Wednesday, 2019-10-30

« Tuesday, 2019-10-29 Index Thursday, 2019-10-31 »
*** goldyfruit___ has quit IRC00:42
*** ricolin has quit IRC00:45
*** ricolin has joined #openstack-containers00:57
*** ykarel|pto has joined #openstack-containers04:01
*** ykarel|pto is now known as ykarel04:01
*** dave-mccowan has quit IRC04:02
*** jerryz has quit IRC04:07
*** udesale has joined #openstack-containers04:35
*** ykarel is now known as ykarel|afk05:02
*** ykarel|afk has quit IRC05:02
*** janki has joined #openstack-containers05:17
*** ykarel has joined #openstack-containers05:25
*** ivve has joined #openstack-containers05:57
*** ivve has quit IRC06:15
*** mkuf has quit IRC06:49
*** ykarel is now known as ykarel|afk06:59
*** pcaruana has joined #openstack-containers07:09
*** lpetrut has joined #openstack-containers07:35
*** ykarel|afk is now known as ykarel08:03
*** janki has quit IRC08:46
*** jchhatbar has joined #openstack-containers08:47
*** ivve has joined #openstack-containers08:53
*** flwang1 has joined #openstack-containers08:56
flwang1strigazi: brtknr: around?08:57
flwang1strigazi: brtknr: if both of your are not around, i may have to cancel this meeting for today09:00
*** ykarel is now known as ykarel|lunch09:03
flwang1strigazi: brtknr: okay, i have to cancel this meeting for today. I will go through the irc log tomorrow09:06
*** vesper has joined #openstack-containers09:08
*** vesper11 has quit IRC09:09
*** trident has quit IRC09:26
brtknrflwang1: i am here09:30
*** trident has joined #openstack-containers09:34
brtknrstrigazi: u there?09:38
strigaziI'm here09:43
strigazibrtknr: The time change got us09:44
strigaziit is 9:45 UTC09:45
brtknrOops09:45
brtknrDammit!09:45
brtknrstrigazi: I have sent a calendar invite to you both to avoid future confusion :)09:49
brtknrstrigazi: I was wondering if you're there as I'd like to ask a few questions09:52
strigaziit is twice a year, as you want09:53
strigazibrtknr: next week I can't, I'll be in china09:54
dioguerrabrtknr: can i has the link?09:54
brtknrdioguerra: https://calendar.google.com/event?action=TEMPLATE&tmeid=XzYwcjRjaDI2NmNvM2ViOWg2cDIzaWI5azg4cGphYmExODkwajRiOWo4NG9rNmRpMThvczM4Y3BuNm9fMjAxOTEwMzBUMDkwMDAwWiBiaGFyYXRAc3RhY2tocGMuY29t&tmsrc=bharat%40stackhpc.com&scp=ALL09:54
brtknrI'll add to weekly agenda09:54
strigazibrtknr: I had done this already in the past, nobody cared.09:55
strigazihttps://wiki.openstack.org/wiki/Magnum#IRC_and_IRC_Meetings09:55
strigaziThe weekly Containers IRC meeting is held on Tuesdays at 1000 UTC calendar and HTML.09:55
strigaziI abandoned this ^^09:55
brtknrstrigazi: that info is out of date :)09:56
strigazibecause I abandoned this ^^09:56
strigazibecause nobody said, thanks, or, I use this09:56
strigazianyway09:57
strigazibrtknr: you had some questions?09:57
brtknrstrigazi: all we can do it try09:59
brtknryes, if i add floating ip to an ingress node, how easy would it be to generate cluster certs that are valid for the cluster?10:00
brtknras a post deployment step?10:00
brtknratm, the certs are only valid if fip is enabled at cluster creation time10:00
strigazicerts for a service?10:00
strigazicerts for kubelet?10:01
strigaziwhat kind of certs?10:01
brtknrfor the kubernetes API10:01
brtknrto use kubectl against10:01
strigazithey are created only at creation time. you can do it by hand10:01
strigaziwhat is the use case?10:02
strigazinew project?10:02
brtknrif ive got a cluster without fip, and add fip after the cluster is created and try to use kubectl against the kubernetes api10:02
brtknrso we have limited number of fips and we want to add fip to cluster without using loadbalancer10:02
brtknrto the master node10:03
strigazithis is supported10:03
strigaziat creation time, I don't remember the label10:03
brtknrfip to master node without lb?10:03
strigazibut even post creation, you can generate them in the node.10:03
strigaziand replace the old ones10:04
strigazihttps://github.com/openstack/magnum/blob/master/magnum/drivers/common/templates/kubernetes/fragments/make-cert.sh10:04
strigazisounds good?10:04
strigazibrtknr: ping10:05
brtknrstrigazi: one sec just looking10:06
strigazithis is how it is done, this script is very simple. And you can copy and execute it.10:08
strigaziI have to go in 5'10:08
brtknrstrigazi: cool, i thought i'd need to rebuild the cluster in some way10:08
brtknrplease let me know if you ca remember what that label is!10:09
brtknrif I add floating IP to an ingress node on a private cluster, are the services reachable?10:10
strigaziwhat is an ingress node?10:10
brtknra node labelled ingress10:10
strigaziok, any node10:10
brtknrfor nginx and trafeik10:10
brtknror do those need special certs too?10:10
strigaziyes, if you open the security group10:10
strigazithey application will need certs10:11
strigaziyou can use traefik and if the fip is publicly assecisble use let's encrypt10:11
strigazior the cert-manager by jetstack10:12
brtknrkgz: ^10:12
brtknrthanks10:12
strigazihttps://docs.traefik.io/https/acme/10:12
*** ykarel|lunch is now known as ykarel10:13
brtknrstrigazi: what next? we need to schedule a planning meeting for next release10:13
strigazitraefik can do everything (no need for cert-manager)10:13
strigazibrtknr:  we can do it the week after10:14
strigaziafter the summit10:14
brtknrokay, have a nice time at the summit!10:14
*** rcernin has quit IRC10:27
brtknrI am really surprised neither you or flwang1 are hitting issues with 1.14.7 and 1.14.8 images10:32
brtknrstrigazi: ^10:32
*** pcaruana has quit IRC10:35
*** openstackstatus has quit IRC10:44
*** mgoddard has quit IRC10:46
*** jchhatbar has quit IRC11:14
*** goldyfruit___ has joined #openstack-containers11:29
*** ramishra has quit IRC11:46
*** ramishra has joined #openstack-containers11:47
*** goldyfruit___ has quit IRC11:54
*** pcaruana has joined #openstack-containers12:00
*** ykarel is now known as ykarel|afk12:02
*** udesale has quit IRC12:26
*** jmlowe has quit IRC12:36
*** goldyfruit___ has joined #openstack-containers13:04
*** ramishra has quit IRC13:07
*** jmlowe has joined #openstack-containers13:11
*** ramishra has joined #openstack-containers13:41
*** ykarel|afk is now known as ykarel13:45
*** dave-mccowan has joined #openstack-containers14:00
*** ykarel is now known as ykarel|meeting14:04
*** goldyfruit_ has joined #openstack-containers14:28
*** goldyfruit___ has quit IRC14:31
*** dasp has quit IRC14:32
*** dasp has joined #openstack-containers14:42
*** ykarel|meeting is now known as ykarel15:01
*** lpetrut has quit IRC15:22
*** jmlowe has quit IRC15:41
*** goldyfruit___ has joined #openstack-containers15:49
*** goldyfruit_ has quit IRC15:52
*** ykarel is now known as ykarel|away15:55
*** ivve has quit IRC16:10
*** ricolin has quit IRC16:41
*** openstackstatus has joined #openstack-containers17:02
*** ChanServ sets mode: +v openstackstatus17:02
*** jmlowe has joined #openstack-containers17:05
*** jerryz has joined #openstack-containers18:06
*** pcaruana has quit IRC18:10
*** ykarel|away has quit IRC18:31
*** pcaruana has joined #openstack-containers19:05
*** ivve has joined #openstack-containers19:06
*** pcaruana has quit IRC19:29
*** flwang1 has quit IRC19:37
*** pcaruana has joined #openstack-containers19:39
*** pcaruana has quit IRC20:09
*** iokiwi has quit IRC20:31
*** goldyfruit___ has quit IRC20:42
*** iokiwi has joined #openstack-containers20:49
*** goldyfruit___ has joined #openstack-containers22:27
*** goldyfruit___ has quit IRC22:51
*** ivve has quit IRC23:21
« Tuesday, 2019-10-29 Index Thursday, 2019-10-31 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!