Page MenuHomePhabricator
Create Task
Maniphest T374713

cloudsw: codfw: enable IPv6
Closed, ResolvedPublic
Actions

Description

As part of T364725: Migrate Cloud VPS instances to VXLAN based networks and T245495: CloudVPS: IPv6 in codfw1dev and we need to enable IPv6 on the codfw cloudsw device, so we can provide edge IPv6 routing to the cloud.

Related Objects
Search...

Event Timeline

aborrero created this task.Sep 13 2024, 12:46 PM
Restricted Application removed a subscriber: taavi. · View Herald TranscriptSep 13 2024, 12:46 PM
aborrero mentioned this in T245495: CloudVPS: IPv6 in codfw1dev.Sep 13 2024, 12:54 PM
aborrero edited parent tasks, added: T374716: cloudgw: add support and enable IPv6; removed: T245495: CloudVPS: IPv6 in codfw1dev.Sep 13 2024, 12:56 PM
aborrero moved this task from Backlog to Next on the User-aborrero board.Sep 16 2024, 11:20 AM
aborrero triaged this task as Medium priority.Sep 18 2024, 2:08 PM
taavi added a project: Cloud-VPS.Sep 28 2024, 11:33 AM
taavi moved this task from Unsorted to Network on the Cloud-VPS board.
aborrero mentioned this in T375847: openstack: initial IPv6 support in neutron.Oct 2 2024, 12:44 PM
cmooney added a comment.Oct 2 2024, 12:58 PM

At a high level I think we need to:

  • Create an aggregate policy on cloudsw1-b1-codfw to generate 2a02:ec80:a100::/48 if participating routes are present
  • Allocate /64 subnets from 2a02:ec80:a100:fe00::/55 for link networks and vlans
    • cr1-codfw uplink - cloud vrf (.1001)
    • cr2-codfw uplink - cloud vrf (.1001)
    • vlan: cloud-instance-transport1-b-codfw (between cloudsw and cloudgw)
    • vlan: cloud-gw-transport-codfw (between cloudgw and cloudnet)
  • Route 2a02:ec80:a100::/55 to the cloudgw VIP on cloud-instance-transport1-b-codfw

All of this happens within the 'cloud' vrf on the cloudsw.

aborrero added a comment.Oct 2 2024, 3:47 PM

here is a proposal:

  • 2a02:ec80:a100:fe01::/64 - cr1-codfw uplink
  • 2a02:ec80:a100:fe02::/64 - cr2-codfw uplink
  • 2a02:ec80:a100:fe03::/64 - cloud-instance-transport1-b-codfw (between cloudsw and cloudgw)
  • 2a02:ec80:a100:fe04::/64 - cloud-gw-transport-codfw (between cloudgw and cloudnet)
cmooney added a comment.Oct 2 2024, 10:28 PM

That seems fine to me @aborrero thanks!

aborrero added a comment.Oct 3 2024, 12:48 PM

Created:

cmooney added a comment.EditedOct 3 2024, 7:10 PM
In T374713#10199236, @aborrero wrote:

Created:

Thanks! I've made some minor edits to them in Netbox btw, just some things you probably won't be familiar with.

The two relating to vlans I set the associated vlan on the prefix (and removed the vlan name from the description field). On all 4 I removed the 'vrf' setting. Technically they are 100% in the cloud vrf, however the way we have VRFs automated we just set it on interfaces in Netbox, not on IP ranges. That way we don't partition our address space and Netbox still makes sure all addresses are unique across any VRF.

cmooney closed this task as Resolved.Oct 10 2024, 1:45 PM

This is now complete, the cloudsw is set up to route the networks are required and announcing them upstream to the core routers.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits