Compilation results for dns1004.wikimedia.org: System changes detected

You can retrieve this result from host.json.

Catalog differences

Summary

Total Resources:	3545
Resources added:	6
Resources removed:	0
Resources modified:	19
Change percentage:	0.71%

Resources only in the new catalog

Interface::Ip[lo-vip-ns2.wikimedia.org-ipv6]
Exec[ip addr add 2a02:ec80:53::1/128 label lo:anycast dev lo]
Augeas[lo_2a02:ec80:53::1/128]
Exec[ip addr add 2620:0:861:53::1/128 label lo:anycast dev lo]
Augeas[lo_2620:0:861:53::1/128]
Interface::Ip[lo-vip-ns0.wikimedia.org-ipv6]

Resources modified

Interface::Ip[lo-vip-ns0.wikimedia.org-ipv6]

Parameters differences:

--- Interface::Ip[lo-vip-ns0.wikimedia.org-ipv6].orig
+++ Interface::Ip[lo-vip-ns0.wikimedia.org-ipv6]

+    options   => label lo:anycast
+    ensure    => present
+    address   => 2620:0:861:53::1
+    prefixlen => 128
+    before    => Service[bird]
+    interface => lo

Augeas[lo_2620:0:861:53::1/128]

Parameters differences:

--- Augeas[lo_2620:0:861:53::1/128].orig
+++ Augeas[lo_2620:0:861:53::1/128]

+    lens    => Interfaces.lns
+    changes => set up[last()+1] 'ip addr add 2620:0:861:53::1/128 label lo:anycast dev lo'
+    context => /files/etc/network/interfaces/*[. = 'lo' and ./family = 'inet']
+    onlyif  => match up[. = 'ip addr add 2620:0:861:53::1/128 label lo:anycast dev lo'] size == 0
+    incl    => /etc/network/interfaces

Bird::Anycast_healthchecker_check[hc-vip-recdns.anycast.wmnet]

Parameters differences:

--- Bird::Anycast_healthchecker_check[hc-vip-recdns.anycast.wmnet].orig
+++ Bird::Anycast_healthchecker_check[hc-vip-recdns.anycast.wmnet]

@@
-    do_ipv6 => False
+    do_ipv6 => True

Augeas[lo_2a02:ec80:53::1/128]

Parameters differences:

--- Augeas[lo_2a02:ec80:53::1/128].orig
+++ Augeas[lo_2a02:ec80:53::1/128]

+    lens    => Interfaces.lns
+    changes => set up[last()+1] 'ip addr add 2a02:ec80:53::1/128 label lo:anycast dev lo'
+    context => /files/etc/network/interfaces/*[. = 'lo' and ./family = 'inet']
+    onlyif  => match up[. = 'ip addr add 2a02:ec80:53::1/128 label lo:anycast dev lo'] size == 0
+    incl    => /etc/network/interfaces

Class[Profile::Dns::Recursor]

Parameters differences:

--- Class[Profile::Dns::Recursor].orig
+++ Class[Profile::Dns::Recursor]

@@
-    advertise_vips => {'recdns.anycast.wmnet': {'address': '10.3.0.1', 'check_cmd': '/usr/local/bin/check_recdns_state /usr/lib/nagios/plugins/check_dns_query -H 10.3.0.1 -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'recdns'}, 'ns2.wikimedia.org': {'address': '198.35.27.27', 'check_cmd': '/usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 198.35.27.27 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns2'}, 'ns0.wikimedia.org': {'address': '208.80.154.238', 'check_cmd': '/usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 208.80.154.238 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns0'}, 'ntp-a.anycast.wmnet': {'address': '10.3.0.5', 'check_cmd': '/usr/local/bin/check_ntp_a_state /usr/lib/nagios/plugins/check_ntp_peer -H 127.0.0.1 -w 0.05 -c 0.1', 'ensure': 'present', 'service_type': 'ntp-a'}}
+    advertise_vips => {'recdns.anycast.wmnet': {'address': '10.3.0.1', 'check_cmd': '/usr/local/bin/check_recdns_state /usr/lib/nagios/plugins/check_dns_query -H 10.3.0.1 -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'recdns'}, 'ns2.wikimedia.org': {'address': '198.35.27.27', 'check_cmd': '/usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 198.35.27.27 -a -l -d www.wikipedia.org -t 1', 'address_ipv6': '2a02:ec80:53::1', 'check_cmd_ipv6': '/usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 2a02:ec80:53::1 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns2'}, 'ns0.wikimedia.org': {'address': '208.80.154.238', 'check_cmd': '/usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 208.80.154.238 -a -l -d www.wikipedia.org -t 1', 'address_ipv6': '2620:0:861:53::1', 'check_cmd_ipv6': '/usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 2620:0:861:53::1 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns0'}, 'ntp-a.anycast.wmnet': {'address': '10.3.0.5', 'check_cmd': '/usr/local/bin/check_ntp_a_state /usr/lib/nagios/plugins/check_ntp_peer -H 127.0.0.1 -w 0.05 -c 0.1', 'ensure': 'present', 'service_type': 'ntp-a'}}

Interface::Ip[lo-vip-ns2.wikimedia.org-ipv6]

Parameters differences:

--- Interface::Ip[lo-vip-ns2.wikimedia.org-ipv6].orig
+++ Interface::Ip[lo-vip-ns2.wikimedia.org-ipv6]

+    options   => label lo:anycast
+    ensure    => present
+    address   => 2a02:ec80:53::1
+    prefixlen => 128
+    before    => Service[bird]
+    interface => lo

Bird::Anycast_healthchecker_check[hc-vip-ntp-a.anycast.wmnet]

Parameters differences:

--- Bird::Anycast_healthchecker_check[hc-vip-ntp-a.anycast.wmnet].orig
+++ Bird::Anycast_healthchecker_check[hc-vip-ntp-a.anycast.wmnet]

@@
-    do_ipv6 => False
+    do_ipv6 => True

File[/etc/anycast-healthchecker.conf]

Content differences:

--- /etc/anycast-healthchecker.conf.orig
+++ /etc/anycast-healthchecker.conf
@@ -4,7 +4,7 @@
 [daemon]
 pidfile                = /var/run/anycast-healthchecker/anycast-healthchecker.pid
 ipv4                   = true
-ipv6                   = false
+ipv6                   = true
 bird_conf              = /etc/bird/anycast-prefixes.conf
 bird6_conf             = /etc/bird/anycast6-prefixes.conf
 bird_variable          = ACAST_PS_ADVERTISE

Bird::Anycast_healthchecker_check[hc-vip-ns0.wikimedia.org]

Parameters differences:

--- Bird::Anycast_healthchecker_check[hc-vip-ns0.wikimedia.org].orig
+++ Bird::Anycast_healthchecker_check[hc-vip-ns0.wikimedia.org]

+    address_ipv6   => 2620:0:861:53::1
+    check_cmd_ipv6 => /usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 2620:0:861:53::1 -a -l -d www.wikipedia.org -t 1
@@
-    do_ipv6        => False
+    do_ipv6        => True

Class[Profile::Bird::Anycast]

Parameters differences:

--- Class[Profile::Bird::Anycast].orig
+++ Class[Profile::Bird::Anycast]

@@
-    do_ipv6        => False
+    do_ipv6        => True
@@
-    advertise_vips => {'recdns.anycast.wmnet': {'address': '10.3.0.1', 'check_cmd': '/usr/local/bin/check_recdns_state /usr/lib/nagios/plugins/check_dns_query -H 10.3.0.1 -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'recdns'}, 'ns2.wikimedia.org': {'address': '198.35.27.27', 'check_cmd': '/usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 198.35.27.27 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns2'}, 'ns0.wikimedia.org': {'address': '208.80.154.238', 'check_cmd': '/usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 208.80.154.238 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns0'}, 'ntp-a.anycast.wmnet': {'address': '10.3.0.5', 'check_cmd': '/usr/local/bin/check_ntp_a_state /usr/lib/nagios/plugins/check_ntp_peer -H 127.0.0.1 -w 0.05 -c 0.1', 'ensure': 'present', 'service_type': 'ntp-a'}}
+    advertise_vips => {'recdns.anycast.wmnet': {'address': '10.3.0.1', 'check_cmd': '/usr/local/bin/check_recdns_state /usr/lib/nagios/plugins/check_dns_query -H 10.3.0.1 -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'recdns'}, 'ns2.wikimedia.org': {'address': '198.35.27.27', 'check_cmd': '/usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 198.35.27.27 -a -l -d www.wikipedia.org -t 1', 'address_ipv6': '2a02:ec80:53::1', 'check_cmd_ipv6': '/usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 2a02:ec80:53::1 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns2'}, 'ns0.wikimedia.org': {'address': '208.80.154.238', 'check_cmd': '/usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 208.80.154.238 -a -l -d www.wikipedia.org -t 1', 'address_ipv6': '2620:0:861:53::1', 'check_cmd_ipv6': '/usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 2620:0:861:53::1 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns0'}, 'ntp-a.anycast.wmnet': {'address': '10.3.0.5', 'check_cmd': '/usr/local/bin/check_ntp_a_state /usr/lib/nagios/plugins/check_ntp_peer -H 127.0.0.1 -w 0.05 -c 0.1', 'ensure': 'present', 'service_type': 'ntp-a'}}

Class[Bird]

Parameters differences:

--- Class[Bird].orig
+++ Class[Bird]

@@
-    do_ipv6 => False
+    do_ipv6 => True

File[/etc/bird/bird.conf]

Content differences:

--- /etc/bird/bird.conf.orig
+++ /etc/bird/bird.conf
@@ -1,4 +1,5 @@
 include "/etc/bird/anycast-prefixes.conf";
+include "/etc/bird/anycast6-prefixes.conf";
 
 router id 208.80.154.6;
 
@@ -8,9 +9,20 @@
         export all;
     };
 }
+protocol direct {
+    interface "*";
+    ipv6 {
+        export all;
+    };
+}
 
 protocol kernel {
     ipv4 {
+        import none;
+    };
+}
+protocol kernel {
+    ipv6 {
         import none;
     };
 }
@@ -22,9 +34,21 @@
 {
     return net ~ ACAST_PS_ADVERTISE;
 }
+function match_route6()
+{
+    return net ~ ACAST6_PS_ADVERTISE;
+}
 
 filter vips_filter {
     if ( net.len = 32 && net !~ 203.0.113.1/32 && match_route() ) then {
+        accept;
+    }
+    else {
+        reject;
+    }
+}
+filter vips6_filter {
+    if ( net.len = 128 && net !~ 2001:db8::1/128 && match_route6() ) then {
         accept;
     }
     else {
@@ -64,3 +88,23 @@
     neighbor 208.80.154.197 external;
 }
 
+protocol bgp {
+    multihop;
+    bfd yes;
+    ipv6 {
+        import none;
+        export filter vips6_filter;
+    };
+    local 2620:0:861:1:208:80:154:6 as 64605;
+    neighbor 2620:0:861:ffff::1 external;
+}
+protocol bgp {
+    multihop;
+    bfd yes;
+    ipv6 {
+        import none;
+        export filter vips6_filter;
+    };
+    local 2620:0:861:1:208:80:154:6 as 64605;
+    neighbor 2620:0:861:ffff::2 external;
+}

File[/etc/anycast-healthchecker.d/hc-vip-ns0.wikimedia.org.conf]

Content differences:

--- /etc/anycast-healthchecker.d/hc-vip-ns0.wikimedia.org.conf.orig
+++ /etc/anycast-healthchecker.d/hc-vip-ns0.wikimedia.org.conf
@@ -7,3 +7,13 @@
 check_disabled    = false
 on_disabled       = withdraw
 ip_prefix         = 208.80.154.238/32
+
+[hc-vip-ns0.wikimedia.org.ipv6]
+check_cmd         = /usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 2620:0:861:53::1 -a -l -d www.wikipedia.org -t 1
+check_interval    = 1
+check_timeout     = 1
+check_fail        = 1
+check_rise        = 10
+check_disabled    = false
+on_disabled       = withdraw
+ip_prefix         = 2620:0:861:53::1/128

Exec[ip addr add 2620:0:861:53::1/128 label lo:anycast dev lo]

Parameters differences:

--- Exec[ip addr add 2620:0:861:53::1/128 label lo:anycast dev lo].orig
+++ Exec[ip addr add 2620:0:861:53::1/128 label lo:anycast dev lo]

+    returns => [0, 2]
+    path    => /bin:/usr/bin
+    unless  => ip address show lo | grep -q 2620:0:861:53::1/128

Class[Profile::Dns::Auth::Update]

Parameters differences:

--- Class[Profile::Dns::Auth::Update].orig
+++ Class[Profile::Dns::Auth::Update]

@@
-    advertise_vips => {'recdns.anycast.wmnet': {'address': '10.3.0.1', 'check_cmd': '/usr/local/bin/check_recdns_state /usr/lib/nagios/plugins/check_dns_query -H 10.3.0.1 -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'recdns'}, 'ns2.wikimedia.org': {'address': '198.35.27.27', 'check_cmd': '/usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 198.35.27.27 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns2'}, 'ns0.wikimedia.org': {'address': '208.80.154.238', 'check_cmd': '/usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 208.80.154.238 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns0'}, 'ntp-a.anycast.wmnet': {'address': '10.3.0.5', 'check_cmd': '/usr/local/bin/check_ntp_a_state /usr/lib/nagios/plugins/check_ntp_peer -H 127.0.0.1 -w 0.05 -c 0.1', 'ensure': 'present', 'service_type': 'ntp-a'}}
+    advertise_vips => {'recdns.anycast.wmnet': {'address': '10.3.0.1', 'check_cmd': '/usr/local/bin/check_recdns_state /usr/lib/nagios/plugins/check_dns_query -H 10.3.0.1 -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'recdns'}, 'ns2.wikimedia.org': {'address': '198.35.27.27', 'check_cmd': '/usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 198.35.27.27 -a -l -d www.wikipedia.org -t 1', 'address_ipv6': '2a02:ec80:53::1', 'check_cmd_ipv6': '/usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 2a02:ec80:53::1 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns2'}, 'ns0.wikimedia.org': {'address': '208.80.154.238', 'check_cmd': '/usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 208.80.154.238 -a -l -d www.wikipedia.org -t 1', 'address_ipv6': '2620:0:861:53::1', 'check_cmd_ipv6': '/usr/local/bin/check_authdns_ns0_state /usr/lib/nagios/plugins/check_dns_query -H 2620:0:861:53::1 -a -l -d www.wikipedia.org -t 1', 'ensure': 'present', 'service_type': 'authdns-ns0'}, 'ntp-a.anycast.wmnet': {'address': '10.3.0.5', 'check_cmd': '/usr/local/bin/check_ntp_a_state /usr/lib/nagios/plugins/check_ntp_peer -H 127.0.0.1 -w 0.05 -c 0.1', 'ensure': 'present', 'service_type': 'ntp-a'}}

Exec[ip addr add 2a02:ec80:53::1/128 label lo:anycast dev lo]

Parameters differences:

--- Exec[ip addr add 2a02:ec80:53::1/128 label lo:anycast dev lo].orig
+++ Exec[ip addr add 2a02:ec80:53::1/128 label lo:anycast dev lo]

+    returns => [0, 2]
+    path    => /bin:/usr/bin
+    unless  => ip address show lo | grep -q 2a02:ec80:53::1/128

Class[Bird::Anycast_healthchecker]

Parameters differences:

--- Class[Bird::Anycast_healthchecker].orig
+++ Class[Bird::Anycast_healthchecker]

@@
-    do_ipv6 => False
+    do_ipv6 => True

Bird::Anycast_healthchecker_check[hc-vip-ns2.wikimedia.org]

Parameters differences:

--- Bird::Anycast_healthchecker_check[hc-vip-ns2.wikimedia.org].orig
+++ Bird::Anycast_healthchecker_check[hc-vip-ns2.wikimedia.org]

+    address_ipv6   => 2a02:ec80:53::1
+    check_cmd_ipv6 => /usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 2a02:ec80:53::1 -a -l -d www.wikipedia.org -t 1
@@
-    do_ipv6        => False
+    do_ipv6        => True

File[/etc/anycast-healthchecker.d/hc-vip-ns2.wikimedia.org.conf]

Content differences:

--- /etc/anycast-healthchecker.d/hc-vip-ns2.wikimedia.org.conf.orig
+++ /etc/anycast-healthchecker.d/hc-vip-ns2.wikimedia.org.conf
@@ -7,3 +7,13 @@
 check_disabled    = false
 on_disabled       = withdraw
 ip_prefix         = 198.35.27.27/32
+
+[hc-vip-ns2.wikimedia.org.ipv6]
+check_cmd         = /usr/local/bin/check_authdns_ns2_state /usr/lib/nagios/plugins/check_dns_query -H 2a02:ec80:53::1 -a -l -d www.wikipedia.org -t 1
+check_interval    = 1
+check_timeout     = 1
+check_fail        = 1
+check_rise        = 10
+check_disabled    = false
+on_disabled       = withdraw
+ip_prefix         = 2a02:ec80:53::1/128

Compilation results for dns1004.wikimedia.org: System changes detected

Catalog differences

Summary

Resources only in the new catalog

Resources modified

Relevant files