Page MenuHomePhabricator

faidon (Faidon Liambotis)
SRE

Projects (13)

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Saturday

  • Clear sailing ahead.

User Details

User Since
Oct 7 2014, 10:21 AM (343 w, 2 d)
Availability
Available
IRC Nick
paravoid
LDAP User
Faidon Liambotis
MediaWiki User
Faidon Liambotis (WMF) [ Global Accounts ]

Recent Activity

Mon, Apr 19

faidon added a comment to T280473: mail.wikimedia.org doesn't redirect to lists.wikimedia.org.

I killed that domain in 2014 (operations/dns 3a7f472cb3e9bcd03f0492cfdd8c0a2156f448d3). Noone has complained since to my knowledge, and I'd recommend to not reintroduce this redirect at this point. It was confusing to begin with: before that transition main mail exchangers and the mailing list service was all in the same box; these days they are (thankfully) separate, but the side-effect is that "mail" as a label is much more ambiguous. HTH!

Mon, Apr 19, 1:26 PM · SRE, Wikimedia-Mailing-lists
faidon added a comment to T273114: (Need By: TBD) rack/setup/install atlas-codfw.wikimedia.org.

@CDanis could you look at this soon? Thanks!

Mon, Apr 19, 10:53 AM · SRE, ops-codfw, DC-Ops

Fri, Apr 16

faidon added a comment to T276473: Proposed changes to the SRE Access request (Phabricator form 8).

SGTM :)

Fri, Apr 16, 11:36 AM · Phabricator

Mar 17 2021

faidon assigned T277705: Netbox: convert validation reports into field validation to crusnov.

@crusnov maybe you can have a look?

Mar 17 2021, 9:14 PM · netbox

Mar 16 2021

faidon added a comment to T275711: Grant wmopbot +o permissions in #wikimedia-operations IRC channel.

I think I've implemented this -- it's been a while :)

Mar 16 2021, 12:02 PM · SRE, wikimedia-irc-freenode, SRE-Access-Requests

Mar 5 2021

faidon added a comment to T276443: Formalize and share the spicerack/cumin release process.

Thanks for the explanation, but there's several points here that still need discussion.

Mar 5 2021, 1:18 PM · SRE-tools, Spicerack

Mar 4 2021

faidon added a comment to T276440: wmcs.spicerack: Setup a host to run cookbooks from prod network.

(I'd suggest to focus on the nitty-gritty like SSH keys later -- I'm not the right person to ask for these either :)

Mar 4 2021, 1:45 PM · SRE-tools, Spicerack, cloud-services-team (Kanban)
faidon lowered the priority of T276443: Formalize and share the spicerack/cumin release process from Medium to Low.

Judging from the last two lines of that transcript, I've been summoned :)

Mar 4 2021, 12:47 PM · SRE-tools, Spicerack
faidon added a comment to T276440: wmcs.spicerack: Setup a host to run cookbooks from prod network.

Could you clarify the scope between:

  1. production hosts that currently have WMCS as the service team (cloudvirt, cloudcephosd, etc.)
  2. Cloud VPSes that the WMCS team currently semi-manages (i.e. that have other roots, possibly custom puppetmasters etc.)
  3. Cloud VPSes that the WMCS team is currently managing fully (operates config mgmt such as the puppetmaster), not necessarily exclusively (e.g. I think Toolforge has additional admins)
Mar 4 2021, 12:14 PM · SRE-tools, Spicerack, cloud-services-team (Kanban)

Mar 3 2021

faidon added a comment to T267714: ripe-atlas-codfw is down.

I believe the Atlas is a PCEngines APU, so you'll need a null modem cable or adapter (RXD->TXD, TXD->RXD, etc.) If this is a Cisco rollover cable, it would do the trick, but your DB9<->RJ45 adapter should not be a crossover adapter, as that would swap crossover twice end-to-end and cancel each other out :)

Mar 3 2021, 11:43 AM · ops-codfw, SRE, netops

Mar 1 2021

faidon closed T256628: use CAS-SSO for icinga.wikimedia.org authentication as Resolved.
Mar 1 2021, 8:27 PM · Icinga, CAS-SSO

Feb 13 2021

faidon added a comment to T273734: consider storing information on cloud NAT mappings.

To clarify the task's scope here, and the need from a network operations angle: as a service provider, providing effectively unrestricted IPv4 connectivity from our public cloud to the rest of the internet we need, for various reasons, the ability to identify and/or block the source of traffic in e.g. an incoming third-party report or request, and to be able to do so retroactively with timestamps into the past as well. (This is not a new requirement, nor the result of recent changes in cloud networking -- just something we're overdue for).

Feb 13 2021, 9:49 AM · cloud-services-team (Kanban), Cloud-VPS

Jan 19 2021

faidon changed the status of Unknown Object (Task), a subtask of T270704: cloud: introduce new edge network architecture for eqiad1 and codfw1dev, from Open to Stalled.
Jan 19 2021, 11:00 AM · Patch-For-Review, cloud-services-team (Kanban)

Dec 7 2020

faidon added a comment to T267376: Set up IP addresses for the new wiki replicas setup.

It feels like there are multiple issues being discussed here, so perhaps it's worth breaking this down and talking about some of these issues separately? The last few comments seem to be about the IP numbering and assignment issue, so I'll focus on that below.

Dec 7 2020, 10:55 PM · Patch-For-Review, Data-Services, cloud-services-team (Kanban)

Dec 5 2020

faidon reopened T269467: Upgrade nic firmware on cloudvirt1023 as "Open".

It turns out this has a weird firmware version because it's weird hardware

robh: this is a qlogic 41112 sfp adapter which is not quite the same as others

Given that it isn't broken, let's leave it as it is.

Dec 5 2020, 12:09 AM · cloud-services-team (Kanban)

Dec 4 2020

faidon added a comment to T269313: cloudvirt10[25-30] connection issues on primary nic.

OK, to add a little more color:

  • The VLAN configuration is not important. brctl addif brq7425e328-56 eno2np1 is enough to reproduce this behavior.
  • I was thinking why bridge would matter (thinking hwmode/EVB etc. originally). I had tried setting promisc mode to no effect, but with a clearer mind this morning, I tried promisc + down/up and managed to reproduce, without a bridge being involved. ip link set promisc on dev eno2np1; ip link set down dev eno2np1; ip link set up eno2np1 reproduces it, ip link set promisc off dev eno2np1 restores connectivity.
Dec 4 2020, 9:28 AM · ops-eqiad, DC-Ops, SRE, cloud-services-team (Kanban), Epic

Dec 3 2020

faidon added a comment to T269313: cloudvirt10[25-30] connection issues on primary nic.

Arzhel nerd-sniped me with this.

Dec 3 2020, 11:01 PM · ops-eqiad, DC-Ops, SRE, cloud-services-team (Kanban), Epic

Dec 2 2020

faidon assigned T222931: Netbox Reports Ideas and Requests to crusnov.
Dec 2 2020, 6:22 PM · netbox, User-crusnov, SRE-tools

Nov 25 2020

faidon updated the task description for T205897: Netbox: fill network topology.
Nov 25 2020, 2:27 PM · netbox, SRE

Nov 23 2020

faidon added a comment to T267714: ripe-atlas-codfw is down.

Thanks - can you file a procurement request to that effect (& then resolve this task)?

Nov 23 2020, 4:23 PM · ops-codfw, SRE, netops
faidon reopened T175876: document all scs connections as "Open".

Per @ayounsi above, "Last missing info is cable IDs". I don't see that as having taken place yet, right? The Cables report is even emitting soft-warnings about it (warnings that we should convert to errors once this work completes). Reopening the task, as it was probably resolved by mistake.

Nov 23 2020, 7:47 AM · ops-eqiad, DC-Ops, SRE
faidon reopened T175876: document all scs connections, a subtask of T175625: scs-c1-eqiad unresponsive, as Open.
Nov 23 2020, 7:47 AM · ops-eqiad, DC-Ops, SRE

Oct 22 2020

faidon edited P13050 TCP flags combinations for Turnilo's map.
Oct 22 2020, 1:13 PM · netops, SRE
faidon created P13050 TCP flags combinations for Turnilo's map.
Oct 22 2020, 11:06 AM · netops, SRE

Oct 19 2020

faidon added a comment to T263290: Turnilo: per-second rates for wmf_netflow bytes + packets.

Yay, that's awesome! You can't imagine how much time this would save!

Oct 19 2020, 9:27 AM · Analytics-Kanban, Analytics, netops, Traffic, SRE

Oct 16 2020

faidon updated subscribers of T265393: eqiad: Netbox Error for asw2-d4-eqiad.

From the Netbox changelog ("Changelog" tab on the device) it looks like some changes were made on September 28th by @Cmjohnson and later one change on Oct 6th by @wiki_willy. Specifically:

Oct 16 2020, 1:11 PM · SRE, ops-eqiad, DC-Ops

Sep 24 2020

faidon added a comment to T263277: Collect netflow data for internal traffic.

I wonder as what kind of ASN would these flows show up as (esp. with confederations!), as well as whether we could have a dimension to be able to differentiate between internet traffic, and backhaul traffic. We'd also need a dimension of "site" to be able to filter or slice for traffic from esams to eqiad like the parent task required, right? Also see T254332, which also makes me wonder whether adding all of these different dimensions is going to start being a problem :)

Sep 24 2020, 3:27 PM · netops, Traffic, SRE

Sep 21 2020

faidon added a comment to T263212: Consider balancing VRRP primaries to cr1/cr2.

BTW, one dangerous impact of this (as with all ECMP!) is that it would harder to notice a situation where we don't have enough capacity to carry regular amounts of traffic when one of the paths is down for whatever reason. We could perhaps mitigate this by tuning our monitoring to alert on 40-50% utilization, at least for the common cases of link redundancy (codfw/eqdfw, eqiad/codfw). So this will still get us extra capacity for "abnormal" conditions (like edge in eqiad but MW & Swift on codfw etc.) but still alert us to the situation where we don't have enough capacity for normal levels of traffic.

Sep 21 2020, 1:15 PM · SRE, netops

Sep 17 2020

faidon triaged T263212: Consider balancing VRRP primaries to cr1/cr2 as Medium priority.
Sep 17 2020, 11:15 PM · SRE, netops
faidon added a comment to T260363: Standardize VRRP group IDs.

SGTM!

Sep 17 2020, 11:00 PM · netops, SRE

Sep 16 2020

faidon added a comment to T261145: Enable access for wmcs-admins to run wmcs-prefixed cookbooks on cumin hosts.

Hey - this was brought to my attention, and we discussed it today at the I/F meeting. The outcome of our conversation was that @Volans and @jbond will do a final review pass and merge r621343 ~by the end of this week.

Sep 16 2020, 5:53 PM · SRE-Access-Requests, Data-Services, SRE, cloud-services-team (Kanban)

Sep 14 2020

faidon added a comment to T250053: Netbox report accounting icinga alert.

In general, I haven't been a big fan of how the Netbox errors are reported. An onsite engineer could install a bunch of new hardware one day, not have enough time to check the Netbox reports before they leave, and a week goes by before their next trip onsite...where they end up prioritizing other new tasks over fixing the error. Or if they're already at home updating the Netbox entries, but have to be onsite to verify a mismatch, it also gets pushed to the backburner, as other priorities pop up during their next site visit.

Sep 14 2020, 1:45 PM · ops-eqiad, DC-Ops, SRE

Sep 11 2020

faidon added a comment to T250053: Netbox report accounting icinga alert.

Broadly speaking:

  • We shouldn't have outstanding alerts open (or even acknowledged) for more than a few days. If there is an alert, it means there is an abnormal condition that requires fixing. If the issues require a significant amount of work to address, then a a task should be created and the alert acknowledged with the task in the comment while it's getting fixed. I'd expect the DC Ops teams to be primary for such alerts and act on them, but also everyone in SRE is expected to triage alerts and reach out to owners and file tasks about them (like @ayounsi did here)
  • If there are false positives often, then this is something that we should fix. We probably need one or more separate task for this, that describes conditions under which an alert is triggered erroneously, so that we can fix this. I'd expect the DC Ops team to be filing this task, and I/F to change the report to meet the adjusted needs.
  • The test_missing_assets_from_accounting report is already (and has always been) ignoring discrepancies for items where the purchase date is in the last 90 days. This is configurable and we can tune it further to some other value but it was picked as long enough for accounting to process invoices, and too long to have fallen out of memory (or vendor engagement is over, team changes etc.). If there is a persistent backlog in Finance >90d it'd be good to know and adjust.
Sep 11 2020, 11:19 AM · ops-eqiad, DC-Ops, SRE

Sep 7 2020

faidon added a comment to T237492: Create a second text-lb IP address for test purposes.

@BBlack @ayounsi I think this is done and can be resolved, right? Anything left here?

Sep 7 2020, 12:04 PM · SRE, Traffic
faidon added a comment to T245161: Track down and replace very old HW.

@jcrespo & @akosiaris may I ask you to figure this out in a different task? This is a generic task about dozens of servers, so by discussing details about a couple of them we're going to lose the bigger picture :)

Sep 7 2020, 10:15 AM · Patch-For-Review, DC-Ops

Aug 18 2020

faidon added a comment to T225121: (Need by: 2019-09-30) upgrade msw1-eqiad from EX4200 to EX4300.

Ping? Besides the issues identified by @ayounsi just above, I see that in another comment above @ayounsi mentioned "wipe the switch" but then I saw the switch was removed. @Cmjohnson, can you confirm the switch was wiped before (or after) its removal? (Any reason we didn't go the decom task route here like we normally do?)

Aug 18 2020, 11:39 AM · netops, ops-eqiad, SRE

Aug 17 2020

faidon added a comment to T245161: Track down and replace very old HW.

@wiki_willy, what's the latest here? What's blocking us from having decom tasks for all of the items above?

Aug 17 2020, 10:05 PM · Patch-For-Review, DC-Ops
faidon added a member for acl*security_sre: faidon.
Aug 17 2020, 12:17 PM

Aug 4 2020

faidon added a comment to T245161: Track down and replace very old HW.

Bump! What's the latest here?

Aug 4 2020, 10:57 PM · Patch-For-Review, DC-Ops

Jul 22 2020

faidon reopened T257573: Remove multicast as "Open".

We still seem to have remnants of PIM-RP:

faidon@re0.cr2-codfw> show configuration | display set | match 208.80.153.194             
set interfaces lo0 unit 0 family inet address 208.80.153.194/32
Jul 22 2020, 6:12 PM · Patch-For-Review, netops, SRE, Traffic

Jul 21 2020

faidon closed T258309: Update cloudservices@wikimedia.org list permissions to allow Foundation staff to post to it as Resolved.

It looks like both of these issues are resolved now! Boldly resolving :)

Jul 21 2020, 1:24 PM · cloud-services-team (Kanban)

Jul 16 2020

faidon added a comment to T258018: ripe-atlas-eqiad IPv6 unreachable.

To give a little more context: in response to us requesting an extension for the v2 anchors, the RIPE NCC team reached out to ask if they can run a test upgrade on our of anchors (which I of course said OK to!).

Jul 16 2020, 3:47 PM · SRE, netops

Jul 2 2020

faidon added a comment to T254332: Add more dimensions in the netflow/pmacct/Druid pipeline.

So - how do we make progress here? Any thoughts on who/how? :) Some of these features could really make a tremendous amount of difference to our network operations and future planning, so I'm super excited about seeing these into fruition!

Jul 2 2020, 5:23 PM · Patch-For-Review, Analytics-Kanban, Analytics, netops, SRE
faidon updated the task description for T254332: Add more dimensions in the netflow/pmacct/Druid pipeline.
Jul 2 2020, 5:22 PM · Patch-For-Review, Analytics-Kanban, Analytics, netops, SRE

Jul 1 2020

faidon added a comment to T252577: Maxmind data update issues for DNS (and others?).

I was bitten by this again today - ping!

Jul 1 2020, 5:29 PM · SRE, Traffic

Jun 26 2020

faidon triaged T256498: Return asw-c8-codfw to spares as Low priority.
Jun 26 2020, 6:07 PM · SRE, ops-codfw

Jun 25 2020

faidon added a comment to T254332: Add more dimensions in the netflow/pmacct/Druid pipeline.

To add to the above, I'm also wondering how difficult it would be to also include AS *names*, e.g. coming from the MaxMind GeoIP ASN database. I think we've used that database before, maybe for pageview data? Could we perhaps use Druid lookups for this to avoid adding another (identical) dimension to the data set?

Jun 25 2020, 12:09 AM · Patch-For-Review, Analytics-Kanban, Analytics, SRE, netops

Jun 24 2020

faidon closed T219486: Send peering requests to AS with the worst TTFB as Resolved.

I took a look at that list above. It's really not very actionable -- most of these are very large networks that have a restrictive settlement-free peering policy. For the few that remain, we have either established peerings already or have sent unanswered peering requests, which mostly means that they are not actively peering or we are too small for them to care about.

Jun 24 2020, 11:30 PM · Traffic, Performance-Team, SRE
faidon updated subscribers of T254332: Add more dimensions in the netflow/pmacct/Druid pipeline.
Jun 24 2020, 10:15 PM · Patch-For-Review, Analytics-Kanban, Analytics, SRE, netops

Jun 18 2020

faidon updated the task description for T245161: Track down and replace very old HW.
Jun 18 2020, 10:31 AM · Patch-For-Review, DC-Ops
faidon updated the task description for T245161: Track down and replace very old HW.
Jun 18 2020, 10:25 AM · Patch-For-Review, DC-Ops

Jun 11 2020

faidon added a comment to T254818: Requesting access to PROD for lmata (SRE).

Approved.

Jun 11 2020, 10:53 AM · SRE, SRE-Access-Requests

Jun 4 2020

faidon added a comment to T251536: Peer with SFMIX at ulsfo (May 2020).

This is now set up on SFMIX's end and up:

On your side please plumb 206.197.187.82/24 and 2001:504:30::ba01:4907:1/64. Usual sane BGP peering rules apply - no broadcast traffic (DHCP, CDP, etc), see https://sfmix.org/connect/guide.

We request at least one required BGP session (to our looking glass) and optional sessions for the route servers
The looking glass is AS12276 at 206.197.187.1 and 2001:504:30::ba01:2276:1. You should announce all your routes to the looking glass, but expect no routes to be announced to you.

We'll push out configs to support these peers this evening.

Jun 4 2020, 7:53 AM · netops, SRE

Jun 3 2020

faidon created T254332: Add more dimensions in the netflow/pmacct/Druid pipeline.
Jun 3 2020, 9:40 AM · Patch-For-Review, Analytics-Kanban, Analytics, SRE, netops

May 19 2020

faidon added a comment to T225121: (Need by: 2019-09-30) upgrade msw1-eqiad from EX4200 to EX4300.

Are there any updates to this task and any particular reasons it's been held up? While this was never super urgent, we're now at the ~one year mark since this was ordered and delivered to the data center. Plus I think because at the time the upgrade was imminent, we only bought support for the new switch and not the old, so we're operating with unsupported HW right now. It'd be great if this were to be completed soon. Thanks!

May 19 2020, 9:22 AM · netops, SRE, ops-eqiad

May 15 2020

faidon added a comment to T247881: Three ports on asw2-d-eqiad are not working as expected.

If three ports are permanently failed, I'm not sure how we could ever trust that switch again. Perhaps it's better to do a painful but planned replacement rather than have it fail at some inconvenient time and having to rush a replacement then?

May 15 2020, 12:16 PM · ops-eqiad, SRE, netops

May 12 2020

faidon added a comment to T252577: Maxmind data update issues for DNS (and others?).

I know that historically MaxMind has claimed they update the data roughly on a weekly basis, and maybe in this case it was a normal weekly update and we're just misaligned with their weeks? In any case, the current geoipdate seems to be smart enough to checksum the existing databases and not re-download pointless duplicates, so we could probably run it more often on the puppetmasters.

May 12 2020, 6:45 PM · SRE, Traffic

May 8 2020

faidon added a subtask for T251536: Peer with SFMIX at ulsfo (May 2020): Unknown Object (Task).
May 8 2020, 12:10 PM · netops, SRE
faidon removed a subtask for T251536: Peer with SFMIX at ulsfo (May 2020): Unknown Object (Task).
May 8 2020, 12:10 PM · netops, SRE
faidon added a comment to T251536: Peer with SFMIX at ulsfo (May 2020).

LoA received and cross-connect task created.

May 8 2020, 12:10 PM · netops, SRE
faidon renamed T251536: Peer with SFMIX at ulsfo (May 2020) from Peer with SFMIX at ulsfo to Peer with SFMIX at ulsfo (May 2020).
May 8 2020, 12:09 PM · netops, SRE
faidon added a subtask for T251536: Peer with SFMIX at ulsfo (May 2020): Unknown Object (Task).
May 8 2020, 12:09 PM · netops, SRE

Apr 30 2020

faidon added a comment to T251536: Peer with SFMIX at ulsfo (May 2020).

I just submitted their form.

Apr 30 2020, 4:00 PM · netops, SRE
faidon triaged T251536: Peer with SFMIX at ulsfo (May 2020) as Medium priority.
Apr 30 2020, 3:42 PM · netops, SRE

Apr 27 2020

faidon added a comment to T200277: OSPF metrics.

Interesting idea! Couple of notes:

  • What do you mean by "virtual links" and Netbox not supporting them? Is that VLANs for our transports over the PtMP VPLS?
  • What do you envision the difference to be between "primary" and "preferred"? (I know you said TBD, but curious :)
  • It'd be interesting to see how this would look like before we start adding the fields. That may help us figure out what the right values for those fields may be. Would it make sense to list our links in a Phaste or spreadsheet or something and figure out if the output makes sense?
Apr 27 2020, 11:21 AM · SRE, netops

Apr 14 2020

faidon closed T212878: Netbox racks consistency report as Declined.

I think the original intention of this will be addressed by periodic audits that we'll eventually do. I'll decline this for the reasons I mentioned above, but if anyone feels strongly about this, feel free to reopen :)

Apr 14 2020, 7:01 PM · netbox, SRE
faidon updated subscribers of T249916: access request on cumin[1-2]001 for John Clark.

So breaking down the (very reasonable!) ask, I think there are afew different things at play here:

  • Access to iDRAC/iLO so that John can e.g. look at HW status and get reports that vendors ask for. This in turn requires:
    • Access to the password store. There is already a "dcops" group with the right access, so we can have John added there. Should be simple, as far as I can tell.
    • Access to the mgmt IP network remotely. Right now that's firewalled to the cumin hosts, access to which ties to a bigger project (see below). However, that's perhaps an unnecessary dependency and maybe we can easily work around that (e.g. with a separate bastion for mgmt?). @MoritzMuehlenhoff, @jbond any thoughts here?
  • Access to execute cumin cookbooks, like reimaging. That right now is tied to global root, which is a privilege that we can't easily grant. Fixing that limitation has been on our radar, including the PoC work that was part of our Q3 OKRs (T244840). It's definitely not there yet and it's going to take a few months to fully materialize, unfortunately.
Apr 14 2020, 6:04 PM · SRE-Access-Requests, SRE, DC-Ops
faidon renamed T250136: Homer: manage transit BGP sessions from Homr: manage transit BGP sessions to Homer: manage transit BGP sessions.
Apr 14 2020, 9:27 AM · netops, SRE

Apr 13 2020

faidon added a comment to T166368: Wipe of spare/replacement disks.

If I understand it correctly, this task is specifically about a box that was returned to the spare pool and then was reallocated for a new purpose but kept its old data. We should definitely wipe in those cases. I think that has been standard practice in the past, but perhaps not well-documented or applied uniformly? I'm not sure, something to dig in more for sure :)

Apr 13 2020, 5:16 PM · DC-Ops, SRE
faidon added a project to T250053: Netbox report accounting icinga alert: DC-Ops.
Apr 13 2020, 9:55 AM · ops-eqiad, DC-Ops, SRE
faidon added a project to T250054: Netbox report coherence_rack Icinga alert: DC-Ops.
Apr 13 2020, 9:55 AM · DC-Ops, ops-ulsfo, SRE, ops-eqiad

Apr 11 2020

faidon added a comment to T203003: Keyholder phab repo duplicate work.

The master branch of operations/software/keyholder is not ready for a release at this time, so please don't tag, package or deploy this at this state. There are a bunch of pending changes in Gerrit for about a year, plus more that I've queued up locally (because it's hard to manage dozens of dependent git commits with Gerrit…). If y'all are willing to review these I can clean them up and prepare a release; if not, then I can pick this up and make some progress. Let me know!

Apr 11 2020, 7:10 AM · Release-Engineering-Team (Seen), Keyholder, SRE

Apr 8 2020

faidon renamed T249653: Netbox: restore two deleted entries from backups from restore two deleted entries to Netbox: restore two deleted entries from backups.
Apr 8 2020, 8:53 AM · netbox

Apr 3 2020

faidon added a comment to T235886: IRR updates needed.

We found that the prefixes 185.15.56.0/22 and 2a02:ec80::/29 are in use but not documented in the RIPE Database as assignments.

After discussing it with John, the deeper issue might be that they are "ALLOCATED PA" while they should be "ASSIGNED PI".

Apr 3 2020, 11:54 PM · SRE, netops

Apr 2 2020

faidon added a comment to T238305: Servers freezing across the caching cluster.

Ah! That's awesome to hear. May I suggest to resolve this (and the associated "upgrade firmware"?) task then, and reopen if we have another one of these?

Apr 2 2020, 7:35 PM · SRE, Traffic

Apr 1 2020

faidon removed a subtask for T243167: Upgrade BIOS and IDRAC firmware on R440 cp systems: T244127: cp3057 crash (was: network down).
Apr 1 2020, 9:41 PM · DC-Ops, Traffic, ops-esams, SRE
faidon removed a parent task for T244127: cp3057 crash (was: network down): T243167: Upgrade BIOS and IDRAC firmware on R440 cp systems.
Apr 1 2020, 9:41 PM · ops-esams, Traffic, SRE
faidon added a subtask for T238305: Servers freezing across the caching cluster: T244127: cp3057 crash (was: network down).
Apr 1 2020, 9:40 PM · SRE, Traffic
faidon added a parent task for T244127: cp3057 crash (was: network down): T238305: Servers freezing across the caching cluster.
Apr 1 2020, 9:40 PM · ops-esams, Traffic, SRE
faidon added a subtask for T238305: Servers freezing across the caching cluster: T243167: Upgrade BIOS and IDRAC firmware on R440 cp systems.
Apr 1 2020, 9:40 PM · SRE, Traffic
faidon added a parent task for T243167: Upgrade BIOS and IDRAC firmware on R440 cp systems: T238305: Servers freezing across the caching cluster.
Apr 1 2020, 9:40 PM · DC-Ops, Traffic, ops-esams, SRE
faidon added a comment to T238305: Servers freezing across the caching cluster.

What's the latest here? I haven't heard about these crashes lately but it may just be that I missed it. Do we know more about this now?

Apr 1 2020, 9:40 PM · SRE, Traffic
faidon merged T241306: cp3051 crashed into T238305: Servers freezing across the caching cluster.
Apr 1 2020, 9:32 PM · SRE, Traffic
faidon merged task T241306: cp3051 crashed into T238305: Servers freezing across the caching cluster.
Apr 1 2020, 9:32 PM · Traffic, SRE
faidon merged T240425: cp3055 crashed into T238305: Servers freezing across the caching cluster.
Apr 1 2020, 9:32 PM · SRE, Traffic
faidon merged task T240425: cp3055 crashed into T238305: Servers freezing across the caching cluster.
Apr 1 2020, 9:32 PM · Traffic, SRE
faidon merged T244127: cp3057 crash (was: network down) into T238305: Servers freezing across the caching cluster.
Apr 1 2020, 9:32 PM · SRE, Traffic
faidon merged task T244127: cp3057 crash (was: network down) into T238305: Servers freezing across the caching cluster.
Apr 1 2020, 9:32 PM · ops-esams, Traffic, SRE

Mar 27 2020

faidon updated the task description for T245161: Track down and replace very old HW.
Mar 27 2020, 6:45 PM · Patch-For-Review, DC-Ops
faidon reassigned T237466: Remove unused custom fields from Netbox from crusnov to wiki_willy.

@wiki_willy is finalizing the end of our leasing agreement. Once that's done, we'd be the "owner" of all of those assets, and thus we can remove the "owner" field from Netbox. Reassigning to Willy to let us know when that's done :)

Mar 27 2020, 4:04 PM · SRE-tools, DC-Ops, netbox

Mar 26 2020

Krinkle awarded T245161: Track down and replace very old HW a Burninate token.
Mar 26 2020, 9:23 PM · Patch-For-Review, DC-Ops

Mar 19 2020

faidon added a comment to T213843: Juniper network device audit - all sites.

Ok! From https://wikitech.wikimedia.org/wiki/Server_Lifecycle#States I thought that if a device was not in netbox it was not in our possession anymore.

Mar 19 2020, 1:55 PM · DC-Ops, netops, SRE

Mar 18 2020

faidon reopened T245606: CloudVPS: enable BGP in the neutron transport network as "Open".

Reopening this per IRC, and given this is a prod/WMCS task affecting prod in major ways.

Mar 18 2020, 2:58 PM · netops, SRE, cloud-services-team (Kanban)
faidon reopened T245606: CloudVPS: enable BGP in the neutron transport network, a subtask of T244727: CloudVPS: networking improvements, as Open.
Mar 18 2020, 2:58 PM · cloud-services-team (Kanban), Epic

Mar 17 2020

faidon added a comment to T245161: Track down and replace very old HW.

I just discovered that cloudmetrics1001 is old (2015) and need replacement https://netbox.wikimedia.org/dcim/devices/182/

Mar 17 2020, 2:20 PM · Patch-For-Review, DC-Ops

Mar 15 2020

faidon added a comment to T247646: migrate racktables to a buster VM (was: decom racktables?).

Good question!

Mar 15 2020, 4:37 PM · SRE

Mar 12 2020

faidon added a comment to T247245: Test Performance of Marian NMT translation in stat cluster.

Oh, that sounds perfect, let's do that :) We should also try with a build with the right make flags etc. (something like TARGET=SKYLAKEX like the FAQ says). Thanks all!

Mar 12 2020, 11:40 AM · Language-Team (Language-2020-Focus-Sprint), ContentTranslation, Analytics

Mar 11 2020

faidon added a comment to T247245: Test Performance of Marian NMT translation in stat cluster.

OK, so to recap, I read two concerns:

Mar 11 2020, 7:06 PM · Language-Team (Language-2020-Focus-Sprint), ContentTranslation, Analytics

Mar 6 2020

faidon added a comment to T246564: Netbox has incorrect email address for GTT.

We have one global account, migrated from a previous system. I wasn't able to find how to create individual accounts, so that will do I guess :)

Mar 6 2020, 12:01 AM · SRE, netops

Mar 3 2020

RobH awarded T239244: Netbox report check for no position set in rack a Like token.
Mar 3 2020, 5:22 PM · netbox, SRE