Maniphest T2017

Install WindRiver replacement server
Open, HighPublic
Actions

Assigned To

Authored By

	dereckson
	Thu, Sep 12, 20:55

Description

As Scaleway offers -20% for 36 months commitment, and as there are price drops on servers, we decided to switch to a PRO-4-L offer.

Other contenders was to keep a PRO-6-S or use a PRO-6-M, but S in't available and -M is only -8% for 12 months.

Plan is to install this new server and transfer data from relevant partitions with ZFS send/receive, then switch public IP address to this new machine.

Revisions and Commits

rOPS Nasqueron Operations
	D3447	rOPS1a4e8231c301 Update network information for WindRiver
	D3446	rOPS0479878ede82 Switch from /usr/home to /home as default home directory on FreeBSD

Related Objects
Search...

Status	Assigned	Task
Open	dereckson	T2017 Install WindRiver replacement server
Open	None	T2018 Check if swap is encrypted
Open	dereckson	T2019 Supersede portsnap by a Git repository
Resolved	dereckson	T2020 Allow /datacube to use a dedicated zfs pool

Event Timeline

Ordered at Scaleway, on the same account than legacy WindRiver.

NetBox: https://netbox.nasqueron.org/dcim/devices/7/

dereckson closed subtask T2018: Check if swap is encrypted as Resolved.Thu, Sep 12, 21:50

dereckson reopened subtask T2018: Check if swap is encrypted as Open.

dereckson mentioned this in D3442: Use Python 3.11 Salt package for FreeBSD bootstrap.Thu, Sep 12, 22:30

OS installed, need tunnel GRE next.

dereckson updated the task description. (Show Details)Fri, Sep 13, 21:50

dereckson added a subtask: T2020: Allow /datacube to use a dedicated zfs pool.

dereckson closed subtask T2020: Allow /datacube to use a dedicated zfs pool as Resolved.Sun, Sep 15, 20:03

ZFS configuration

Main pool: two disks, mirror, to be used for base system, /usr/local, /home, etc.
Secondary pool: one disk, to be used for /datacube

WindRiver (new)

$ zpool status
  pool: arcology
 state: ONLINE
config:

        NAME        STATE     READ WRITE CKSUM
        arcology    ONLINE       0     0     0
          mirror-0  ONLINE       0     0     0
            ada0p3  ONLINE       0     0     0
            ada1p3  ONLINE       0     0     0

errors: No known data errors

  pool: greenway
 state: ONLINE
config:

        NAME        STATE     READ WRITE CKSUM
        greenway    ONLINE       0     0     0
          ada2      ONLINE       0     0     0

errors: No known data errors

Temporary GRE tunnel is 172.27.27.250 <> 172.27.27.36

dhclient6 Vault issue

$ salt windriver state.apply roles/core
windriver:
    Data failed to compile:
----------
    Rendering SLS 'base:roles/core.network.dhclient6' failed: Problem running salt function in Jinja template: Failed to read secret! KeyError: 'vault'; line 14

---
[...]

#   -------------------------------------------------------------
#   DHCPv6 client
#   - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

{% set duid_credentials = salt["credentials.get_duid_credentials"]() %}    <======================

{% if duid_credentials %}

      {% if grains["os"] == "FreeBSD" %}

[...]
---
ERROR: Minions returned with non-zero exit code