WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-02 06:20:26 +08:00
Code Issues Packages Projects Releases Wiki Activity
43,175 Commits 9 Branches 0 Tags
37c4da574dfc7ebfe3dda3367d4564a9a6783609
Commit Graph

43175 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kevin Fenzi
37c4da574d kickstarts: add a first cut at a power10 fedora42 kickstart 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 17:35:23 -07:00
Kevin Fenzi
a99cb9a8d4 ns02.rdu3: add another nameserver in rdu3 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 15:46:15 -07:00
Kevin Fenzi
03656f0288 proxies / rdu3: make most proxies use vpn but rdu3 goes direct 
We need this because the cluster needs to be able to access api in order
to pull images, etc. So, in rdu3 proxies we go direct to the cluster
nodes, but in all the other proxies we go via the vpn.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 15:42:12 -07:00
Kevin Fenzi
c3b66efa9f download/rdu3: also try nfs mounts in rdu3 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 14:16:23 -07:00
Kevin Fenzi
f9c8e842b7 download / rdu3: add rdu3 download servers 
This will allow us to test ro mounts from the rdu3 netapp.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 14:02:36 -07:00
Kevin Fenzi
0194b383af proxies: switch rdu3 openshift balancers to use direct path instead of vpn 
We need the rdu3 proxies to directly talk to the openshift compute
nodes, as it needs this to work to pull images.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 13:56:27 -07:00
Kevin Fenzi
b7abca9804 proxies: default ocp4_rdu3 to false for now 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 12:26:55 -07:00
Kevin Fenzi
a6c096617b proxies: openshift rdu3 
So, we renamed the cluster with the ocp-rdu3 name, so drop all this
special handling. All the proxies should be able to reach it by that
name and via the vpn endpoints it has.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 11:10:08 -07:00
Frank Ch. Eigler
5fe5b189f1 debuginfod /etc/sysconfig: include fcNNappXX flatpak-bound RPMs 
These are legitimate RPMs that are wrapped into flatpaks.  Previous
debuginfod regex excluded the "appXX" variant builds; this includes
them.  Yeah, the index becomes bigger but bearable on the current
servers.
 2025-06-16 17:45:52 +00:00
Kevin Fenzi
23d71ae40f proxies / rdu3: set rdu3 proxies to proxy to the rdu3 openshift cluster 
The iad2 and rdu3 openshift clusters have the same name
(yes, I know, I was trying to be clever!)
So, in rdu3 we want *.apps.ocp.fedoraproject.org to proxy to the rdu3
cluster and everywhere else to the iad2 cluster (until we move).
This should point proxy01.rdu3 and proxy10.rdu3 the right way.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 09:42:55 -07:00
Kevin Fenzi
5df8dacfff proxies: add rdu3 proxies to mirrorlist_proxies to get mirrorlist updates 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 09:22:33 -07:00
Greg Sutcliffe
b6911ab4f1 DNS: fix dns search for new stg (b)vmhosts in rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-16 16:47:42 +01:00
Kevin Fenzi
5361223938 openvpn: set ccd files for rdu3 worker nodes, add them to the var so proxies will use them, still need to get openvpn working on workers 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-15 16:57:28 -07:00
Kevin Fenzi
2bfc27b0bc openshift/openvpn/rdu3: try and pull from quay.io for now 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-15 16:30:29 -07:00
Kevin Fenzi
3b9ab3fdbe openshift / openvpn: default mode is an int32? 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-15 15:25:12 -07:00
Kevin Fenzi
aee0358409 openshift / openvpn: fix typo/syntax 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-15 15:21:38 -07:00
Kevin Fenzi
b07a636045 openshift / openvpn: also run on rdu3 control host 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-15 15:17:34 -07:00
Kevin Fenzi
fd99080952 openshift / openvpn: setup things to deploy openvpn on rdu3 nodes 
Add the rest of the rdu3 workers in and setup openvpn role to setup on
them.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-15 15:15:31 -07:00
Kevin Fenzi
3f726efdbf proxies / rdu3: add service ca to web bundle 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 15:09:49 -07:00
Kevin Fenzi
880e83dd43 proxies / rdu3: fix ca filename 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 14:51:21 -07:00
Kevin Fenzi
dceab488bd proxies: change the nft rules instead of the no longer used iptables 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 14:33:18 -07:00
Kevin Fenzi
e7e6db8d8d proxies: rename ocp4-rdu3 to ocp4_rdu3 to hopefully get jinja2 to leave it alone 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 14:30:00 -07:00
Kevin Fenzi
6120b860a6 haproxy: also install ocp ca cert in rdu3 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 13:53:40 -07:00
Kevin Fenzi
2f25595228 proxies / rdu3: perhaps destname cannot have a . in it 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 13:40:37 -07:00
Kevin Fenzi
8fb26137d6 proxies: add a stg var to prevent traceback on undefined var 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 13:24:18 -07:00
Kevin Fenzi
63b02e9098 proxies: use double quotes 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 13:09:42 -07:00
Kevin Fenzi
99fe2b3fd6 proxies: also install the rdu3 ocp cert 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 13:01:34 -07:00
Kevin Fenzi
2691464323 proxies: set ocp4 false when ocp4-rdu3 is true 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 12:56:54 -07:00
Kevin Fenzi
e1132667d3 proxies: add a ocp-rdu3 site/endpoint to get to the new rdu3 prod openshift 
We can't use easily the existing hostname/site, as that goes to the
current iad2 cluster, so setup a -rdu3 version for now.
After we switch we can drop this and repoint the main one to the new
cluster.

Hopefully this all works and does the right thing.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 12:35:20 -07:00
Kevin Fenzi
43b150af7a haproxy: add prod rdu3 openshift ca 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 09:36:21 -07:00
Kevin Fenzi
ff8b2919ee dhcp: add openshift control plane vms to rdu3 dhcpd config 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 09:35:16 -07:00
Michal Konecny
fe975ec339 [ipa] Prepare the VMs for RDU3 staging 2025-06-14 08:23:02 +02:00
Kevin Fenzi
f2a5e7b6a4 koji: revert riscv channel config partly 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-13 11:30:26 -07:00
Greg Sutcliffe
9fa9218187 bvmhost-x86-03.stg.rdu3: fix typo in mac address 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-13 14:22:30 +01:00
Greg Sutcliffe
43bdc8e9d0 bvmhost-x86-03.stg.rdu3: add new host to rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-13 14:07:51 +01:00
Greg Sutcliffe
4be810408d bvmhost-x86-02.stg.rdu3: add new host to rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-13 13:41:38 +01:00
Greg Sutcliffe
af9646956b bvmhost-x86-01.stg.rdu3: add new host to rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-13 13:12:42 +01:00
Greg Sutcliffe
189d71cccd vmhost-x86-05.stg.rdu3: add new host to rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-13 11:59:21 +01:00
David Kirwan
868b115091 forgejo: add standoff timer to allow postgresql time to come up during 
deploy

Signed-off-by: David Kirwan <davidkirwanirl@gmail.com>
 2025-06-13 11:30:14 +01:00
Greg Sutcliffe
8c37d25f35 vmhost-x86-04.stg.rdu3: add new host to rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-13 11:25:12 +01:00
Greg Sutcliffe
2407011d76 vmhost-x86-03.stg.rdu3: add new host to rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-13 10:41:44 +01:00
Greg Sutcliffe
9b430a8801 vmhost-x86-02.stg.rdu3: add missing inventory line 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-13 10:06:57 +01:00
Greg Sutcliffe
f85620bfa0 vmhost-x86-02.stg.rdu3: add new host to rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-13 09:57:49 +01:00
Kevin Fenzi
b0deb45b44 log01.rdu3: no python3 pandas on rhel9 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 16:27:03 -07:00
Kevin Fenzi
9d849ecb95 proxy101/110.rdu3: use random mac generated on install 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 16:22:03 -07:00
Kevin Fenzi
d808a4a9f9 proxy110.rdu3: fix ip address 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 16:19:21 -07:00
Kevin Fenzi
9103d7a380 proxy101/110.rdu3: fix old ipv4 ip variables 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 15:58:17 -07:00
Kevin Fenzi
78179fdc56 log01.rdu3: fix dns search order 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 15:56:56 -07:00
Kevin Fenzi
15ae280a62 proxy101/110.rdu3: setup internal rdu3 proxies too 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 15:53:45 -07:00
Kevin Fenzi
82815badc2 log01.rdu3: deploy a log01 in rdu3 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 15:30:40 -07:00