Page MenuHomeDevCentral
Create Task
Maniphest T2017

Install WindRiver replacement server
Open, HighPublic
Actions

Description

As Scaleway offers -20% for 36 months commitment, and as there are price drops on servers, we decided to switch to a PRO-4-L offer.

Other contenders was to keep a PRO-6-S or use a PRO-6-M, but S in't available and -M is only -8% for 12 months.

Plan is to install this new server and transfer data from relevant partitions with ZFS send/receive, then switch public IP address to this new machine.

  • Purchase order
  • Server delivery
  • NetBox description of server, IPs, interfaces
  • OS setup
  • ZFS pools configuration
  • Salt bootstrap
  • GRE tunnel (thanks @DorianWinty)
  • Salt roles
  • Transfer ZFS snapshots
  • Migrate DNS
  • Fix small issues encountered during Salt deployment
  • Rewire to .35 on Drake
  • Grafana
  • Prometheus

Revisions and Commits

rOPS Nasqueron Operations
AcceptedD3458 Update Phabricator repositories
D3515rOPS1383ceb1a27e Update gateway for IPv6 routing on WindRiver
D3461rOPS87258e399ef5 Configure MariaDB and PostgreSQL on WindRiver
D3471rOPS96938415efab Add ascii-sandbox datacube
D3472rOPS0b6076da607b Add documentation datacube
D3447rOPS1a4e8231c301 Update network information for WindRiver
D3446rOPS0479878ede82 Switch from /usr/home to /home as default home directory on FreeBSD
rHOME servers-homepages
D3516rHOMEbbd0d7e90ef5 Update information from WindRiver

Related Objects
Search...

Event Timeline

dereckson triaged this task as High priority.Sep 12 2024, 20:55
dereckson created this task.

Ordered at Scaleway, on the same account than legacy WindRiver.

NetBox: https://netbox.nasqueron.org/dcim/devices/7/

dereckson closed subtask T2018: Check if swap is encrypted as Resolved.Sep 12 2024, 21:50
dereckson reopened subtask T2018: Check if swap is encrypted as Open.
dereckson mentioned this in D3442: Use Python 3.11 Salt package for FreeBSD bootstrap.Sep 12 2024, 22:30
dereckson updated the task description. (Show Details)Sep 12 2024, 22:37

OS installed, need tunnel GRE next.

dereckson updated the task description. (Show Details)Sep 13 2024, 21:50
dereckson added a subtask: T2020: Allow /datacube to use a dedicated zfs pool.
dereckson closed subtask T2020: Allow /datacube to use a dedicated zfs pool as Resolved.Sep 15 2024, 20:03
dereckson updated the task description. (Show Details)Sep 15 2024, 20:04

ZFS configuration

  • Main pool: two disks, mirror, to be used for base system, /usr/local, /home, etc.
  • Secondary pool: one disk, to be used for /datacube
WindRiver (new)
$ zpool status
  pool: arcology
 state: ONLINE
config:

        NAME        STATE     READ WRITE CKSUM
        arcology    ONLINE       0     0     0
          mirror-0  ONLINE       0     0     0
            ada0p3  ONLINE       0     0     0
            ada1p3  ONLINE       0     0     0

errors: No known data errors

  pool: greenway
 state: ONLINE
config:

        NAME        STATE     READ WRITE CKSUM
        greenway    ONLINE       0     0     0
          ada2      ONLINE       0     0     0

errors: No known data errors
dereckson updated the task description. (Show Details)Sep 15 2024, 20:17

Temporary GRE tunnel is 172.27.27.250 <> 172.27.27.36

dereckson added a comment.Sep 15 2024, 20:23

dhclient6 Vault issue

$ salt windriver state.apply roles/core
windriver:
    Data failed to compile:
----------
    Rendering SLS 'base:roles/core.network.dhclient6' failed: Problem running salt function in Jinja template: Failed to read secret! KeyError: 'vault'; line 14

---
[...]

#   -------------------------------------------------------------
#   DHCPv6 client
#   - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

{% set duid_credentials = salt["credentials.get_duid_credentials"]() %}    <======================

{% if duid_credentials %}

      {% if grains["os"] == "FreeBSD" %}

[...]
---
ERROR: Minions returned with non-zero exit code
dereckson added a revision: D3446: Switch from /usr/home to /home as default home directory on FreeBSD.Sep 16 2024, 23:38
dereckson added a revision: D3447: Update network information for WindRiver.Sep 17 2024, 16:29
dereckson mentioned this in rOPS7f9f2b6ae4cd: Use Python 3.11 Salt package for FreeBSD bootstrap.Sep 17 2024, 20:25
dereckson added a commit: rOPS0479878ede82: Switch from /usr/home to /home as default home directory on FreeBSD.Sep 17 2024, 20:31
dereckson added a commit: rOPS1a4e8231c301: Update network information for WindRiver.Sep 17 2024, 20:34
dereckson added a comment.Sep 18 2024, 20:26

ZFS migration

ZFS documentation at https://agora.nasqueron.org/Operations_grimoire/ZFS

Active users are responsible to migrate their own directories.

Timeline

Legacy server order has been revoked and will be destroyed 2024-10-01.

dereckson added a revision: D3458: Update Phabricator repositories.Sep 25 2024, 18:45
dereckson updated the task description. (Show Details)
dereckson added a revision: D3461: Configure MariaDB and PostgreSQL on WindRiver.Sep 25 2024, 19:06
dereckson added a subtask: T2029: Don't provision default tmux configuration on /etc/tmux.conf.Sep 26 2024, 19:06
dereckson added a subtask: T2030: Provide wheel Python package for ruamel.yaml.clib in /opt/python.Sep 26 2024, 19:35
dereckson mentioned this in D3471: Add ascii-sandbox datacube.Sep 29 2024, 12:47
dereckson mentioned this in rOPS96938415efab: Add ascii-sandbox datacube.Sep 29 2024, 13:11
dereckson added a revision: D3472: Add documentation datacube.Sep 29 2024, 13:52
dereckson added a commit: rOPS0b6076da607b: Add documentation datacube.Sep 29 2024, 13:53
dereckson added a commit: rOPS96938415efab: Add ascii-sandbox datacube.Sep 29 2024, 13:53
dereckson added a revision: D3471: Add ascii-sandbox datacube.
dereckson added a subtask: T1960: Unknown domains are currently served by windriver server vhost.Sep 29 2024, 18:22
dereckson added a subtask: T2032: Ensure latest and not quarterly packages are used on devserver role.Sep 30 2024, 15:46
dereckson added a subtask: T2033: Make service.sh start netbox corectly.
dereckson added a subtask: T2034: Stop to try the binary version of pefs.ko.Sep 30 2024, 21:45
dereckson updated the task description. (Show Details)Sep 30 2024, 23:32
dereckson added a subtask: T2042: salt-wrapper is missing from devserver.Oct 3 2024, 17:20
dereckson closed subtask T2042: salt-wrapper is missing from devserver as Resolved.Oct 5 2024, 19:01
dereckson added a commit: rOPS87258e399ef5: Configure MariaDB and PostgreSQL on WindRiver.Oct 6 2024, 14:28
dereckson updated the task description. (Show Details)Oct 12 2024, 21:38
dereckson added a revision: D3515: Update gateway for IPv6 routing on WindRiver.Oct 13 2024, 11:58
dereckson added a commit: rOPS1383ceb1a27e: Update gateway for IPv6 routing on WindRiver.Oct 13 2024, 12:00
dereckson added a revision: D3516: Update information from WindRiver.Oct 13 2024, 12:20
dereckson added a commit: rHOMEbbd0d7e90ef5: Update information from WindRiver.Oct 13 2024, 12:20
dereckson closed subtask T2019: Supersede portsnap by a Git repository as Resolved.Oct 17 2024, 20:12
dereckson closed subtask T2018: Check if swap is encrypted as Resolved.Oct 17 2024, 20:39
dereckson closed subtask T2026: Prune salt autocomplete for shells as Resolved.Oct 17 2024, 21:00
dereckson closed subtask T2029: Don't provision default tmux configuration on /etc/tmux.conf as Resolved.Oct 17 2024, 21:16
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator