| *** rfolco|ruck has quit IRC | 00:07 | |
| *** tosky has quit IRC | 00:17 | |
| *** spatel has joined #openstack-ansible | 01:06 | |
| *** spatel has quit IRC | 02:01 | |
| *** lemko has quit IRC | 04:22 | |
| *** lemko7 has joined #openstack-ansible | 04:22 | |
| *** evrardjp has quit IRC | 05:33 | |
| *** cshen has quit IRC | 05:33 | |
| *** evrardjp has joined #openstack-ansible | 05:33 | |
| *** shyamb has joined #openstack-ansible | 06:19 | |
| *** klamath_atx has joined #openstack-ansible | 06:32 | |
| *** NewJorg has quit IRC | 06:40 | |
| *** shyamb has quit IRC | 06:53 | |
| *** miloa has joined #openstack-ansible | 06:58 | |
| *** cshen has joined #openstack-ansible | 07:03 | |
| *** NewJorg has joined #openstack-ansible | 07:12 | |
| *** shyamb has joined #openstack-ansible | 07:31 | |
| *** spatel has joined #openstack-ansible | 07:31 | |
| *** spatel has quit IRC | 07:35 | |
| *** rpittau|afk is now known as rpittau | 07:39 | |
| *** pto has joined #openstack-ansible | 07:43 | |
| *** pto_ has joined #openstack-ansible | 07:52 | |
| *** pto has quit IRC | 07:54 | |
| *** luksky has joined #openstack-ansible | 07:58 | |
| *** shyamb has quit IRC | 08:00 | |
| *** jbadiapa has joined #openstack-ansible | 08:09 | |
| *** andrewbonney has joined #openstack-ansible | 08:42 | |
| *** tosky has joined #openstack-ansible | 08:48 | |
| jrosser | morning | 08:54 |
|---|---|---|
| admin0 | morning | 08:58 |
| noonedeadpunk | o/ | 09:09 |
| *** openstackgerrit has joined #openstack-ansible | 09:15 | |
| openstackgerrit | Dmitriy Rabotyagov proposed openstack/openstack-ansible-os_neutron master: Updated from OpenStack Ansible Tests https://review.opendev.org/c/openstack/openstack-ansible-os_neutron/+/758751 | 09:15 |
| noonedeadpunk | jrosser: can I summon your vote on https://review.opendev.org/c/openstack/openstack-ansible/+/763048 to see if it solve octavia CI upgrade jobs failure on master? | 09:17 |
| admin0 | anyone has the latest AIO for 21.2.0 up and running ? even after 10 rebuilds, the cinder volumes can be created, but not mounted | 09:27 |
| admin0 | i want to check if it failed our QA process .. or is something broken in my end | 09:28 |
| admin0 | the instance and volumes can be created fine .. but the volumes cannot be mounted to the instances | 09:28 |
| admin0 | which beats the purpose .. | 09:28 |
| jrosser | noonedeadpunk: done | 09:29 |
| jrosser | noonedeadpunk: how much more do we have before we can do a V release-candidate? | 09:31 |
| jrosser | perhaps we shoul revisit the etherpad and make a new list | 09:32 |
| *** shyamb has joined #openstack-ansible | 09:32 | |
| noonedeadpunk | eah, probably. I think nothing too critical, except broken magnum because of upgrade jobs, and would be awesome to merge adjutant not to branch it in state that breaks integrated repo | 09:33 |
| noonedeadpunk | and, probably, swift as well... | 09:33 |
| noonedeadpunk | but I'm about just to branch honestly | 09:34 |
| jrosser | oh yes adjutant is a giant patch but I guess the role is experimental so we should do a quick review, merge and iterate | 09:34 |
| noonedeadpunk | btw, regarding https://review.opendev.org/c/openstack/openstack-ansible/+/734883/4/scripts/journal_dump.py - I think we won't actually need importing and depending on lxc here in case we did bind mounting right | 09:36 |
| noonedeadpunk | since we should be able to see all container journals on host itself | 09:37 |
| openstackgerrit | Dmitriy Rabotyagov proposed openstack/openstack-ansible-os_keystone master: Move openstack-ansible-uw_apache centos job to centos-8 https://review.opendev.org/c/openstack/openstack-ansible-os_keystone/+/754122 | 09:41 |
| openstackgerrit | Dmitriy Rabotyagov proposed openstack/openstack-ansible-os_keystone master: Add openstack-ansible-uw_apache focal job https://review.opendev.org/c/openstack/openstack-ansible-os_keystone/+/754123 | 09:42 |
| jrosser | noonedeadpunk: just one comment that i can see on the adjutant patch | 09:44 |
| noonedeadpunk | I think you;re right | 09:45 |
| openstackgerrit | Dmitriy Rabotyagov proposed openstack/openstack-ansible-os_adjutant master: Make role fit to the OSA standards https://review.opendev.org/c/openstack/openstack-ansible-os_adjutant/+/756313 | 09:47 |
| openstackgerrit | Dmitriy Rabotyagov proposed openstack/openstack-ansible-os_adjutant master: Make role fit to the OSA standards https://review.opendev.org/c/openstack/openstack-ansible-os_adjutant/+/756313 | 09:48 |
| *** shyamb has quit IRC | 09:52 | |
| *** shyamb has joined #openstack-ansible | 09:56 | |
| *** SiavashSardari has joined #openstack-ansible | 10:03 | |
| *** spatel has joined #openstack-ansible | 10:31 | |
| *** pto_ has quit IRC | 10:33 | |
| *** pto has joined #openstack-ansible | 10:33 | |
| *** spatel has quit IRC | 10:36 | |
| openstackgerrit | Andrew Bonney proposed openstack/openstack-ansible-os_zun master: DNM: Update zun role to match current requirements https://review.opendev.org/c/openstack/openstack-ansible-os_zun/+/763141 | 10:41 |
| SiavashSardari | Hey guys, I have a question about openstack ansible collections, should I ask here or in the sig channel? | 10:53 |
| *** macz_ has joined #openstack-ansible | 11:03 | |
| *** macz_ has quit IRC | 11:07 | |
| jrosser | SiavashSardari: we are users of the openstack collection here in the openstack-ansible project, but for developer stuff about the collection itself that would be in #openstack-ansible-sig | 11:45 |
| SiavashSardari | jrosser thanks. | 11:47 |
| openstackgerrit | Merged openstack/openstack-ansible-os_swift master: Updated from OpenStack Ansible Tests https://review.opendev.org/c/openstack/openstack-ansible-os_swift/+/758756 | 11:49 |
| *** shyamb has quit IRC | 12:09 | |
| *** rfolco|ruck has joined #openstack-ansible | 12:11 | |
| *** gshippey has joined #openstack-ansible | 12:12 | |
| *** miloa has quit IRC | 12:13 | |
| openstackgerrit | Jonathan Rosser proposed openstack/openstack-ansible master: Added Openstack Adjutant role deployment https://review.opendev.org/c/openstack/openstack-ansible/+/756310 | 12:48 |
| admin0 | checking if anyone has an AIO of 21.2.0 to check if the volume created by the test can be mounted on the instance .. or any new volume created can be mounted on the instance for that matter .. | 12:58 |
| admin0 | if it cannot be, then we need to add this test to the final checklist as well | 12:58 |
| openstackgerrit | Merged openstack/openstack-ansible-os_neutron master: Fix ceilometer constraints https://review.opendev.org/c/openstack/openstack-ansible-os_neutron/+/762151 | 13:06 |
| jrosser | admin0: are you able to provide any debug info? like where it actually fails from the service logs? | 13:34 |
| admin0 | i nuked it yet again | 13:35 |
| admin0 | i will create a new one and provide that | 13:35 |
| jrosser | ok thanks | 13:35 |
| openstackgerrit | Merged openstack/openstack-ansible-os_barbican master: Cleanup stop handler and barbican_apache_* variables https://review.opendev.org/c/openstack/openstack-ansible-os_barbican/+/756689 | 13:38 |
| *** dave-mccowan has joined #openstack-ansible | 13:38 | |
| openstackgerrit | Merged openstack/openstack-ansible master: Add magnum tempest URL https://review.opendev.org/c/openstack/openstack-ansible/+/763049 | 13:51 |
| *** spatel has joined #openstack-ansible | 14:02 | |
| spatel | I loved our old interface https://review.opendev.org/ | 14:03 |
| SiavashSardari | +1 on old interface | 14:04 |
| admin0 | if i add flat , is it also using br-vlan but without tags ( never used osa flat before) | 14:17 |
| admin0 | flat network* | 14:17 |
| spatel | admin0: I think yes br-vlan would be on flat but without tags | 14:19 |
| admin0 | thanks | 14:19 |
| spatel | admin0: Hey after disable port security my Trex was happy :) | 14:19 |
| admin0 | :D | 14:19 |
| admin0 | people forget this part when using trex | 14:19 |
| spatel | admin0: i totally missed that and didn't think about that because my security-group was all allow so i thought it should do that | 14:20 |
| *** lkoranda has joined #openstack-ansible | 14:24 | |
| openstackgerrit | Merged openstack/openstack-ansible master: Add default simple key to secrets https://review.opendev.org/c/openstack/openstack-ansible/+/759082 | 14:24 |
| *** pcaruana has quit IRC | 14:25 | |
| spatel | jamesdenton: do you have any specific test like to run using Trex? | 14:28 |
| spatel | currently i am running all 64k UDP packet test and with 8vCPU/8GB VM reaching 75kpps (with single core multi-queue ) | 14:29 |
| spatel | but if i add 4 core to multi-queue i am almost hitting 175kpps so multi-queue is totally boost performance :) | 14:30 |
| spatel | BRB | 14:31 |
| *** spatel has quit IRC | 14:31 | |
| *** gouthamr_ has quit IRC | 14:36 | |
| *** SiavashSardari has quit IRC | 14:37 | |
| *** pcaruana has joined #openstack-ansible | 15:01 | |
| *** macz_ has joined #openstack-ansible | 15:03 | |
| *** macz_ has quit IRC | 15:03 | |
| *** macz_ has joined #openstack-ansible | 15:04 | |
| *** klamath_atx has quit IRC | 15:07 | |
| admin0 | Interface eth12 for physical network flat does not exist | 15:08 |
| admin0 | i need a bit of help to understand osa flat | 15:11 |
| admin0 | the interface is already on br-vlan ( ens6) from where i am supposed to send public traffic | 15:11 |
| admin0 | but neutron dies with " Interface eth12 for physical network flat does not exist" | 15:12 |
| admin0 | l3-agent dies with specifically | 15:12 |
| admin0 | "neutron-linuxbridge-agent[62822]: 2020-11-24 16:14:16.813 62822 ERROR neutron.plugins.ml2.drivers.linuxbridge.agent.linuxbridge_neutron_agent [-] Interface eth12 for physical network flat does not exist. Agent terminated!" | 15:14 |
| *** klamath_atx has joined #openstack-ansible | 15:15 | |
| admin0 | is there a command to check what port/network a netns is plugged into ? | 15:24 |
| admin0 | i see the namespace got qg-4f64bf74-86 which is under brq5296821f-42 .. but this is not under any br-vlan or interface | 15:27 |
| *** nurdie has quit IRC | 15:38 | |
| jamesdenton | unless you plan on using a flat network, i would just get rid of that whole block | 15:39 |
| *** nurdie has joined #openstack-ansible | 15:39 | |
| admin0 | first time in almost 8 years of using osa that i have a need to use flat networking :D | 15:46 |
| jamesdenton | oh, hahaha | 15:46 |
| admin0 | and i am failing to understand how this works | 15:46 |
| jamesdenton | are you using lxc still for containers? | 15:46 |
| admin0 | yep | 15:46 |
| jamesdenton | or, rather, are your neutron agents in containers? | 15:46 |
| jamesdenton | ok | 15:46 |
| admin0 | but the agents are in metal on a network node | 15:46 |
| admin0 | no containers | 15:46 |
| jamesdenton | oh alright | 15:46 |
| admin0 | so wat i have is this .. i have ens5 where is under br-vlan .. and also listed as interface for br-flat | 15:47 |
| jamesdenton | so with lxc, eth12 would have been a veth | 15:47 |
| jamesdenton | yeah, you can't do that | 15:47 |
| admin0 | so what exactly do i need to do to use br-flat .. i need to remove br-vlan ? | 15:48 |
| jamesdenton | i would use host_bind_override | 15:48 |
| admin0 | let me pastebin my config | 15:48 |
| jamesdenton | which eliminates both br-vlan and br-flat, and uses the interface (ens5) directly | 15:48 |
| admin0 | jamesdenton, https://gist.githubusercontent.com/a1git/2d0b68d8c5b14cb234f694d8a458ce2d/raw/fce1b56eec99783c8878f70fe2b406b7901ae3da/gistfile1.txt | 15:50 |
| jamesdenton | what happens if you just remove container_interface: "eth12"? | 15:52 |
| admin0 | please note that in my setup, br-vlan has the enp5s0 interface | 15:54 |
| admin0 | that is ok ? | 15:54 |
| admin0 | i will remove and re-run | 15:54 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible/+/763995 | 15:54 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-apt_package_pinning master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-apt_package_pinning/+/763996 | 15:55 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-ceph_client master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-ceph_client/+/763998 | 15:56 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-galera_client master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-galera_client/+/763999 | 15:57 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-haproxy_server master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-haproxy_server/+/764000 | 16:00 |
| noonedeadpunk | #startmeeting openstack_ansible_meeting | 16:01 |
| openstack | Meeting started Tue Nov 24 16:01:07 2020 UTC and is due to finish in 60 minutes. The chair is noonedeadpunk. Information about MeetBot at http://wiki.debian.org/MeetBot. | 16:01 |
| openstack | Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. | 16:01 |
| *** openstack changes topic to " (Meeting topic: openstack_ansible_meeting)" | 16:01 | |
| openstack | The meeting name has been set to 'openstack_ansible_meeting' | 16:01 |
| gshippey | o/ | 16:01 |
| noonedeadpunk | o/ | 16:02 |
| jamesdenton | o/ | 16:02 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-nspawn_container_create master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-nspawn_container_create/+/764001 | 16:03 |
| noonedeadpunk | #topic bug triage | 16:03 |
| *** openstack changes topic to "bug triage (Meeting topic: openstack_ansible_meeting)" | 16:03 | |
| noonedeadpunk | so I see 2 new bugs atm | 16:03 |
| noonedeadpunk | https://bugs.launchpad.net/openstack-ansible/+bug/1904935 | 16:03 |
| openstack | Launchpad bug 1904935 in openstack-ansible "Get swift rings ssh conection" [Undecided,New] | 16:03 |
| noonedeadpunk | I think we should replace these nasty commands with synchronize module | 16:03 |
| jrosser | o/ hello | 16:03 |
| noonedeadpunk | it should respect as ansible_ssh_port and ssh config | 16:04 |
| noonedeadpunk | and the second is rgw related https://bugs.launchpad.net/openstack-ansible/+bug/1905174 | 16:05 |
| openstack | Launchpad bug 1905174 in openstack-ansible "Using radosgw as a drop-in replacement for Swift in openstack-ansible" [Undecided,New] | 16:05 |
| jrosser | hmm | 16:07 |
| noonedeadpunk | well, I think we can add endpoints when rgw hosts are set or enabled? | 16:07 |
| jrosser | S3 will never appear in horizon | 16:07 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-nspawn_hosts master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-nspawn_hosts/+/764002 | 16:07 |
| jrosser | there is a terminology problem there | 16:07 |
| jrosser | you need swift to make horizon work | 16:07 |
| jrosser | or rgw configured to serve swift | 16:08 |
| noonedeadpunk | well yes, agree | 16:08 |
| jrosser | and also the change to the name with .rgw on the end looks suspect to me | 16:08 |
| noonedeadpunk | and I thought we have some variables to make this ahppen? | 16:08 |
| jrosser | becasue you may have more than one rgw process on the same host | 16:08 |
| noonedeadpunk | well yes, that's what not very clear to me currentl;y | 16:09 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-openstack_hosts master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-openstack_hosts/+/764007 | 16:09 |
| jrosser | also these patches ^^ | 16:09 |
| noonedeadpunk | but it's indeed hwat we have in defaults https://opendev.org/openstack/openstack-ansible/src/branch/master/inventory/group_vars/ceph-rgw.yml#L3 | 16:09 |
| admin0 | jamesdenton, didn't worked :( | 16:09 |
| noonedeadpunk | these patches seem valid for me | 16:10 |
| jamesdenton | admin0 ok - let's sync back up after this meeting | 16:10 |
| admin0 | sure | 16:10 |
| jrosser | noonedeadpunk: are you sure it doesnt inherit install_command from [testenv] ? | 16:10 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-openstack_openrc master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-openstack_openrc/+/764008 | 16:11 |
| noonedeadpunk | ah | 16:11 |
| noonedeadpunk | we did that weird way lol | 16:11 |
| jrosser | i'm fairly well -2 on these unless thats shown to be currently broken | 16:11 |
| noonedeadpunk | agree | 16:12 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-os_aodh master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-os_aodh/+/764009 | 16:12 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-os_barbican master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-os_barbican/+/764010 | 16:13 |
| noonedeadpunk | regarding 1905174 I'm not sure honestly - I never used ceph ansible and deployed rgw with swift only manually, so not huge expert | 16:13 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-os_blazar master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-os_blazar/+/764011 | 16:14 |
| jrosser | we have a deployment like that here which could be used as a reference | 16:14 |
| noonedeadpunk | while only I agree that we probably should double check that we have all set to make it as full swift replacement | 16:14 |
| jrosser | though we did deploy completely seperate rgw for S3 and swift | 16:14 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-os_ceilometer master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-os_ceilometer/+/764012 | 16:14 |
| jrosser | i think you need to have swift served from / if you want to pass tempest tests | 16:15 |
| noonedeadpunk | yeah would be awesome in case you could take a look | 16:15 |
| jrosser | and also S3 must be served from / | 16:15 |
| jrosser | so there is a bit of a conflict there | 16:15 |
| openstackgerrit | wu.chunyang proposed openstack/openstack-ansible-os_cinder master: Dep's should be restricted by tox-constraints https://review.opendev.org/c/openstack/openstack-ansible-os_cinder/+/764013 | 16:15 |
| noonedeadpunk | and there're no options to configure tempest for root? | 16:16 |
| jrosser | i would have to get stuargr to look back at what we did | 16:17 |
| noonedeadpunk | I think for SWIFT it will jsut take endpoint from keystone so it doesn't matter what root it is set? | 16:18 |
| jrosser | yes thats right | 16:18 |
| *** nurdie has quit IRC | 16:19 | |
| noonedeadpunk | so we can set S3 in / and SWIFT in /swift/v1/AUTH_%(project_id)s (at leat that's wjhat I have | 16:19 |
| noonedeadpunk | but I have `client.rgw.{{ hostvars[inventory_hostname]['ansible_hostname'] }}` and it's working perfect for me.... | 16:20 |
| noonedeadpunk | ok | 16:21 |
| noonedeadpunk | #topic office hours | 16:21 |
| *** openstack changes topic to "office hours (Meeting topic: openstack_ansible_meeting)" | 16:21 | |
| gshippey | any high priority patches that I can give a go reviewing? | 16:21 |
| noonedeadpunk | https://review.opendev.org/c/openstack/openstack-ansible/+/763063 <- this one breaks bump bot | 16:22 |
| noonedeadpunk | https://review.opendev.org/c/openstack/openstack-ansible-os_adjutant/+/756313 <- huge adjutant patch that would be awesome to merge | 16:23 |
| noonedeadpunk | I had smth to discuss but didn't write down and clean forgot now :( | 16:25 |
| noonedeadpunk | I guess the main point was to do some reviews to be able to branch asap | 16:25 |
| noonedeadpunk | as I again failed to released it time :( | 16:25 |
| noonedeadpunk | *to release in time | 16:25 |
| jrosser | sure - we should have a big push on reviewing things in order to release | 16:25 |
| noonedeadpunk | I've updated https://etherpad.opendev.org/p/osa-wallaby-ptg but probably worth creating new etherpad | 16:26 |
| noonedeadpunk | also, I think we never merged spec for ssl | 16:26 |
| noonedeadpunk | and no feedbacck on it | 16:26 |
| openstackgerrit | Dmitriy Rabotyagov proposed openstack/openstack-ansible stable/ussuri: Add magnum tempest URL https://review.opendev.org/c/openstack/openstack-ansible/+/763908 | 16:27 |
| noonedeadpunk | https://review.opendev.org/c/openstack/openstack-ansible-specs/+/758805 <- this one | 16:27 |
| jrosser | :( sorry | 16:27 |
| noonedeadpunk | so everyone interested are welcome to comment out and probably merge it one day | 16:27 |
| noonedeadpunk | oh, well, have everyone heard about change of the ansible versioning process? :) | 16:31 |
| noonedeadpunk | that they will make 3.0.0 instead of 2.11? | 16:31 |
| noonedeadpunk | and will release in .... february? | 16:32 |
| noonedeadpunk | so I think we should aim to release W with 3.0.0 | 16:33 |
| noonedeadpunk | the main challenge will be py3.8 | 16:33 |
| noonedeadpunk | https://www.reddit.com/r/ansible/comments/jwzwwf/ansible300_schedule_and_preview_of_400_schedule/ | 16:33 |
| jrosser | is that centos (!) that we will have a challenge with? | 16:34 |
| noonedeadpunk | and partially bionic that we can techically drop | 16:34 |
| jrosser | yeah, though i wonder if we can move to pyenv or something to get the actual python | 16:34 |
| noonedeadpunk | yeah, that was my sggestion as well | 16:35 |
| noonedeadpunk | it will increase deployment time for several minutes, but I think that should be generally ok | 16:35 |
| noonedeadpunk | but it will be one more thing that we should take care about :( | 16:36 |
| noonedeadpunk | ah, well, I placed also https://review.opendev.org/c/openstack/openstack-ansible-os_nova/+/763216 (which is not currentl;y working -had no time to look what specificly rong with it, but there should be something minor) | 16:37 |
| noonedeadpunk | and I have no idea how we technically can backport this... | 16:38 |
| noonedeadpunk | and I really had second thoughts about just masking systemd services to rollback to classic libvirt behaviour | 16:38 |
| -openstackstatus- NOTICE: The Gerrit service on review.opendev.org is being restarted quickly to troubleshoot an SMTP queuing backlog, downtime should be less than 5 minutes | 16:41 | |
| noonedeadpunk | as replacing libvirtd.service provided by system package is no fun.... | 16:41 |
| *** pcaruana has quit IRC | 16:45 | |
| *** shyamb has joined #openstack-ansible | 16:47 | |
| * jrosser looks now gerrit is back | 16:47 | |
| jrosser | noonedeadpunk: do we need to replace the service file? | 16:48 |
| noonedeadpunk | well, not replace, but I'm placing new one in /etc/systemd that should have prescedence over package provided one | 16:49 |
| noonedeadpunk | and I'm trying to make it as much the same as I can | 16:49 |
| jrosser | if there is just things like socket activation we could use a systemd dropin | 16:49 |
| jrosser | rather than replace | 16:49 |
| noonedeadpunk | yeah, sorry, it's really not replace but drop in | 16:50 |
| *** shyam89 has joined #openstack-ansible | 16:50 | |
| noonedeadpunk | if I got you right | 16:50 |
| noonedeadpunk | (I think we can't just partially override that way) | 16:50 |
| *** shyamb has quit IRC | 16:51 | |
| *** spatel has joined #openstack-ansible | 16:53 | |
| jrosser | a systemd dropin can (i think) be used to selectively override the one that comes with the package | 16:54 |
| jrosser | "Along with a unit file foo.service, a "drop-in" directory foo.service.d/ may exist. All files with the suffix ".conf" from this directory will be parsed after the unit file itself is parsed." | 16:55 |
| jrosser | so if there is one thing that we need to add, like a [socket] section, then it can be carried in a seperate file and we just leave alone the package on, if it doesnt otherwise need changing | 16:56 |
| * jrosser not looked at the detail of this though | 16:56 | |
| noonedeadpunk | yeah, ofc I added sockets as a separate files. but I think that service itself needs changing to add requirement of these new sockets? | 16:57 |
| *** lkoranda has quit IRC | 16:58 | |
| jrosser | yeah so if you want to just change one thing out of the original config you can put foo.service.d/bar.conf [section] key=value | 16:59 |
| *** shyam89 has quit IRC | 16:59 | |
| jrosser | and that will change the setting from the original service unit | 16:59 |
| noonedeadpunk | hm.... | 17:00 |
| *** timburke has quit IRC | 17:00 | |
| jrosser | it's the systemd native way of doing overrides of distro provided unit files | 17:00 |
| jrosser | so that things dont vanish when you update packages for example | 17:00 |
| *** rpittau is now known as rpittau|afk | 17:01 | |
| noonedeadpunk | I'm strugling to do it properly then.... | 17:01 |
| noonedeadpunk | ok, yes, I think it's better approach that mess I was trying to do | 17:02 |
| noonedeadpunk | *then | 17:02 |
| noonedeadpunk | but how to place socket's itself... I thought that adding sockets deployment to systemd-service role should be perfect | 17:03 |
| noonedeadpunk | but the problem is that sockets should be part of the service (and reference it) | 17:03 |
| noonedeadpunk | And I have no idea what the right structure should be in case we don't define service | 17:04 |
| noonedeadpunk | That what I come up with for systemd role https://review.opendev.org/c/openstack/ansible-role-systemd_service/+/763194 | 17:04 |
| noonedeadpunk | but maybe I should do sockets just indepenently from service.... | 17:04 |
| jrosser | i think they should be seperate .socket units? | 17:06 |
| admin0 | are we still on meeting ? | 17:06 |
| noonedeadpunk | yeah, but they should have `Service` in `[Socket]` | 17:07 |
| noonedeadpunk | #endmeeting | 17:07 |
| *** openstack changes topic to "Launchpad: https://launchpad.net/openstack-ansible || Weekly Meetings: https://wiki.openstack.org/wiki/Meetings/openstack-ansible || Review Dashboard: http://bit.ly/osa-review-board-v3" | 17:07 | |
| openstack | Meeting ended Tue Nov 24 17:07:20 2020 UTC. Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4) | 17:07 |
| openstack | Minutes: http://eavesdrop.openstack.org/meetings/openstack_ansible_meeting/2020/openstack_ansible_meeting.2020-11-24-16.01.html | 17:07 |
| openstack | Minutes (text): http://eavesdrop.openstack.org/meetings/openstack_ansible_meeting/2020/openstack_ansible_meeting.2020-11-24-16.01.txt | 17:07 |
| openstack | Log: http://eavesdrop.openstack.org/meetings/openstack_ansible_meeting/2020/openstack_ansible_meeting.2020-11-24-16.01.log.html | 17:07 |
| admin0 | :) thanks | 17:07 |
| jrosser | probably with Accept=no and Service=libvirtd, or something | 17:07 |
| noonedeadpunk | and let users to define Service correctly? | 17:08 |
| admin0 | jamesdenton, so i want to use br-flat on enp5s0 - and failing .. what do i need to do in the configs to make it work | 17:08 |
| noonedeadpunk | then maybe we should do separate role for sockets? as we did for mounts and networkd? | 17:08 |
| jrosser | Accept=no says that the socket should be passed by systemd to the service rather than used to spawn the service on connection | 17:08 |
| jrosser | and then Service= says which service to hand them off to if then name of the .socket file does not exactly match the service .conf file | 17:09 |
| jrosser | which if we have two sockets might need to be explicitly done | 17:09 |
| jrosser | noonedeadpunk: i just had a look at our radosgw, and we needed 'rgw swift url prefix = /' for swift in order to get refstack to pass better | 17:11 |
| jrosser | and you can't have the swift prefix as /, and be serving S3 at the same time as S3 is implicitly at / | 17:11 |
| jrosser | so we have two instances of rgw, one for swift and one for S3 all behind haproxy | 17:12 |
| noonedeadpunk | well, `Accept=no,` is default behavior anyway | 17:13 |
| noonedeadpunk | yeah, I see, makes sense then. I just didn't do refstack yet :( | 17:13 |
| jrosser | tbh i have no idea if that is broken swift in rgw or refstack/tempest error, or it really has to be that way..... | 17:14 |
| noonedeadpunk | what I was trying to do is to link socket to the systemd service, since eventually socket can't live without systemd service | 17:14 |
| noonedeadpunk | and systemd service can have several sockets | 17:14 |
| noonedeadpunk | but in our structure that meant that we should define systemd service as well if we want socket | 17:14 |
| noonedeadpunk | wich makes sense for most of the usecases where we could define services, except libvirt... | 17:15 |
| noonedeadpunk | which is package provided and we should just slightly modify it | 17:16 |
| noonedeadpunk | but yeah, probably we should really add there sockets independently from service structure | 17:17 |
| noonedeadpunk | and add creation of the foo.service.d for overrides | 17:17 |
| noonedeadpunk | ok, thanks jrosser that is really great input | 17:18 |
| jrosser | ok np hope i have understood it properly :) | 17:19 |
| noonedeadpunk | yeah, you did) | 17:19 |
| jrosser | hopefully we can use the existing systemd_service role to make .socket files | 17:19 |
| jrosser | because really they are just another unit file | 17:19 |
| noonedeadpunk | well, like systemd-mount actually... | 17:20 |
| jrosser | there are also implicit dependancies between a service and the .socket | 17:22 |
| jrosser | so it may not be necessary to specify the sockets at all in the service unit | 17:23 |
| noonedeadpunk | true | 17:23 |
| noonedeadpunk | that was the reason why I put socket as part of the service definition.... | 17:23 |
| noonedeadpunk | which is not really handy in terms of the libvirt | 17:24 |
| *** klamath_atx has quit IRC | 17:57 | |
| spatel | jamesdenton: around? | 18:04 |
| *** jbadiapa has quit IRC | 18:05 | |
| *** yann-kaelig has joined #openstack-ansible | 18:08 | |
| admin0 | i am waiting for him as well | 18:09 |
| jamesdenton | i'm here but have to bounce for about an hour. whats up? | 18:09 |
| admin0 | i want to use br-flat on enp5s0 -- what config option do i need to do ? | 18:10 |
| admin0 | and how does enp5s0 appear in the network nodes/hypervisors .. just an interface without any bridge or ip . | 18:10 |
| admin0 | or how | 18:10 |
| admin0 | another question .. is it possible to use br-vlan but without any segmentation ip ( no tagged ips at all) | 18:11 |
| jamesdenton | when you use host_bind_override, the agent will configure networks using enp5s0 directly rather than using an intermediate bridge (like br-vlan). So if you create a VLAN (50) provider network, you get brq937592fj-29 -> enp5s0.50 rather than brq937592fj-29 -> br-vlan.50 -> br-vlan -> enp5s0 | 18:11 |
| jamesdenton | that make sense? | 18:11 |
| admin0 | yes .. on vlans i have done this before .. this is flat ( the datacenter does not accept tagged traffic) | 18:12 |
| jamesdenton | if you want a flat network, you will need to use host_bind_overide, as the host cannot connect a bridge to a bridge (it would try to plug br-vlan into brq bridge | 18:12 |
| jamesdenton | what error did you get this time? | 18:12 |
| admin0 | https://gist.github.com/a1git/4812121051d32f698cd7b309abc533aa -- this is what I have now .. | 18:13 |
| admin0 | the interface does not have any IPs at all and is not a part of any bridge | 18:13 |
| admin0 | its just a bridge | 18:13 |
| admin0 | the bridge gets its ip .. but the bridge is just an island bridge .. its not plugged into any interface or other bridges | 18:14 |
| admin0 | so the ip is there, but its not going out anywhere | 18:14 |
| admin0 | is there a command to see how a brq interface is linked to a ens interface ? | 18:14 |
| jamesdenton | brctl show brqXXX | 18:15 |
| jamesdenton | you may also need to set host_bind_override: "enp5s0" on the other network block, too. | 18:15 |
| jamesdenton | i don't use flat networks so i can't recall offhand | 18:16 |
| admin0 | on the other network block -- which ones | 18:17 |
| admin0 | same here .. its the first time in 8 years using osa that i have the need to use flat networking | 18:18 |
| jamesdenton | the other br-vlan | 18:18 |
| admin0 | maybe i will spin up a vyos to create a tagged vlan between this and vyos and use the vyos to route to the DC | 18:18 |
| jamesdenton | when my lab infra node comes back up i will test it | 18:19 |
| admin0 | ok | 18:19 |
| *** andrewbonney has quit IRC | 18:19 | |
| jamesdenton | some time this afternoon | 18:19 |
| admin0 | that is fine | 18:19 |
| admin0 | many thanks | 18:19 |
| spatel | jamesdenton: do you have any specific load-test scenario to try out? | 18:23 |
| spatel | I am using 64 bytes UDP only | 18:23 |
| spatel | I am going to try couple TCP scenario also | 18:24 |
| *** jamesdenton has quit IRC | 18:26 | |
| *** jamesden_ has joined #openstack-ansible | 18:26 | |
| spatel | admin0: how can run datacenter in flat network? | 18:28 |
| spatel | my home network i can say flat [ISP]-----[Wireless Router]--------[my_lan] | 18:30 |
| admin0 | i got a new client who wants me to config a cluster in a datacenter provided hardware .. all is up and working .. except the exsternal network | 18:30 |
| spatel | but datacenter can't be like that right? | 18:30 |
| admin0 | in my own home, i got br-vlan :) | 18:30 |
| spatel | lol | 18:31 |
| admin0 | mikrotik routers are wonderful | 18:31 |
| spatel | i love their software.. very nice and easy to use | 18:31 |
| admin0 | its what is used to run a whole isp in asia and africa --very low cost, but featureful devices | 18:31 |
| spatel | indeed, its very cheap and easy to turn you PC to high performance router/firewall/vpn :) | 18:32 |
| spatel | I used them a lot specially in wireless network | 18:32 |
| admin0 | i have the isp modem in bridge mode so that the router gets direct IP .. and have a archer c7 in bridge mode also so that the router controls everything + dual 2 and 5 ghz | 18:33 |
| spatel | next year i am planning to turn my basement in mid-size datacenter, i am collecting all equipments for that. | 18:33 |
| spatel | nice! | 18:34 |
| spatel | admin0: what kind of home lab you have? | 18:37 |
| admin0 | its 2 servers only .. | 18:37 |
| admin0 | but its an openstack kind .. | 18:37 |
| admin0 | meaning i use the openstack qcow2 files as base images to spawn up vms | 18:37 |
| spatel | I have lots of server in my datacenter on floor which i am planning to bring it home to build good size lab | 18:38 |
| admin0 | so between the 2 servers, they have around 20-25 virual machines running | 18:38 |
| admin0 | it takes me less than a minute to spawn up | 18:38 |
| spatel | what is the configuration of those server ? | 18:38 |
| admin0 | i use cloud-init and base files exactly like openstack does | 18:38 |
| admin0 | 256gb of ram, 20 thread cpus and 2x 1gb nvme on raid 0 | 18:38 |
| spatel | that is monster machine | 18:39 |
| admin0 | my laptop has 8 threads i7 and 64gb ram :D | 18:39 |
| spatel | do you keep them powered on all the time (what about electricity bills?) | 18:39 |
| admin0 | i use a aio | 18:39 |
| admin0 | i don't keep them powered all the time .. only when i have to test something or teach my son | 18:39 |
| spatel | good | 18:40 |
| admin0 | i do have tst lab in office, but with sata and ssd .. and when you need to etst stuff.. they are sloe | 18:40 |
| admin0 | like running 2 virtual ceph clusters | 18:40 |
| admin0 | i had to test osa + dual ceph | 18:40 |
| admin0 | so for those, nvme on raid0 works awesome | 18:40 |
| spatel | hmm | 18:41 |
| spatel | I'm also thinking to build lab like that + network lab | 18:42 |
| spatel | I have couple of nexus switch + Cisco ASA firewall | 18:42 |
| spatel | Mostly people use EVE-NG or Cisco CML for networking lab | 18:43 |
| *** cshen has quit IRC | 18:43 | |
| spatel | How do you guys rollout compute nodes? using kickstart + scripts or ironic style image deployment? | 18:45 |
| admin0 | pxe+kickstart | 18:45 |
| admin0 | i don't like ironic or maas where someone ( interns or anyone ) accidently cliking a button and destroying clients workload | 18:46 |
| admin0 | so someone needs to be on idrac to physically slect a os-reinstall | 18:46 |
| spatel | +1 | 18:46 |
| admin0 | all servers are set to boot from pxe, and the first menu that auto loads in pxe is to boot from hard-disk | 18:47 |
| admin0 | so it works nicely | 18:47 |
| spatel | I am using pxe+ks | 18:47 |
| admin0 | same | 18:47 |
| admin0 | i use vyos for all my lab network needs | 18:48 |
| spatel | I have set default image to compute so whenever new machine join datacenter it default turn into compute node | 18:48 |
| admin0 | also vyos for customers who want to do ipsec between the cloud and their office and run their workload internally | 18:48 |
| spatel | why not mikoritk ? | 18:49 |
| spatel | mikrotik* | 18:49 |
| *** cshen has joined #openstack-ansible | 18:50 | |
| admin0 | i have not used a virtual mikrotik yet | 18:51 |
| *** ajg20 has joined #openstack-ansible | 18:51 | |
| admin0 | i even have a small mikrotik that is 2ghz that has the same AP name as my home .. so whenever i go on holiday .. i just plugin to eth0 .. and then i don't have to reconfig my phones, tables, laptops etc | 18:51 |
| admin0 | works fine .. like in airbnb vacations and some hotels that have eth plugs | 18:52 |
| admin0 | which automatically starts a vpn session to home .. so home ip everywhere | 18:52 |
| spatel | wow! that is cool | 18:53 |
| admin0 | is mikrotik free for virtual image ? like we don't have to license it ? | 18:53 |
| openstackgerrit | Merged openstack/openstack-ansible master: Fix networking_nsx_git_track_branch https://review.opendev.org/c/openstack/openstack-ansible/+/763063 | 18:53 |
| spatel | Its free software :) | 18:54 |
| admin0 | upto which level ? | 18:54 |
| admin0 | is level6 also free ? | 18:54 |
| spatel | https://mikrotik.com/download | 18:54 |
| spatel | I didn't know you have to pay because many years back i was using it free | 18:55 |
| admin0 | https://wiki.mikrotik.com/wiki/Manual:License -- check the license levels and what you get per level | 18:56 |
| spatel | I was working for small ISP and they were buy standard desktop and turning into them in mikrotik router | 18:56 |
| admin0 | i guess they had a keygen | 18:57 |
| spatel | admin0: haha.. i used that in past :) | 18:57 |
| admin0 | for the first 8 years of my IT carrier, i worked on isps also :) | 18:58 |
| spatel | same with me but only 4 years. | 18:58 |
| spatel | We had big RAS server where all telephone lines terminated :) | 18:59 |
| spatel | It was dialup ISP | 18:59 |
| admin0 | my workspace in the 1st isp :) | 18:59 |
| spatel | FreeRadius was our billing + AAA | 18:59 |
| admin0 | we used radiator | 18:59 |
| spatel | oh boy we did used radiator | 18:59 |
| admin0 | freeradius did not had good oracle support that time ( 1997 - 2001) | 18:59 |
| spatel | CGI + Perl based | 18:59 |
| spatel | interface was crapy but it was good | 19:00 |
| admin0 | i like radiator .. its like a framework to design your own radius | 19:00 |
| admin0 | works awesome | 19:00 |
| spatel | totally | 19:00 |
| spatel | squid proxy was our CDN.. haha | 19:01 |
| admin0 | yep | 19:01 |
| admin0 | 95% filled up with porn | 19:01 |
| admin0 | that was what 2000s was all about .. cybercafes | 19:02 |
| spatel | haha.. we put some bandwidth policy around that | 19:02 |
| admin0 | https://www.softether.org/ is the VPN i am sticking to now | 19:02 |
| admin0 | works nicely | 19:02 |
| admin0 | especially for iphones and my android phone | 19:03 |
| spatel | man!! cybercafe where my IT life started, I was paying $2 per hour.. haha (and keep asking for owner don't throttle my bandwidth...) | 19:03 |
| admin0 | here .. look at this site (which totally is doing business fine so far) - https://www.lingscars.com/ to take you back to your cybercafe times | 19:04 |
| spatel | 56kbps like 10 people was using internet connection using wingate proxy :) | 19:05 |
| spatel | good old days. | 19:05 |
| admin0 | yep | 19:06 |
| spatel | lol | 19:06 |
| admin0 | upgrading customers from windows 3.11 -> 95 was where most money was made | 19:06 |
| spatel | oh man!! i remembered now, i had 6 floppy disk to install 3.11 windows | 19:07 |
| spatel | boot from DOS 6.2 to type > win to boot GUI :) | 19:07 |
| admin0 | and played price of persia i guess :) | 19:12 |
| admin0 | prince* | 19:12 |
| * persia is relieved, not having remembered any bribes from admin0 in that time period | 19:12 | |
| * admin0 orders a pizza to persia | 19:13 | |
| admin0 | persia, did you played price of persia :) | 19:13 |
| admin0 | in DOS or mac | 19:13 |
| admin0 | pre 2000 AD | 19:13 |
| persia | Sadly, that title postdates my time immersed in Broderbund software | 19:16 |
| admin0 | :) | 19:19 |
| admin0 | checking if anyone here got kubernetes working in osa | 19:19 |
| openstackgerrit | Rafael Folco proposed openstack/openstack-ansible-os_tempest master: Fix stackviz for failed tempest runs https://review.opendev.org/c/openstack/openstack-ansible-os_tempest/+/764055 | 19:22 |
| *** ajg20 has quit IRC | 19:53 | |
| *** nurdie has joined #openstack-ansible | 20:17 | |
| *** nurdie has quit IRC | 20:17 | |
| *** cshen has quit IRC | 20:37 | |
| *** cshen has joined #openstack-ansible | 20:38 | |
| *** rfolco|ruck has quit IRC | 21:32 | |
| *** spatel has quit IRC | 22:35 | |
| *** cshen has quit IRC | 22:35 | |
| djhankb | admin0: I am still stuck on magnum as well :-( I was hoping you had made some progress | 22:41 |
| admin0 | i will .. its in my "must be done" todo list :) | 22:41 |
| *** gshippey has quit IRC | 22:49 | |
| jamesden_ | admin0 i still wait for my ssd clone to finish | 22:50 |
| *** jamesden_ is now known as jamesdenton | 22:50 | |
| jamesdenton | admin0 you might be able to do away with that block in openstack_user_config and instead override with this in user_variables: http://paste.openstack.org/show/800393/ | 22:56 |
| *** rfolco|ruck has joined #openstack-ansible | 22:57 | |
| *** klamath_atx has joined #openstack-ansible | 23:28 | |
| *** yann-kaelig has quit IRC | 23:28 | |
| *** cshen has joined #openstack-ansible | 23:32 | |
| *** luksky has quit IRC | 23:33 | |
| *** cshen has quit IRC | 23:37 | |
| *** rfolco|ruck has quit IRC | 23:50 | |
| *** rfolco|ruck has joined #openstack-ansible | 23:50 | |
| admin0 | jamesdenton, so remove both blocks for br-vlan and br-flat from the config | 23:51 |
| admin0 | i will try this tomorrow | 23:51 |
| * admin0 sends jamesdenton a pizza :) | 23:51 | |
| *** rfolco|ruck has quit IRC | 23:55 | |
| *** tosky has quit IRC | 23:57 | |
| *** openstackgerrit has quit IRC | 23:59 | |
Generated by irclog2html.py 2.17.2 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!