-
Notifications
You must be signed in to change notification settings - Fork 9
/
Copy pathNotes.txt
84 lines (66 loc) · 2.27 KB
/
Notes.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
Ansible
-------
Change command prompt so we see function on line ( quick ssh )
Don't re-partition
Regression testing?
Review shell commands for use of set -e
Check quiesce is commented out for community
Bug
===
Monitoring playbook fails if no client hosts
Cosmetic
========
Look at whitespacing in templates
Nice to have
============
Refactor node-id generation to only do this if we're working with ip addresses
When Finishing
===============
Need to check everything works when tls_enabled=false
Done
====
Check what happens with different distributions
AMI lookup, or at least comment what is in all.yml
Show public and private ip addresses
Loop over scripts when copying
Wait while initializing
Instance spin up
Need to iterate through a list of ip addresses to prepare conf file
Shows 'downloading enterprise' rather than this being configurable - community / enterprise
Cleanup - check .gitignore for generated assets
Add get-ip-addresses to setup script
Add an ssh utility script
Turn ssh script into a template
Disk partitioning
Add disk partitions to conf file
Need to stop service in teardown
Change application_tag to cluster_tag
Auto-set memory in namespace
Check variable precedence ( so can I over-ride variables in all.yml - eg crypto / enterprise ) - yes you can
Enhance README - IAM / virtualenv
Bare install i.e. not from your Mac
Update README to include details of client
Lock security group to your own ip
Dockerize it to simplify setup?
Secure Grafana with a password - not necessary - did ip locking
For teardown, kill all nodes together - should be able to do this now.
ACT Setup
Ability to ignore ipify
Allow for multiple clusters using templating of inventory/hosts - almost there - search for hosts: where {{}} is not being used
Get rid of remote_user warning
Output checked
==============
teardown
setup
get-ip-addresses
install
install
Pending
=======
reload
TLS
===
JAVA_HOME=/usr/lib/jvm/java-1.8.0-openjdk-1.8.0.242.b08-0.amzn2.0.1.x86_64
scp -i .aws.pem assets/certificates/certs/ca.crt ${AERO_CLIENT_IPS[0]}:/tmp
sudo keytool -import -trustcacerts -keystore $JAVA_HOME/jre/lib/security/cacerts -storepass changeit -alias aerospike_ansible -import -file /tmp/ca.crt
aql --tls-enable --tls-name=aerospike_ansible_demo_cluster --tls-cafile=/etc/aerospike/certs/ca.crt -p 4333