Closed
Bug 964486
Opened 12 years ago
Closed 12 years ago
Set up alternate IP/DNS for ftp
Categories
(Infrastructure & Operations Graveyard :: WebOps: Product Delivery, task)
Infrastructure & Operations Graveyard
WebOps: Product Delivery
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: catlee, Assigned: cturra)
References
Details
Can we please set up a new DNS name and IP address for ftp.m.o?
We need to divert some traffic out of our VPN tunnel to the public internet. We'd like to move SSL traffic to/from ftp outside the VPN, but that requires us to have a different IP to adjust the routing tables.
I'm not picky about the name, 'ftp-ssl' or something would WFM.
|
||
Comment 1•12 years ago
|
||
On a tangentially related note, is there any caching in AWS for downloads from ftp.mozilla.org?
|
|
||
Updated•12 years ago
|
Assignee: infra → server-ops-webops
Component: Infrastructure: DNS → WebOps: Product Delivery
QA Contact: jdow → nmaul
|
|
Reporter | |
Comment 2•12 years ago
|
||
(In reply to Peter Radcliffe [:pir] from comment #1)
> On a tangentially related note, is there any caching in AWS for downloads
> from ftp.mozilla.org?
no :(
|
|
Assignee | |
Comment 3•12 years ago
|
||
(In reply to Peter Radcliffe [:pir] from comment #1)
> On a tangentially related note, is there any caching in AWS for downloads
> from ftp.mozilla.org?
we've been actively mirroring data to amazon s3, but we're not actively serving any of that content.
|
|
Assignee | |
Comment 4•12 years ago
|
||
dropping important so it doesn't page on call.
Severity: major → normal
OS: Linux → All
Hardware: x86_64 → All
|
|
Assignee | |
Comment 6•12 years ago
|
||
i've got this all sorted (special thnx to :adam too). there is now a dedicated ssl-only vip for the ftp cluster. you can find it at: ftp-ssl.mozilla.org
in addition to this configuration, i went ahead and updated the ftp.mo ssl certificate to include a subject alternative name for ftp-ssl so we didnt have to deal with SNI or other host header shenanigans.
$ dig +short ftp-ssl.mozilla.org
ftp-ssl-zlb.vips.scl3.mozilla.com.
63.245.215.129
$ curl -I https://ftp-ssl.mozilla.org/pub/mozilla.org/firefox/releases/26.0/
HTTP/1.1 200 OK
Server: Apache
X-Backend-Server: ftp2.dmz.scl3.mozilla.com
Cache-Control: max-age=300
Content-Type: text/html;charset=UTF-8
Date: Tue, 28 Jan 2014 22:07:17 GMT
Expires: Tue, 28 Jan 2014 22:12:17 GMT
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
Connection: Keep-Alive
X-Cache-Info: caching
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
|
||
Updated•9 years ago
|
Product: Infrastructure & Operations → Infrastructure & Operations Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•