Figure out a way to query Cassandra node IPs from `profile::kubernetes::deployment_server::global_config`
Open, Needs TriagePublic
Actions

Assigned To

Authored By

	klausman
	Tue, Apr 16, 12:28 PM

Description

In the course of T360428, I have tried to have a "new-style" network policy for Cassandra clients on k8s being able to talk to off-k8s Cassandra clusters.

This is an initial change I came up with: https://gerrit.wikimedia.org/r/c/operations/puppet/+/1020194/1

Unfortunately, this does not work, since profile::cassandra::instances is not in-scope for the deployment server.

I want to make this change useful beyond just ML/LW services (and hard-coding IPs is contrary to the intent of the new-style network policies).

One option might be to do it similar to the Redis ext service in the same file, but I haven't tried that approach yet.

Related Objects

Mentioned Here: T360428: Add Istio (and related) config to allow LW isvcs to talk to ML Cassandra machines

Event Timeline

klausman created this task.Tue, Apr 16, 12:28 PM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptTue, Apr 16, 12:28 PM

Aklapper added a project: Cassandra.Tue, Apr 16, 12:49 PM

klausman updated the task description. (Show Details)Tue, Apr 16, 1:27 PM

This has been implemented in change 1020194.

klausman added a project: Machine-Learning-Team.Wed, Apr 24, 8:39 AM

klausman moved this task from Unsorted to 2023-2024 Q4 Done on the Machine-Learning-Team board.Tue, Apr 30, 9:10 AM

Figure out a way to query Cassandra node IPs from `profile::kubernetes::deployment_server::global_config`Open, Needs TriagePublicActions

Description

Related Objects

Event Timeline

Figure out a way to query Cassandra node IPs from `profile::kubernetes::deployment_server::global_config`
Open, Needs TriagePublic
Actions