Page MenuHomePhabricator
Create Task
Maniphest T398611

Migrate all memcached* clusters to nftables
Open, In Progress, MediumPublic
Actions

Description

Migrate to nftables:

  • memcached
  • memcached-gutter
  • memcached wikifunctions
  • memcached misc
NOTE: There is an opportunity with the upcoming eqiad mc host hardware refresh (T412255) to bring up the new hosts using nftables from day 1 (T398611#11540403).

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
hieradata: migrate memcached gutter pool to nftablesoperations/puppetproduction+1 -1
Customize query in gerrit

Related Objects
Search...

StatusSubtypeAssignedTask
Unknown Object (Task)
 OpenNoneT412255 Q2:rack/setup/install mc1055-72
 In ProgressjijikiT398611 Migrate all memcached* clusters to nftables

Event Timeline

jijiki created this task.Jul 3 2025, 10:42 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJul 3 2025, 10:42 AM
jijiki changed the task status from Open to In Progress.Jul 3 2025, 10:42 AM
jijiki triaged this task as Low priority.
jijiki added a subscriber: Muehlenhoff.
gerritbot added a comment.Jul 3 2025, 12:36 PM

Change #1166194 had a related patch set uploaded (by Effie Mouzeli; author: Effie Mouzeli):

[operations/puppet@production] hieradata: migrate memcached gutter pool to nftables

https://gerrit.wikimedia.org/r/1166194

gerritbot added a project: Patch-For-Review.Jul 3 2025, 12:36 PM
gerritbot added a comment.Jul 15 2025, 10:17 AM

Change #1166194 merged by Effie Mouzeli:

[operations/puppet@production] hieradata: migrate memcached gutter pool to nftables

https://gerrit.wikimedia.org/r/1166194

Maintenance_bot removed a project: Patch-For-Review.Jul 15 2025, 10:32 AM
Scott_French edited projects, added ServiceOps new, ServiceOps-Datastores; removed serviceops.Tue, Jan 20, 10:15 PM
Scott_French moved this task from Inbox to Needs Info / Blocked on the ServiceOps new board.
Scott_French assigned this task to jijiki.Tue, Jan 20, 10:19 PM
Scott_French subscribed.

@jijiki - Is this something you anticipate we might be picking back up in Q3? Also, is there anything blocking this other than just finding time? (I see the gutter-pool change was merged and doesn't appear to have been reverted.)

MoritzMuehlenhoff subscribed.Wed, Jan 21, 7:59 AM
In T398611#11539625, @Scott_French wrote:

@jijiki - Is this something you anticipate we might be picking back up in Q3? Also, is there anything blocking this other than just finding time? (I see the gutter-pool change was merged and doesn't appear to have been reverted.)

Given that we are refreshing the hardware in eqiad soon (https://phabricator.wikimedia.org/T412255), this would be an opportune time: These should instead simply be installed with role::insetup::serviceops_nftables and then you can add hieradata/hosts/mcXY.yaml entries with profile::firewall::provider: nftables and simply add them with nftables from the start.

MLechvien-WMF subscribed.Wed, Jan 21, 8:36 AM

@Scott_French @jijiki could you update the description with more details about the rationale (why now)? We may consider raising the priority of this.

Please also see if this is an opportunity to ramp up someone else on memcached (to balance with the urgency of doing it of course)

Scott_French renamed this task from Migrate all memcached* clusters to nftables to Migrate all memcached* clusters to nftables.Wed, Jan 21, 3:45 PM
Scott_French updated the task description. (Show Details)
Scott_French added a comment.Wed, Jan 21, 3:48 PM

Updated the task description to reflect the point about the hardware refresh (and mark the gutter pool complete). This will still need info from @jijiki on feasibility of substantially completing the entire scope of work in Q3.

MLechvien-WMF raised the priority of this task from Low to Medium.Tue, Feb 3, 10:34 AM
MLechvien-WMF added a project: Serviceops-easywins.
jijiki added a comment.Wed, Feb 4, 10:51 AM

It all depends in how soon we will wrap up T405292. As soon as the servers arrive, the process is quite straight forward

jijiki added a parent task: T412255: Q2:rack/setup/install mc1055-72.Wed, Feb 4, 10:52 AM
jijiki added a project: User-jijiki.Wed, Feb 4, 1:10 PM
jijiki moved this task from Needs Info / Blocked to Scheduled (this Q) on the ServiceOps new board.Wed, Feb 4, 1:55 PM
MLechvien-WMF added a comment.Tue, Feb 10, 12:07 PM

The dependent task T405292 is only at ordering stage, so it seems difficult to complete this within Q3. @jijiki shall we move this back to Backlog and pick it up in Q4?

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits