|
|
## Purpose
|
|
|
|
|
|
This a persistent virtual machine running in the UoW Cloud. It survives even if you tear down the MiCADO deployment with [./2-delete-beast](/snet-asclepios-demo/snet-asclepios-deployment/-/blob/master/micado/2-delete-beast.sh)
|
|
|
|
|
|
It's purpose is to provide [Kubernete's Local Persistent Volumes](https://kubernetes.io/blog/2019/04/04/kubernetes-1.14-local-persistent-volumes-ga/)
|
|
|
|
|
|
These are volumes are used to read and write to the application data-stores. As such all database containers run on this node.
|
|
|
|
|
|
The reason we use this for data that needs both read/write permissions instead of the NFS server, is that NFS volumes do not work well with docker entrypoint scripts that attempt to change the ownership or permissions of the files stored there. see this [docker-library/postgres](https://github.com/docker-library/postgres/issues/361) issue for an overview. This bug also effected our MySQL databases.
|
|
|
|
|
|
We do not consider the [commonly accept work-around](https://github.com/docker-library/postgres/issues/361#issuecomment-346562603) of using `no_root_squash` to be sufficiently secure
|
|
|
|
|
|
It was manually provisioned using ansible by UoW staff (see "Provisioning" below)
|
|
|
|
|
|
One possible alternative to using this node for persistence could be to use managed database and blob storage services such as Amazon's RDS and S3. In fact, the in the context of our demonstrator, this node serves as a stand-in commercial services such as these.
|
|
|
|
|
|
## OS
|
|
|
|
|
|
```
|
|
|
ubuntu@manual-worker-10-255-230-237:~$ uname -a
|
|
|
Linux manual-worker-10-255-230-237 5.4.0-73-generic #82-Ubuntu SMP Wed Apr 14 17:39:42 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux
|
|
|
ubuntu@manual-worker-10-255-230-237:~$ lsb_release -a
|
|
|
No LSB modules are available.
|
|
|
Distributor ID: Ubuntu
|
|
|
Description: Ubuntu 20.04.2 LTS
|
|
|
Release: 20.04
|
|
|
Codename: focal
|
|
|
```
|
|
|
|
|
|
## SSH connection details
|
|
|
- server address: `ssh ubuntu@161.74.31.110`
|
|
|
- server host key fingerprints
|
|
|
|
|
|
```
|
|
|
root@manual-worker-10-255-230-237:~# for f in /etc/ssh/ssh_host_*_key; do ssh-keygen -l -f "$f"; done
|
|
|
```
|
|
|
|
|
|
size | fingerprint | user@host | type
|
|
|
-----|----------------------------------------------------|----------------------|--------
|
|
|
1024 | SHA256:JuTAzX8+taGYwGHqC0W8GlU0dkleYzgQ+4F2XblnIM0 | root@james-local-vol |(DSA)
|
|
|
256 | SHA256:EfzomuJEKy/Wsk1xsPQf0/m3/bsFH4fYU9k8q7i/6g0 | root@james-local-vol |(ECDSA)
|
|
|
256 | SHA256:IhTgzE+EWZvpZ0YSctr3xKjwtT+xTc2SNgiBlygDKu0 | root@james-local-vol |(ED25519)
|
|
|
3072 | SHA256:uNtetBW1gwnTIh7S34nI1F/JTj8WPwm12w5TIAOZytQ | root@james-local-vol |(RSA)
|
|
|
|
|
|
|
|
|
## Provisioning
|
|
|
|
|
|
- Server was provisioned using the follow ansible script:
|
|
|
[cloud-config](uploads/fabb20aa3d8852b8bba03ee72c971d91/cloud-config) |
|
|
\ No newline at end of file |