[06:06:48] <elukey>	 hello folks
[06:07:07] <elukey>	 the kafka logging cluster seems to have some warnings about disk space used for /srv
[06:07:39] <elukey>	 there are a couple of topic with big partitions on disk
[06:07:57] <elukey>	 udp_localhost-warning and rsyslog-notice
[06:09:17] <elukey>	 the traffic pattern changed yesterday afaics
[06:09:18] <elukey>	 https://grafana-rw.wikimedia.org/d/000000234/kafka-by-topic?orgId=1&refresh=5m&var-datasource=eqiad%20prometheus%2Fops&var-kafka_cluster=logging-eqiad&var-kafka_broker=All&var-topic=rsyslog-notice&from=now-7d&to=now
[06:10:03] <elukey>	 it was showing more spikes before, but we may need to apply some log deletion/retention policies to reclaim space
[06:11:17] <elukey>	 udp-locahost-warning seems to be more stable over the past days
[06:14:21] <elukey>	 (maybe there is also some source of log too spammy, I am checking the topics)
[06:25:04] <elukey>	 there are some logs that keeps repeating, maybe there is a task about it
[06:37:57] <_joe_>	 elukey: I'm confused. I was under the impression that kafka has infinite storage and we can just add new disks or servers seamlessly
[06:38:17] <_joe_>	 you know, given some people want to move every transaction in our databases forever into kafka
[06:38:29] <_joe_>	 with retention time: infinite
[06:39:21] <_joe_>	 basically, confluent created a real-life turnig tape and so on
[06:41:16] <elukey>	 _joe_ you always forget that we are not in the "cloud" so our elasticity is limited by our on-premise capabilities that don't allow us to scale properly
[06:41:43] <elukey>	 and we are also not serverless
[06:42:00] <apergos>	 you're making it really really hard for me no not just troll everyone in here
[06:42:05] <apergos>	 Not Helpful
[06:42:14] <apergos>	 *not to just
[06:42:45] <apergos>	 side topic: how many kafka clusters do we have atm if anyone knows?
[06:43:06] <_joe_>	 2x main, 2x logging, 1xjumbo
[06:43:31] <elukey>	 and one testing :)
[06:43:45] <apergos>	 6 total and likely to expand.  gotcha
[06:59:54] <elukey>	 I commented in https://phabricator.wikimedia.org/T279342 about the current issue, it seems a steady growth, but nothing really horrible in the immediate future
[07:52:07] <godog>	 PSA today is the last day of https://sigops.org/s/conferences/hotos/2021/
[07:52:25] <godog>	 I read https://sigops.org/s/conferences/hotos/2021/papers/hotos21-s01-hochschild.pdf yesterday and I liked it
[08:01:30] <dcaro>	 nice! thanks for sharing!
[08:02:37] <godog>	 sure no problem!
[09:59:35] <XioNoX>	 phab now have a "Other Assignee" field
[10:10:15] <_joe_>	 XioNoX: oh that's great
[10:39:47] <godog>	 we'll be testing librenms paging through AM shortly, there will be a VO page that can be ignored
[10:42:40] <apergos>	 that would be it I guess :-)
[10:42:42] <volans>	 godog: got it
[10:43:12] <godog>	 hehe yep! thanks folks, shouldn't be too confusing
[10:44:23] <volans>	 godog: given we're on topic, can I ask you if there is a solution for splunk oncall to keep being logged in on the android app?
[10:46:02] <godog>	 volans: mmhh I recall us raising this issue with their support and supposedly fixed, how long are you able to stay logged in? are you using logging in via google SSO?
[10:46:37] <volans>	 yes to google SSO, I don't recall when was last time I logged in, I opened the page and got redirected to login
[10:46:59] <volans>	 that might be an issue during an incident, I can just relogin and let you know if it re-happens :)
[10:47:11] <marostegui>	 I had to relogin again too
[10:47:47] <godog>	 mmhh I haven't in a while, but definitely happened to me before
[10:51:51] <godog>	 but yes please report whenever you have to relogin and how long approximately the session lasts
[10:51:59] <godog>	 I'm opening a task for that
[10:58:15] <godog>	 ok filed as T284215 feel free to edit the description and report your experience
[10:58:15] <stashbot>	 T284215: Splunk oncall / victorops mobile app logout tracking - https://phabricator.wikimedia.org/T284215
[15:22:18] <topranks>	 XioNox: Wondering if you'd any thoughts on this.
[15:22:42] <topranks>	 There is some discrepancy in Netbox for doh3002.
[15:23:09] <XioNoX>	 topranks: ah?
[15:23:14] <topranks>	 Or more to the point an IP element is there, not attached to any device, with the DNS name "doh3002.wikimedia.org"
[15:23:35] <topranks>	 The IP attached to the VM primary interface also has the same DNS name
[15:23:36] <topranks>	 https://netbox.wikimedia.org/ipam/prefixes/10/ip-addresses/
[15:23:40] <volans>	 I can explain
[15:23:44] <XioNoX>	 91.198.174.8 ?
[15:23:47] <topranks>	 yeah
[15:24:06] <topranks>	 So I added the peering on the CRs to .9, but logging on to the VM it is configured with .8
[15:24:09] <robh>	 i love how volans quickly put in the 'i can explain' to head off spiraling into nerdsnipes ;D
[15:24:19] <topranks>	 haha
[15:24:28] <volans>	 robh: and you know the fun part? this is doh3002 and I can't explain it :)
[15:24:40] <volans>	 I thought was the others I've looked at in the past days
[15:24:48] <volans>	 and I have no specific context on this specific one, sorry :)
[15:25:07] <XioNoX>	 bug in the provisioning script?
[15:25:12] <robh>	 i can hear the sound of topranks's heart breaking from here volans ; D
[15:25:14] <XioNoX>	 it still show its interface as ##PRIMARY## too
[15:25:17] <robh>	 hopes dashed.
[15:25:57] <volans>	 actually I can..
[15:26:08] <topranks>	 robh: absolutely, that moment of clarity I was hoping for just never arrrived :)
[15:26:10] <XioNoX>	 volans: https://netbox.wikimedia.org/extras/scripts/results/873119/ (dry run)
[15:26:18] <volans>	 so XioNoX that's T263768 that I need to piack up since Cas has left
[15:26:19] <stashbot>	 T263768: Ganeti -> Netbox sync: run PuppetDB import on new VMs - https://phabricator.wikimedia.org/T263768
[15:26:24] <robh>	 srsly i could feel it!
[15:26:25] <volans>	 *pick
[15:26:27] <robh>	 heh
[15:26:34] <XioNoX>	 volans is a emotional rollercoaster
[15:26:38] <volans>	 I know
[15:26:55] <topranks>	 lol
[15:27:04] <volans>	 we can run the import from puppetdb script manually for this if that's creating confusion
[15:27:07] <volans>	 let me do it
[15:27:26] <volans>	 {done}
[15:27:30] <XioNoX>	 that's my link about, lgtm to run/commit it
[15:27:57] <volans>	 XioNoX: The requested page does not exist.
[15:28:16] <volans>	 I think the dry runs are not saved as they are deleted right after
[15:28:35] <volans>	 I think they're implemented as a DB transaction so that it gets just not commited and trashed at the end
[15:28:39] <volans>	 but not sure
[15:28:55] <XioNoX>	 volans: deleting 91.198.174.9/25 then?
[15:28:57] <XioNoX>	 and matching v6
[15:29:01] <topranks>	 I clicked it and it worked.
[15:29:09] <topranks>	 But if I re-click now I get 404
[15:29:21] <volans>	 XioNoX: why deleting?
[15:29:27] <volans>	 https://netbox.wikimedia.org/ipam/ip-addresses/8703/
[15:29:48] <XioNoX>	 volans: because .9 doesn't exist :)
[15:29:58] <volans>	 ?
[15:29:59] <XioNoX>	 (it's not on the host)
[15:30:30] <topranks>	 Cool.... I see what you did changed Netbox IP to match what it on the VM in production XioNox
[15:30:37] <topranks>	 So deleting .9 makes sense to me.
[15:30:48] <topranks>	 I'll change the CR config to peer with .8
[15:30:50] <volans>	 wait
[15:30:59] <volans>	 the script should do that
[15:31:48] <XioNoX>	 delete .9 ?
[15:32:04] <volans>	 IIRC yes, it should
[15:32:19] <volans>	 if not in puppetdb, but only in some cases
[15:32:59] <volans>	 checking code
[15:33:12] <XioNoX>	 no .9 in https://puppetboard.wikimedia.org/node/doh3002.wikimedia.org
[15:33:35] <volans>	 yeah I checked
[15:36:07] <volans>	 no, apparently we're deleting only the interfaces to cover the case of iface renaming on OS upgrade
[15:36:54] <volans>	 how did we ended up with this? is this something that will happen again with normal usage?
[15:37:00] <volans>	 or was a one time rename/renumbering
[15:37:11] <XioNoX>	 volans: was going to ask you :)
[15:37:34] <volans>	 was the VM created twice?
[15:37:42] <sukhe>	 good question
[15:37:49] <sukhe>	 (sorry was just observing)
[15:37:57] <sukhe>	 doh3002 was indeed created twice
[15:38:11] <sukhe>	 but let me check something quickly
[15:38:44] <sukhe>	 ok checked
[15:38:57] <sukhe>	 https://phabricator.wikimedia.org/T283852#7130568
[15:39:07] <sukhe>	 seems like it was doh3001 which was created twice
[15:39:13] <sukhe>	 not 3002, which has the IP in question
[15:39:56] <volans>	 sukhe: according to SAL also 3002
[15:40:29] <volans>	 and the makevm cookbook doesn't properly rollback yet pre-assigned IP on failure between the IP is assigned and the VM is created
[15:40:30] <sukhe>	 ah 20:27 dzahn@cumin1001: END (FAIL) - Cookbook sre.ganeti.makevm (exit_code=99) for new host doh3002.wikimedia.org 
[15:40:33] <volans>	 there is a task for that
[15:40:33] <sukhe>	 yeah
[15:40:39] <sukhe>	 we hit a disk limit
[15:40:43] <volans>	 so both will need to clean one IP
[15:40:46] <volans>	 probably
[15:41:43] <XioNoX>	 topranks: and yeah you can update the CR to peer with .8 instead of .9
[15:41:44] <volans>	 XioNoX, topranks, sukhe: so yeah we need to cleanup the additional IPs, if any
[15:42:13] <topranks>	 XioNox:  if you wanna give a +1  https://gerrit.wikimedia.org/r/c/operations/homer/public/+/697993/
[15:42:22] <sukhe>	 doh3001 doesn't seem to have any additional IPs, but yeah
[15:43:02] <topranks>	 doh3001 has that same interface name "##PRIMARY##"
[15:43:08] <topranks>	 Although it has the correct IP.
[15:43:18] <XioNoX>	 volans: all good now
[15:43:29] <topranks>	 The .9 address is gone now, you update that XioNoX?
[15:43:34] <XioNoX>	 yep
[15:43:44] <XioNoX>	 and ran the script that renamed ##PRIMARY## to the proper interface
[15:43:50] <topranks>	 Cool, I see doh3001 interface name is now correct.
[15:43:52] <topranks>	 Cool.
[15:43:58] <topranks>	 You deleted .9 manually?
[15:44:00] <sukhe>	 nice
[15:44:05] <XioNoX>	 topranks: yep
[15:44:24] <XioNoX>	 topranks: +1 to your cr CR :)
[15:44:41] <topranks>	 ok thanks for all the help guys :)
[15:44:57] <sukhe>	 indeed, thank you topranks, XioNoX, volans  :)
[15:52:33] <volans>	 np, anytime
[15:56:12] <volans>	 sukhe: also, doh! there was an issue :-P
[15:56:40] * volans couldn't resist
[15:56:50] <sukhe>	 haha
[20:36:25] <brennen>	 guessing j.bond's off duty - anybody have time for https://gerrit.wikimedia.org/r/c/operations/puppet/+/696024 ?
[20:37:08] <brennen>	 (not super urgent, but would be nice.)
[20:40:14] <rzl>	 the syntax lgtm but given the content, I'd rather get a review from an SRE more confident wrt the security implications
[20:40:49] <rzl>	 obviously we want that port open, I'm just not the right person to double-check all the prerequisites
[20:44:08] <brennen>	 rzl: fair enough, thanks.