Jump to content

Portal:Cloud VPS/Admin/notes/Service predictions for cross realm situation

From Wikitech
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

This page contains information and some predictions on how cloud-related services will go when we migrate them for compliance with the Cross-Realm_traffic_guidelines.

What Current model Predicted future model Comments Level of effort
Cloud rec DNS Yes Done case 4 compliant --- Medium
Cloud auth DNS Yes Done case 4 compliant --- Medium
Toolforge project NFS Yes Done case 1 compliant --- See phab:T291405 High
Toolforge home NFS Yes Done case 1 compliant --- See phab:T291405 High
Misc project NFS Yes Done case 1 compliant --- See phab:T291405 High
Dumps NFS Yes Done case 2 compliant --- Recently done, see https://phabricator.wikimedia.org/T272397 ---
Metrics services cloudmetrics servers in cloud-support production VLAN, with private IPv4. Cloud egress NAT exception. case 1 See https://phabricator.wikimedia.org/T336854 Medium
Wiki replicas Yes Done case 2 compliant case 4 Might move to case 4 in next iteration ---
openstack APIs Yes Done case 4 compliant --- Medium
cloudelastic cluster (elasticsearch) Yes Done case 2 compliant cloudelastic servers in production public VLAN, with public IPv4. No cloud egress NAT exception. RO access from cloud using local firewalling in cloudelastic servers. More info: Help:CirrusSearch_elasticsearch_replicas. ---
cloud hypervisors (cloudvirt servers) Yes Done case 4 compliant --- ---
cloud network (cloudnet & cloudgw servers) Yes Done case 4 compliant --- ---
ceph storage farm TODO case 4 TODO
horizon labweb servers in production public VLAN with public IPv4. case 3 Low
LDAP LDAP servers in production public VLAN with public IPv4. Cloud egress NAT exception. case 2 Low
NFS backups cloudbackup servers in production private VLAN with private IPv4. case 4 --- Medium
Gerrit gerrit.wikimedia.org & gerrit-replica.wikimedia.org servers in production public VLAN with public IPv4. Cloud egress NAT exception. case 2 Leave until deprecation by Gitlab? Low
APT repositories Yes Done case 2 compliant --- See https://phabricator.wikimedia.org/T298042 Low
kraz (IRCD) Yes Done case 2 compliant See https://phabricator.wikimedia.org/T280225 ---
Maps NFS Yes Done case 1 compliant --- See phab:T291405 Medium
Scratch NFS Yes Done case 1 compliant --- See phab:T291405 Medium
main Wikis & API servers in production public VLAN with pulic IPv4. Cloud egress NAT exception. case 2 Dropping the NAT exception is challenging, many moving parts. See News/2021 CloudVPS NAT wikis and https://phabricator.wikimedia.org/T209011 High
nova-fullstack Yes Done case 3 compliant --- See https://phabricator.wikimedia.org/T272587 ---
What Current model Predicted future model Comments Level of effort

See also

Phabricator ticket T207536: Move various support services for Cloud VPS currently in prod into their own instances

Retrieved from "https://wikitech.wikimedia.org/w/index.php?title=Portal:Cloud_VPS/Admin/notes/Service_predictions_for_cross_realm_situation&oldid=2247481"