| Age | Commit message (Collapse) | Author |
|---|
|
This commit combines these two roles. This will
prevent openshift_node_facts from running twice.
|
|
|
|
|
|
On very large clusters dnsmasq performance suffers due to
limited cache-size and dns-forward-max values.
bug: 1482847
https://bugzilla.redhat.com/show_bug.cgi?id=1482847
|
|
Currently, we have to set the listen ip for dnsmasq via ansible
during installation.
This commit enables dnsmasq to bind-interfaces + exclude interfaces
to ensure dnsmasq doesn't listen on lo interface.
|
|
We control /etc/resolv.conf and parts of the dnsmasq configuration via
Puppet in our environment. The hook ends up overwriting the managed
configuration.
|
|
|
|
Currently, automated AWS provisionging fails when provisioning
with images that don't already have NetworkManager installed
and activated.
This commit adds NetworkManager to the build_ami provisioning
process, if not already installed.
|
|
On cluster without internal name resolution there will be no `search XXX` on /etc/resolv.conf at all, thus this script will fail to add an entry for `cluster.local`.
|
|
Most of this role's purpose was to set facts. The vast majority
of these facts were simply redefining user-supplied variables.
This commit also removes various artifacts leftover from
previous versions, as well as variables that seem to be
entirely unused.
|
|
|
|
This will happen whenever someone has directly modified /etc/resolv.conf
Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1480438
|
|
|
|
|
|
Don't attempt to copy /etc/resolv.conf whenever there's no watermark,
just write out the list of nameservers that network manager tells us
about like we do for origin-upstream-dns.conf
Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1474707
|
|
|
|
|
|
|
|
Configures OPENSHIFT_DEFAULT_REGISTRY=docker-registry.default.svc
Adds 'cluster.local' to dns search on nodes via dispatcher script
Adds '.svc' to NO_PROXY defaults
|
|
When running headless services as pods on OpenShift, no ClusterIP is
assigned. In these cases, peer pods are relying on DNS to locate the
service endpoints. When a pod is deleted or another trigger causes the
endpoint to change, the OpenShift DNS is updated immediately. However,
dnsmasq has a default TTL of 30s, so the wrong response is returned
on name resolution. Removing negative caching and turning the TTL to
a very short 1s should resolve the issue.
Signed-off-by: Steve Kuznetsov <skuznets@redhat.com>
|
|
* Added checks to make ci for yaml linting
* Modified y(a)ml files to pass lint checks
|
|
Fixes Bug 1401425
Fixes BZ1401425
|
|
strict-order forces dnsmasq to iterate through nameservers in order. If one of
the nameservers is down this will slow things down while dnsmasq waits for a
timeout. Also, this option prevents dnsmasq from querying other nameservers if
the first one returns a negative result. While I think it's odd to have a
nameserver that returns negative results for a query that another returns
positive results for this does seem to fix the issue in testing.
Fixes Bug 1399577
|
|
Set nameservers on DHCPv6 event
|
|
* Ansible systemd module used in place of service module
* Refactored command tasks which are no longer necessary
* Applying rules from openshift-ansible Best Practices Guide
|
|
A dhcp6-change event may happen on nodes running dual stack
IPv4/IPv6 and DHCP, even if Openshift itself doesn't use IPv6.
/etc/resolv.conf needs be adjusted as well in this case.
|
|
On F24 and earlier, systemctl show always returned 0. On F25, it
return 1 when a service do not exist, and thus the role fail
on Fedora 25 cloud edition.
|
|
Refactor to use Ansible package module
|
|
|
|
|
|
The Ansible package module will call the correct package manager for the
underlying OS.
|
|
|
|
|
|
Add support for supplying a dnsmasq.conf file
|
|
|
|
Useful for POC environments where DNS may not actually be setup yet. Make sure
you don't define anything that would conflict with the default configuration.
You have been warned.
|
|
Improve 99-origin-dns.sh
|
|
* Don't ever report the NetworkManager service as changed when
preparing to set the 'network_manager_active' fact
|
|
- Prevent the script to echo blank values from IP4_NAMESERVERS variable
|
|
According to the man page for resolv.conf # needs to be in the first collumn in
order to start a comment. While this didn't seem to affect glibc's resolver it
did really confuse the kubelet which parses the host's resolv.conf
|
|
99-origin-dns.sh from adding a new line in /etc/resolv.conf everytime the NetworkManager dispatcher script is executed.
|
|
|
|
Only modify resolv.conf if IP4_NAMESERVERS is defined, it's not safe to do so
otherwise.
|
|
|
|
|
|
|
