Wikimedia Cloud Services team/Onboarding Arturo/Sessions

From MediaWiki.org
Jump to: navigation, search

Arturo and Chase Onboarding Sessions[edit]

Oct 31, 2017[edit]

  • 2017-11-01 is a public holiday for Arturo
    • We should get some/all of these for the next few months on the team calendar
  • Arturo trying to understand which servers are physical, which are virtual, and how they link together
    • Wants a map of how things fit together
  • Nick poked Arturo about setting up his User page on metawiki
  • Chase to find the newly formed ongoing topographical docs
  • Everything is physical *except* Cloud VPS tenents and a few things on Ganeti in "production"

https://wikitech.wikimedia.org/wiki/Ganeti <--- KVM + DRBD

Oct 26, 2017[edit]

  • topics?
  • I've been working on this task today: nfsiostat diamond collector

https://phabricator.wikimedia.org/T179024

To test a patch, depool a node and test in a node:

    https://phabricator.wikimedia.org/P6194


Oct 24, 2017[edit]

Puppet (how does it work)[edit]

    • LDAP is the "same sign-on" solution for all things that are not MediaWiki
    • Unix user accounts outside of Cloud VPS are not connected directly to LDAP
    • Data is managed by Puppet based on modules/admin/data/data.yaml
  • puppetmaster1001.eqiad.wmnet
    • puppet-merge

<change> y/n?

new installs[edit]

https://wikitech.wikimedia.org/wiki/Server_Lifecycle#Installation

  • New installs

New server: foo.eqiad.wmnet management network: foo.mgmt.eqiad.wmnet management network: <asset tag>.eqiad.wnet == mgmt

https://wikitech.wikimedia.org/wiki/Platform-specific_documentation/HP_DL3N0 show system1/network1/Integrated_NICs

files/dhcpd/linux-host-entries.ttyS1-115200:host labcontrol1001 {

   # onboard management

Host *.mgmt.*.wmnet

       StrictHostKeyChecking ask
       UserKnownHostsFile /Users/cpettet/.ssh/wmf_mgmt_hosts
       
https://gerrit.wikimedia.org/r/#/admin/projects/operations/dns

https://phabricator.wikimedia.org/diffusion/

baham.eqiad.wment authdns-update

From pupetmaster1001: new-install <server>

Bastions[edit]

  • Bastions (protected bastion)

restricted.bastion.wmflabs.org ()

toolforge <-- own bastion

---

Cloud VPS project request instructions -- https://phabricator.wikimedia.org/project/view/2875/

Openstack vs Horizon vs Toolsadmin[edit]