Page MenuHomeDevCentral
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Yesterday

dereckson retitled D4035: Remove IntraNought gateway from new routers from Remove IntraNought gateway from new routers to Remove IntraNought gateway from new routers.
Tue, Mar 31, 22:33
dereckson retitled D4035: Remove IntraNought gateway from new routers from Remove IntraBought gateway from new routers to Remove IntraNought gateway from new routers.
Tue, Mar 31, 22:24
dereckson retitled D4035: Remove IntraNought gateway from new routers from Removing gateway 172.27.27.1 from Intranought on router-002 and router-003 to Remove IntraBought gateway from new routers.
Tue, Mar 31, 22:23
dereckson added a comment to D4035: Remove IntraNought gateway from new routers.
In D4035#63113, @dereckson wrote:

OK with pillarize too?

Tue, Mar 31, 22:18
dereckson accepted D4035: Remove IntraNought gateway from new routers.

OK with pillarize too?

Tue, Mar 31, 22:16
dereckson added inline comments to D4034: Add debug scripts for Vault, OVH, and VIP assignment.
Tue, Mar 31, 21:31
dereckson requested changes to D4033: Attach OVH VIP to the CARP MASTER MAC.

If we're going to flood /var/log/messages with carp debug information, perhaps should we create a separate log topic, but that can be another change. I've created T2292.

Tue, Mar 31, 21:17
dereckson triaged T2292: Create syslog configuration for CARP as Normal priority.
Tue, Mar 31, 21:16 · Servers, Secure HA tunnels

Mon, Mar 30

dereckson added inline comments to D3988: Configure strongSwan as IPsec implementation.
Mon, Mar 30, 17:20

Sun, Mar 29

dereckson added inline comments to D4026: Deploy or rotate Vault secrets.
Sun, Mar 29, 20:29
dereckson accepted D4031: Generate secretsmith Vault configuration for routers via Salt.
Sun, Mar 29, 20:28
dereckson added a revision to T2276: Automate CARP VIP MAC reassignment using devd and OVH API: D4031: Generate secretsmith Vault configuration for routers via Salt.
Sun, Mar 29, 20:27 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson updated the summary of D4031: Generate secretsmith Vault configuration for routers via Salt.
Sun, Mar 29, 20:27

Wed, Mar 25

dereckson moved T1939: Implement blue/green deployment or immutable artefacts for router-001 from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Servers, Drake network
dereckson moved T2096: WindRiver Route to Drake private network Ignored from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Drake network, Servers
dereckson moved T2167: Implement Common Address Redundancy Protocol (CARP) from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Servers, Drake network, Workshop
dereckson moved T2276: Automate CARP VIP MAC reassignment using devd and OVH API from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson moved T2290: Installation of CARP switch Python dependencies via Salt from Backlog to IntraNought / GRE tunnels on the Drake network board.
Wed, Mar 25, 12:49 · Python package, Drake network, Servers, Secure HA tunnels
dereckson closed D4020: Install GNU findutils.
Wed, Mar 25, 11:32
dereckson committed rOPS0564e79c0fe6: Install GNU findutils (authored by dereckson).
Install GNU findutils
Wed, Mar 25, 11:32
dereckson added a parent task for T2291: Configure explicitly php-fpm pool in nginx Docker image: T1294: Dockerize tools.nasqueron.org.
Wed, Mar 25, 11:24 · Nasqueron Tools, Docker images
dereckson added a subtask for T1294: Dockerize tools.nasqueron.org: T2291: Configure explicitly php-fpm pool in nginx Docker image.
Wed, Mar 25, 11:24 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson moved T2291: Configure explicitly php-fpm pool in nginx Docker image from Backlog to Infra / DevOps on the Nasqueron Tools board.
Wed, Mar 25, 11:23 · Nasqueron Tools, Docker images
dereckson moved T2291: Configure explicitly php-fpm pool in nginx Docker image from Backlog to Need Dockerfile or config on the Docker images board.
Wed, Mar 25, 11:23 · Nasqueron Tools, Docker images
dereckson updated the task description for T2291: Configure explicitly php-fpm pool in nginx Docker image.
Wed, Mar 25, 11:22 · Nasqueron Tools, Docker images
dereckson triaged T2291: Configure explicitly php-fpm pool in nginx Docker image as High priority.
Wed, Mar 25, 11:20 · Nasqueron Tools, Docker images
dereckson added a comment to T1294: Dockerize tools.nasqueron.org.

Two actions to fix:

Wed, Mar 25, 11:14 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson added a comment to T1294: Dockerize tools.nasqueron.org.

The nginx configuration doesn't seem the same for the Docker container and the development site:

Wed, Mar 25, 10:44 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson moved T1294: Dockerize tools.nasqueron.org from Live on tools. to Infra / DevOps on the Nasqueron Tools board.
Wed, Mar 25, 10:31 · Operations sprints (Consolidate them all), Docker images, Nasqueron Tools, Servers
dereckson moved T1982: Upgrade from Python 3.9 to Python 3.11+ from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:33 · TLS certificates, Servers
dereckson moved T1599: Install TLS wildcard certificates for nginx fallback vhost from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, Operations sprints (Ignite Alkane Propulsion), Servers
dereckson moved T1167: Restart nginx on Ysul when renew certificates from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, Wolfplex migration, Servers, User-Dereckson
dereckson moved T1966: Automate certificates renewal for Vault from Backlog to Vault / Nasqueron PKI on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, Vault
dereckson moved T1513: Propagate certificate to Openfire server from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:32 · TLS certificates, XMPP, security, Servers
dereckson moved T1602: Provision ACME DNS credentials for core domains on each servers from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, Operations sprints (Ignite Alkane Propulsion), security, Servers
dereckson moved T1505: Automate Let's Encrypt TLS certificates management for every server from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, Servers
dereckson moved T1342: Let's encrypt on Debian use logrotate from Backlog to Let's Encrypt - legacy on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, security, Servers, Eglide, Salt
dereckson moved T2043: Switch to acme.sh instead of certbot from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, Operations sprints (Ignite Alkane Propulsion), Servers
dereckson moved T2062: Native TLS support from Backlog to Applications on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, wurf
dereckson moved T2112: Renew Vault web server certificate automatically from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:31 · TLS certificates, security, Servers
dereckson moved T2155: Review rotation for acme.sh logs from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:30 · TLS certificates, Restricted Project, security, Servers
dereckson moved T2196: Reload of dovecot and postfix when certif renew from Backlog to Let's Encrypt - acme.sh on the TLS certificates board.
Wed, Mar 25, 09:30 · TLS certificates, Restricted Project, good-first-issue, Nasqueron Operations Squad, Mail
dereckson requested review of D4030: Sort more DevCentral projects in Notifications Center.
Wed, Mar 25, 08:53
dereckson set the image for TLS certificates to F25014448: profile.
Wed, Mar 25, 08:31
dereckson created TLS certificates.
Wed, Mar 25, 08:30
dereckson accepted D4029: Allow role router to access ops/secrets/network/router/vault.
Wed, Mar 25, 08:23

Tue, Mar 24

dereckson accepted D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 17:58
dereckson created P397 rg packages_prefixes.
Tue, Mar 24, 17:18
dereckson added inline comments to D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 17:12
dereckson renamed T2290: Installation of CARP switch Python dependencies via Salt from Installation of CARP switch Python dependencies via Salt to Installation of CARP switch Python dependencies via Salt.
Tue, Mar 24, 15:29 · Python package, Drake network, Servers, Secure HA tunnels
dereckson added projects to T2290: Installation of CARP switch Python dependencies via Salt: Secure HA tunnels, Servers, Drake network.
Tue, Mar 24, 15:29 · Python package, Drake network, Servers, Secure HA tunnels
dereckson renamed T2290: Installation of CARP switch Python dependencies via Salt from Installation of Python dependencies via Salt to Installation of CARP switch Python dependencies via Salt.
Tue, Mar 24, 15:28 · Python package, Drake network, Servers, Secure HA tunnels
dereckson renamed T2290: Installation of CARP switch Python dependencies via Salt from Installation of secretsmith and ovh via Salt to Installation of Python dependencies via Salt.
Tue, Mar 24, 15:27 · Python package, Drake network, Servers, Secure HA tunnels
dereckson added a subtask for T2276: Automate CARP VIP MAC reassignment using devd and OVH API: T2290: Installation of CARP switch Python dependencies via Salt.
Tue, Mar 24, 15:27 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson added a parent task for T2290: Installation of CARP switch Python dependencies via Salt: T2276: Automate CARP VIP MAC reassignment using devd and OVH API.
Tue, Mar 24, 15:27 · Python package, Drake network, Servers, Secure HA tunnels
dereckson updated the test plan for D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 13:59
dereckson retitled D4027: Install dependencies to register MAC address to ISP from Install ovh and secretsmith via Salt to Install dependencies to register MAC address to ISP.
Tue, Mar 24, 13:42
dereckson added a revision to T2276: Automate CARP VIP MAC reassignment using devd and OVH API: D4027: Install dependencies to register MAC address to ISP.
Tue, Mar 24, 13:42 · Drake network, Servers, Monitoring and reporting, Secure HA tunnels
dereckson requested review of D4028: Update Black style.
Tue, Mar 24, 12:48

Mon, Mar 23

dereckson added inline comments to D4027: Install dependencies to register MAC address to ISP.
Mon, Mar 23, 20:51
dereckson added a comment to D2084: Usee Docker pillar information in nginx config.

I've asked upstream for advice how to resolve pillar for another server than the current node @ https://groups.google.com/g/salt-tower/c/XEKg2CEiZrU

Mon, Mar 23, 17:06
dereckson planned changes to D2084: Usee Docker pillar information in nginx config.

The output is really useful to avoid to manually repeat the ports.

Mon, Mar 23, 16:37
dereckson updated the diff for D2084: Usee Docker pillar information in nginx config.

Rebased. Fixed pillar handling.

Mon, Mar 23, 16:32
dereckson added a comment to D4026: Deploy or rotate Vault secrets.
In D4026#62889, @dereckson wrote:

Note: we're deploying a third secret for CARP routers scripts. If we've already that code merged, we'll need to append a line to deploy that state too.

Mon, Mar 23, 14:26
dereckson added a comment to D4026: Deploy or rotate Vault secrets.

Note: we're deploying a third secret for CARP routers scripts. If we've already that code merged, we'll need to append a line to deploy that state too.

Mon, Mar 23, 14:21
dereckson updated the summary of D2084: Usee Docker pillar information in nginx config.
Mon, Mar 23, 14:16
dereckson added a comment to D2084: Usee Docker pillar information in nginx config.

Next: try salt web-001 paas_docker.get_upstreams

Mon, Mar 23, 14:12
dereckson added inline comments to D3988: Configure strongSwan as IPsec implementation.
Mon, Mar 23, 14:08
dereckson retitled D2084: Usee Docker pillar information in nginx config from WIP: Use Docker pillar information in nginx config to Usee Docker pillar information in nginx config.
Mon, Mar 23, 14:04
dereckson updated the diff for D2084: Usee Docker pillar information in nginx config.

Rebased against current main for Alkane.

Mon, Mar 23, 14:04
dereckson moved T2289: https://infra.nasqueron.org/cd/dashboard without trailing slash doesn't serve CSS from Backlog to Next on the Servers board.
Mon, Mar 23, 14:01 · Jenkins, Tommy, Servers, Alkane
dereckson triaged T2289: https://infra.nasqueron.org/cd/dashboard without trailing slash doesn't serve CSS as Normal priority.
Mon, Mar 23, 14:00 · Jenkins, Tommy, Servers, Alkane
dereckson added a comment to D2084: Usee Docker pillar information in nginx config.

This change is interesting and should be rebased.

Mon, Mar 23, 13:34
dereckson added a comment to D2030: Enable federation on Pixelfed.

This configuration is for Pixelfed old versions.

Mon, Mar 23, 13:33
dereckson added a comment to D1524: WIP: Allow to manage phpBB containers.

Not sure today if we still want to deploy through Docker, or if we would target Alkane PaaS for Espace Win sites. It's also unknown if it brings value to put back the forum archive.

Mon, Mar 23, 13:29
dereckson added a comment to D1590: Serve zed51.dereckson.be.

Currently, zed51.dereckson.be serves a 500 error.

Mon, Mar 23, 13:28
dereckson closed T1817: Update pillar path for paas_docker.get_subnets as Resolved.
Mon, Mar 23, 10:02 · Salt
dereckson closed T1817: Update pillar path for paas_docker.get_subnets, a subtask of T2123: Fix tests for operations repository, as Resolved.
Mon, Mar 23, 10:02 · Technical debt, Servers
dereckson added a subtask for T2100: Switch to local delivery instead of mailgun: T786: Add PECL extension mailparse to Phabricator Docker image.
Mon, Mar 23, 10:02 · Nasqueron Operations Squad, DevCentral, Mail
dereckson added a parent task for T786: Add PECL extension mailparse to Phabricator Docker image: T2100: Switch to local delivery instead of mailgun.
Mon, Mar 23, 10:02 · good-first-issue, Docker images
dereckson added a comment to T786: Add PECL extension mailparse to Phabricator Docker image.

Tried to deploy on DevCentral - it's now an old container still using PHP 7.4.

Mon, Mar 23, 10:01 · good-first-issue, Docker images
dereckson created P395 mailparse build failure in devcentral container.
Mon, Mar 23, 09:59 · PHP 8.x support, Mail, DevCentral
dereckson closed T1475: Provision a mail server, a subtask of T4: Setup fauve services, as Resolved.
Mon, Mar 23, 09:45 · Servers, Mail, Grip migration
dereckson closed T1475: Provision a mail server as Resolved.

We can consider the mail server as deployed and create tasks for extra actions in the Mail projects.

Mon, Mar 23, 09:45 · Mail, Restricted Project, Servers
dereckson closed T1475: Provision a mail server, a subtask of T1476: Host @wolfplex.be mail, as Resolved.
Mon, Mar 23, 09:45 · Mail, Wolfplex migration
dereckson added a comment to T2099: Provision devcentral local configuration.

@DorianWinty Do we have everything in the configuration or is there some actionnables remaining?

Mon, Mar 23, 09:43 · Nasqueron Operations Squad, DevCentral
dereckson closed T1932: ViMbAdmin Provisioning, a subtask of T1475: Provision a mail server, as Resolved.
Mon, Mar 23, 09:43 · Mail, Restricted Project, Servers
dereckson closed T1932: ViMbAdmin Provisioning as Resolved.

Deployed and working fine.

Mon, Mar 23, 09:43 · Mail, Restricted Project, Servers
dereckson triaged T2288: Install memcached for ViMbAdmin as Low priority.
Mon, Mar 23, 09:41 · Restricted Project, Alkane, Mail
dereckson updated the task description for T1931: Dovecot Provisioning.
Mon, Mar 23, 09:38 · Mail, Restricted Project, Servers
dereckson closed T1931: Dovecot Provisioning, a subtask of T1475: Provision a mail server, as Resolved.
Mon, Mar 23, 09:38 · Mail, Restricted Project, Servers
dereckson closed T1931: Dovecot Provisioning as Resolved.

Dovecot deployed and working well.

Mon, Mar 23, 09:38 · Mail, Restricted Project, Servers
dereckson triaged T2287: Monitoring for Dovecot version mismatch as High priority.
Mon, Mar 23, 09:37 · Monitoring and reporting, Restricted Project, Mail, Servers
dereckson placed T238: JSTOR metadata aren't correctly parsed anymore up for grabs.

[ Resetting assignee of long-assigned tasks. Feel free to reassign when working on this. ]

Mon, Mar 23, 09:33 · User-xcombelle, Source templates generator
dereckson merged T1524: Monitor sudo files on servers into T2286: Detect configuration drift by computing difference between Salt states and deployed.
Mon, Mar 23, 09:09 · Salt
dereckson merged task T1524: Monitor sudo files on servers into T2286: Detect configuration drift by computing difference between Salt states and deployed.
Mon, Mar 23, 09:09 · Eglide, security, Servers
dereckson closed T1524: Monitor sudo files on servers as Wontfix.

With Salt, sudo files content are now managed from rOPS.

Mon, Mar 23, 09:09 · Eglide, security, Servers
dereckson triaged T2286: Detect configuration drift by computing difference between Salt states and deployed as High priority.
Mon, Mar 23, 09:09 · Salt
dereckson closed T1942: Allow Jenkins to trigger deployment through Salt as Wontfix.

Not a priority right now, as we use Alkane to trigger website deployments.

Mon, Mar 23, 08:59 · Continous integration and delivery, Salt
dereckson closed T1942: Allow Jenkins to trigger deployment through Salt, a subtask of T1750: Import FANTOIR database, as Wontfix.
Mon, Mar 23, 08:59 · Nasqueron Databases
Next
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator