You are browsing a read-only backup copy of Wikitech. The live site can be found at wikitech.wikimedia.org
Portal:Cloud VPS/Admin/notes/Service predictions for cross realm situation
< Portal:Cloud VPS | Admin
Jump to navigation
Jump to search
Revision as of 10:50, 24 March 2021 by imported>Arturo Borrero Gonzalez (add main Wikis & APIs section)
 | This page is currently a draft. More information and discussion about changes to this draft on the talk page. |
This page contains information and some predictions on how cloud-related services will go when we migrate them for compliance with the Cross-Realm_traffic_guidelines.
| What | Current model | Predicted future model | Comments |
|---|---|---|---|
| Cloud rec DNS | cloudservices servers in cloud-support production VLAN, with public IPv4. Cloud egress NAT exception. | case 4 | |
| Cloud auth DNS | cloudservices servers in cloud-support production VLAN, with public IPv4. Cloud egress NAT exception. | case 4 | |
| Toolforge project NFS | labstore servers in cloud-support production VLAN, with private IPv4. Cloud egress NAT exception. | case 4 | |
| Toolforge home NFS | labstore servers in cloud-support production VLAN, with private IPv4. Cloud egress NAT exception. | case 4 | |
| Misc project NFS | labstore servers in cloud-support production VLAN, with private IPv4. Cloud egress NAT exception. | case 4 | |
| Dumps NFS |  Done case 2 compliant
|
--- | Recently done, see https://phabricator.wikimedia.org/T272397 |
| Metrics services | cloudmetrics servers in cloud-support production VLAN, with private IPv4. Cloud egress NAT exception. | case 1 | |
| Wiki replicas | case 2 compliant | case 4 | Might move to case 4 in next iteration |
| openstack APIs | cloudcontrol servers in production public VLAN, with public IPv4. Cloud egress NAT exception. | case 4 | |
| cloudelastic cluster (elasticsearch) | Done case 2 compliant
|
cloudelastic servers in production public VLAN, with public IPv4. No cloud egress NAT exception. RO access from cloud using local firewalling in cloudelastic servers. More info: Help:CirrusSearch_elasticsearch_replicas. | |
| cloud hypervisors (cloudvirt servers) | Done case 4 compliant
|
--- | |
| cloud network (cloudnet & cloudgw servers) | Done case 4 compliant
|
--- | |
| ceph storage farm | TODO | TODO | |
| horizon | labweb servers in production public VLAN with public IPv4. | case 3 | |
| LDAP | LDAP servers in production public VLAN with public IPv4. Cloud egress NAT exception. | case 2 | |
| NFS backups | cloudbackup servers in production private VLAN with private IPv4. | TODO | TODO |
| Gerrit | gerrit.wikimedia.org & gerrit-replica.wikimedia.org servers in production public VLAN with public IPv4. Cloud egress NAT exception. | case 2 | |
| APT repositories | apt1001.wikimedia.org & apt1002.wikimedia.org & sodium.wikimedia.org, servers in production public VLAN with public IPv4. Cloud egress NAT exception. | case 2 | Potential low-hanging fruit. |
| kraz | kraz.wikimedia.org and irc.wikimedia.org, servers in production public VLAN with public IPv4. Cloud egress NAT exception. | case 2 | Manages the recent changes irc feed. Potential low-hanging fruit. |
| Maps NFS | cloudstore1008/cloudstore1009, servers in production public VLAN with public IPv4. Cloud egress NAT exception. | case 2 | |
| Scratch NFS | cloudstore1008/cloudstore1009, servers in production public VLAN with public IPv4. Cloud egress NAT exception. | case 2 | |
| main Wikis & API | servers in production public VLAN with pulic IPv4. Cloud egress NAT exception. | case 2 | Dropping the NAT exception is challenging, many moving parts. See News/CloudVPS NAT wikis and https://phabricator.wikimedia.org/T209011 |
| What | Current model | Predicted future model | Comments |