You are browsing a read-only backup copy of Wikitech. The live site can be found at wikitech.wikimedia.org

Portal:Cloud VPS/Admin/Cloudinfra: Difference between revisions

From Wikitech-static
Jump to navigation Jump to search
imported>Arturo Borrero Gonzalez
(expand a bit)
imported>Majavah
No edit summary
Line 6: Line 6:


=== ntp ===
=== ntp ===
These instances are important! They serve the rest of Cloud VPS with NTP updates.
These instances serve the rest of Cloud VPS with NTP updates.


=== mx-out ===
=== mx-out ===
These instances are important! They serve the rest of Cloud VPS with outbound mail handling.
These instances serve the rest of Cloud VPS with outbound mail handling.


=== cloud-puppetmaster ===
=== cloud-puppetmaster ===
These instances are a work in progress. See [[phab:T171188]]
These instances serve as the puppet master for projects that do not use project-local puppet masters.


=== cloudinfra-db ===
=== cloudinfra-db ===
These instances are a work in progress. See [[phab:T219428]]
These instances contain MariaDB databases that keep state for important Cloud VPS infrastructure hosted within Cloud VPS itself. Currently that only includes the Puppet ENC database (labspuppet).


They are currently m1.small. One will replicate from the other as a backup, it should not be on the same physical host.
We don't yet have regular backups of that cluster ([[:phab:T301640]]). :(


=== cloudinfra-internal-puppetmaster ===
=== cloudinfra-internal-puppetmaster ===
This instance is a work in progress. Will be a project-puppetmaster for (some of) the cloudinfra project instances. To be used to serve secrets to cloud-puppetmaster and cloudinfra-db hosts, and potentially mx-out in the event that e.g. DKIM keys are added there in future. No plans to be used with the ntp instances.
This is a small [[Help:Standalone puppetmaster|project-local puppetmaster]] that keeps secrets (such as cumin ssh keys and enc database passwords) for some of the cloudinfra instances.


This is currently m1.small.
=== enc ===
These instances host the puppet enc api that was previously hosted on the cloud-puppetmasters.


== DNS ==
== DNS ==
Line 30: Line 31:
== codfw1dev ==
== codfw1dev ==


The equivalent of this project in the [[Portal:Cloud_VPS/Admin/Deployments#codfw1dev_deployment | codfw1dev deployment ]] is called '''cloudinfra-codfw1dev''', and has the same role within the deployment.
The equivalent of this project in the [[Portal:Cloud_VPS/Admin/Deployments#codfw1dev_deployment|codfw1dev deployment]] is called '''cloudinfra-codfw1dev''', and has the same role within the deployment.

Revision as of 16:16, 8 April 2022

The cloudinfra project is a very special project intended to hold infrastructure relating to running the rest of Cloud VPS. Access to it is restricted under Help:Access policies.

Instances

Types of instances it contains currently:

ntp

These instances serve the rest of Cloud VPS with NTP updates.

mx-out

These instances serve the rest of Cloud VPS with outbound mail handling.

cloud-puppetmaster

These instances serve as the puppet master for projects that do not use project-local puppet masters.

cloudinfra-db

These instances contain MariaDB databases that keep state for important Cloud VPS infrastructure hosted within Cloud VPS itself. Currently that only includes the Puppet ENC database (labspuppet).

We don't yet have regular backups of that cluster (phab:T301640). :(

cloudinfra-internal-puppetmaster

This is a small project-local puppetmaster that keeps secrets (such as cumin ssh keys and enc database passwords) for some of the cloudinfra instances.

enc

These instances host the puppet enc api that was previously hosted on the cloud-puppetmasters.

DNS

This project also has an important role with regards to DNS. See Portal:Cloud_VPS/Admin/DNS for more info.

codfw1dev

The equivalent of this project in the codfw1dev deployment is called cloudinfra-codfw1dev, and has the same role within the deployment.