nftables

https://gerrit.wikimedia.org/r/973785

gerritbot added a comment.Nov 13 2023, 2:10 PM

Change 973806 had a related patch set uploaded (by Majavah; author: Majavah):

[operations/puppet@production] hieradata: migrate all cloudlb hosts to nftables

https://gerrit.wikimedia.org/r/973806

gerritbot added a comment.Nov 14 2023, 9:47 AM

Change 973781 merged by Majavah:

[operations/puppet@production] cloudlb: haproxy: migrate to firewall::service

https://gerrit.wikimedia.org/r/973781

gerritbot added a comment.Nov 14 2023, 3:03 PM

Change 973782 merged by Majavah:

[operations/puppet@production] P:bird::anycast: migrate to nftables

https://gerrit.wikimedia.org/r/973782

gerritbot added a comment.Nov 14 2023, 4:26 PM

Change 973785 merged by Majavah:

[operations/puppet@production] hieradata: migrate codfw cloudlb to nftables

https://gerrit.wikimedia.org/r/973785

gerritbot added a comment.Nov 15 2023, 9:43 AM

Change 973806 merged by Majavah:

[operations/puppet@production] hieradata: migrate all cloudlb hosts to nftables

https://gerrit.wikimedia.org/r/973806

taavi closed this task as Resolved.Nov 15 2023, 9:50 AM
Maintenance_bot removed a project: Patch-For-Review.Nov 15 2023, 10:10 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits