Hackeriet

User Tools

Site Tools

You are here: start » infra » hosts » blade
infra:hosts:blade

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

infra:hosts:blade [2025/06/21 20:39] – created karltkinfra:hosts:blade [2026/05/19 19:15] (current) – Replace host page with emergency access runbook atluxity_idp.hackeriet.no
Line 1: Line 1:
-Ssh to ''blade.hackeriet.no''.+====== Blade ======
  
-If you are paying memberask styret@hackeriet.no to create an account for you.+===== Purpose ===== 
 + 
 +''blade.hackeriet.no'' is service VM used by several Hackeriet services. 
 + 
 +For inventory detailsuse the NetBox/IPAM entry ''blade'' (VM ID ''12''). NetBox is the source of truth for VM size, IP assignments, site, tenant, and current placement. 
 + 
 +===== Emergency Access ===== 
 + 
 +Normal access: 
 + 
 +  * ''ssh blade.hackeriet.no'' 
 + 
 +If SSH does not respond: 
 + 
 +  - Open the NetBox/IPAM entry ''blade''
 +  - Confirm the current hypervisor from NetBox before assuming placement. 
 +  - Current known hypervisor when this page was written: ''host007''
 +  - Connect to the Proxmox UI/console for the current hypervisor or cluster. 
 +  - Cluster name from NetBox: ''klynge001''
 + 
 +The VM can move, so always verify placement in NetBox during an incident. 
 + 
 +===== Credentials ===== 
 + 
 +Do not paste secrets into the wiki. 
 + 
 +Relevant ''hackeriet/pass'' entries: 
 + 
 +  * ''hackeriet@blade.hackeriet.no.gpg'' 
 +  * ''mailman@blade.gpg'' 
 + 
 +If root or service credentials are needed, look in ''hackeriet/pass'' and keep decrypted values out of the wiki. 
 + 
 +===== Operating System ===== 
 + 
 +Observed over SSH on 2026-05-19: 
 + 
 +  * OS: ''Debian GNU/Linux 13 (trixie)'' 
 +  * Kernel: ''6.12.88+deb13-amd64'' 
 + 
 +Treat this as emergency orientation only. Live state may differ. 
 + 
 +===== Key Services On Blade ===== 
 + 
 +Service details belong on the service pages: 
 + 
 +  * [[infra:services:wiki|Wiki]] 
 +  * [[infra:services:blog|Blog]] 
 +  * [[infra:services:hula|Hula]] 
 +  * [[infra:network:nameserver|Authoritative name server]] 
 + 
 +Observed service categories: 
 + 
 +  * nginx-served web services 
 +  * ''nsd'' authoritative DNS 
 +  * Hula app service 
 +  * mail-related services 
 +  * webhook-triggered deployments 
 + 
 +===== Useful Paths ===== 
 + 
 +Paths commonly useful during incident response: 
 + 
 +  * ''/etc/nginx/sites-enabled'' 
 +  * ''/etc/nsd'' 
 +  * ''/etc/webhook.conf'' 
 +  * ''/srv/hackeriet-wiki'' 
 +  * ''/srv/webapp-hackerhula'' 
 +  * ''/home/blog'' 
 + 
 +===== Checks During Incidents ===== 
 + 
 +Basic host checks: 
 + 
 +<code> 
 +hostname -f 
 +systemctl --failed 
 +df -h -x tmpfs -x devtmpfs 
 +ip -br addr show scope global 
 +</code> 
 + 
 +Service checks: 
 + 
 +<code> 
 +systemctl status nginx nsd 
 +systemctl status gunicorn-hula 
 +systemctl status webhook 
 +journalctl -u nginx -u nsd --since "1 hour ago" 
 +</code> 
 + 
 +If SSH is unavailable, use the Proxmox console via the current hypervisor shown in NetBox.
  
-You will need to supply a SSH public key.  
/srv/hackeriet-wiki/dokuwiki/data/attic/infra/hosts/blade.1750538357.txt.gz · Last modified: by karltk