[Labs-l] DNS LDAP DIT changes tomorrow
Ryan Lane
rlane32 at gmail.com
Fri Sep 27 00:08:01 UTC 2013
This change has now occurred. We had a few issues:
1. Beta's * entry was somewhat non-standard in how it was added in LDAP, so
when we converted the records it was missed. I've just added it back in
manually. If you can't access beta, you'll be able to again in about an
hour (when the DNS negative cache expires).
2. Puppet and salt's certname configuration was set to ${dc}.${domain}. We
changed dc to be the FQDN, so many puppet and salt configurations are
temporarily broken. I've pushed in fixes and temporarily accepted the new
certs generated by the misconfiguration. In an hour or two all hosts will
be fixed.
3. Instance creation was temporarily broken due to private DNS entries
being created as public DNS entries (an internal implementation detail).
This was broken for about 30 minutes.
If you notice any other issues, please let us know via this thread or in
IRC on #wikimedia-labs
- Ryan
On Wed, Sep 25, 2013 at 11:41 AM, Ryan Lane <rlane at wikimedia.org> wrote:
> Tomorrow we'll be doing a mass LDAP directory information tree (DIT)
> change for the DNS entries. This change should be invisible to end-users,
> but I thought I'd announce the change just in case anything goes wrong so
> that people have a heads-up.
>
> This change is necessary to make the DNS code in OpenStackManager more
> stable.
>
> - Ryan
>
> _______________________________________________
> Labs-l mailing list
> Labs-l at lists.wikimedia.org
> https://lists.wikimedia.org/mailman/listinfo/labs-l
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.wikimedia.org/pipermail/labs-l/attachments/20130926/a1a2eff4/attachment.html>
More information about the Labs-l
mailing list