Loading howto/new-machine.md +2 −2 Original line number Diff line number Diff line Loading @@ -82,7 +82,7 @@ taken by the installer: domain (i.e. `/etc/hosts` is correctly configured). this can be fixed with: fab -H root@38.229.82.108 host.rewrite-hosts chi-node-05.torproject.org 38.229.82.108 fab -H root@204.8.99.101 host.rewrite-hosts dal-node-01.torproject.org 204.8.99.101 WARNING: The short hostname (e.g. `foo` in `foo.example.com`) MUST NOT be longer than 21 characters, as that will crash the backup Loading @@ -93,7 +93,7 @@ taken by the installer: 3. a public IP address has been set and the host is available over SSH on that IP address. this can be fixed with: fab -H root@88.99.194.57 host.rewrite-interfaces 88.99.194.57 26 88.99.194.1 2a01:4f8:221:2193::2 64 fe80::1 fab -H root@204.8.99.101 host.rewrite-interfaces 204.8.99.101 24 204.8.99.254 2620:7:6002::3eec:efff:fed5:6b2a 64 2620:7:6002::1 If the IPv6 address is not known, it might be guessable from the MAC address. Try this: Loading howto/quintex.md +19 −17 Original line number Diff line number Diff line Loading @@ -346,12 +346,14 @@ some public nameserver for now (e.g. Google's 8.8.8.8). Alternatively, you can use this one-liner to set IP address, DNS servers and start SSH with your SSH key in root's list: address=204.8.99.250 && PUBLIC_KEY="ssh-rsa AAAAB3NzaC1yc2EAAAADAQAB[...]" && address=204.8.99.101 && prefix=24 && gateway=204.8.99.1 && gateway=204.8.99.254 && interface=eno1np0 && echo nameserver 8.8.8.8 >> /etc/resolv.conf && ip link set dev eth0 up && ip addr add dev eth0 $address/$prefix && ip link set dev $interface up && ip addr add dev $interface $address/$prefix && ip route add default via $gateway && mkdir -p /root/.ssh/ && echo "$PUBLIC_KEY" >> /root/.ssh/authorized_keys && Loading Loading @@ -387,30 +389,30 @@ installer with the [howto/Fabric](howto/Fabric) code in the `tsa-misc` git repository. Here's an example of a commandline: ./install -H root@204.8.99.101 \ --fingerprint 87:1d:1b:9e:56:de:58:40:4a:26:79:60:34:b8:be:43 \ --fingerprint 9f:20:1d:b1:5a:55:55:19:e8:d1:5c:29:61:c6:08:32 \ --verbose \ hetzner-robot \ --fqdn=dal-node-01.torproject.org \ --ipv4-address 204.8.99.101 \ --ipv4-subnet 24 \ --ipv4-gateway 204.8.99.1 \ --console-idx 1 \ --fai-disk-config=installer/disk-config/gnt-dal-NVMe \ --package-list=installer/packages \ --post-scripts-dir=installer/post-scripts/ TODO: to be tested! Note that the disk `--fai-disk-config` is likely going to break, as it's using an untested EFI configuration. It also doesn't setup the canonical `vg_ganeti` group that further steps in the installer expect. TODO: The installer currently struggles with the EFI configuration, which might need to be redone by hand (basically mount the efivars, mount the ESP partition, `apt install grub-efi`). It should abort before un-mounting everything if it detects EFI, which should allow you to rescue the install. TODO: It also doesn't setup the canonical `vg_ganeti` group that further steps in the installer expect. See [howto/new-machine](howto/new-machine) for post-install configuration steps, then follow [howto/new-machine-mandos](howto/new-machine-mandos) for setting up the mandos client on this host. TODO: we might need extra configuration steps. At least we need to configure static IP addresses, which is not done by the `hetzner-robot` installer. see cymru docs. TODO: similarly, initramfs IP configuration for remote boot? see cymru docs TODO: SOL (Serial Over LAN) / IPMI serial console access? ## Pager playbook ### Upstream routing issue Loading Loading
howto/new-machine.md +2 −2 Original line number Diff line number Diff line Loading @@ -82,7 +82,7 @@ taken by the installer: domain (i.e. `/etc/hosts` is correctly configured). this can be fixed with: fab -H root@38.229.82.108 host.rewrite-hosts chi-node-05.torproject.org 38.229.82.108 fab -H root@204.8.99.101 host.rewrite-hosts dal-node-01.torproject.org 204.8.99.101 WARNING: The short hostname (e.g. `foo` in `foo.example.com`) MUST NOT be longer than 21 characters, as that will crash the backup Loading @@ -93,7 +93,7 @@ taken by the installer: 3. a public IP address has been set and the host is available over SSH on that IP address. this can be fixed with: fab -H root@88.99.194.57 host.rewrite-interfaces 88.99.194.57 26 88.99.194.1 2a01:4f8:221:2193::2 64 fe80::1 fab -H root@204.8.99.101 host.rewrite-interfaces 204.8.99.101 24 204.8.99.254 2620:7:6002::3eec:efff:fed5:6b2a 64 2620:7:6002::1 If the IPv6 address is not known, it might be guessable from the MAC address. Try this: Loading
howto/quintex.md +19 −17 Original line number Diff line number Diff line Loading @@ -346,12 +346,14 @@ some public nameserver for now (e.g. Google's 8.8.8.8). Alternatively, you can use this one-liner to set IP address, DNS servers and start SSH with your SSH key in root's list: address=204.8.99.250 && PUBLIC_KEY="ssh-rsa AAAAB3NzaC1yc2EAAAADAQAB[...]" && address=204.8.99.101 && prefix=24 && gateway=204.8.99.1 && gateway=204.8.99.254 && interface=eno1np0 && echo nameserver 8.8.8.8 >> /etc/resolv.conf && ip link set dev eth0 up && ip addr add dev eth0 $address/$prefix && ip link set dev $interface up && ip addr add dev $interface $address/$prefix && ip route add default via $gateway && mkdir -p /root/.ssh/ && echo "$PUBLIC_KEY" >> /root/.ssh/authorized_keys && Loading Loading @@ -387,30 +389,30 @@ installer with the [howto/Fabric](howto/Fabric) code in the `tsa-misc` git repository. Here's an example of a commandline: ./install -H root@204.8.99.101 \ --fingerprint 87:1d:1b:9e:56:de:58:40:4a:26:79:60:34:b8:be:43 \ --fingerprint 9f:20:1d:b1:5a:55:55:19:e8:d1:5c:29:61:c6:08:32 \ --verbose \ hetzner-robot \ --fqdn=dal-node-01.torproject.org \ --ipv4-address 204.8.99.101 \ --ipv4-subnet 24 \ --ipv4-gateway 204.8.99.1 \ --console-idx 1 \ --fai-disk-config=installer/disk-config/gnt-dal-NVMe \ --package-list=installer/packages \ --post-scripts-dir=installer/post-scripts/ TODO: to be tested! Note that the disk `--fai-disk-config` is likely going to break, as it's using an untested EFI configuration. It also doesn't setup the canonical `vg_ganeti` group that further steps in the installer expect. TODO: The installer currently struggles with the EFI configuration, which might need to be redone by hand (basically mount the efivars, mount the ESP partition, `apt install grub-efi`). It should abort before un-mounting everything if it detects EFI, which should allow you to rescue the install. TODO: It also doesn't setup the canonical `vg_ganeti` group that further steps in the installer expect. See [howto/new-machine](howto/new-machine) for post-install configuration steps, then follow [howto/new-machine-mandos](howto/new-machine-mandos) for setting up the mandos client on this host. TODO: we might need extra configuration steps. At least we need to configure static IP addresses, which is not done by the `hetzner-robot` installer. see cymru docs. TODO: similarly, initramfs IP configuration for remote boot? see cymru docs TODO: SOL (Serial Over LAN) / IPMI serial console access? ## Pager playbook ### Upstream routing issue Loading
