Gehel added a comment.
At the moment, we have a ferm rule <https://github.com/wikimedia/puppet/blob/production/modules/profile/manifests/wdqs/gui.pp#L24-L31> to allow access to port 8888 from `$DOMAIN_NETWORKS`. I think this should be sufficient, but I'm always somewhat lost in our network. As far as I can see, we don't have an LVS configuration for port 8888, so that needs to be addressed as well. Side note: since we are expecting heavy queries, we should route those only to the public wdqs endpoint (`wdqs.svc.{eqiad| codfw}.wmnet`) and NOT to the private cluster (`wdqs-internal.svc.{eqiad| codfw}.wmnet`). TASK DETAIL https://phabricator.wikimedia.org/T176875 EMAIL PREFERENCES https://phabricator.wikimedia.org/settings/panel/emailpreferences/ To: Gehel Cc: Ladsgroup, WMDE-leszek, ayounsi, akosiaris, Ottomata, elukey, Smalyshev, Gehel, Addshore, Aklapper, darthmon_wmde, ET4Eva, Legado_Shulgin, DannyS712, Nandana, thifranc, AndyTan, Davinaclare77, Qtn1293, Techguru.pc, Lahi, Gq86, Darkminds3113, Lucas_Werkmeister_WMDE, GoranSMilovanovic, Th3d3v1ls, Hfbn0, QZanden, EBjune, merbst, LawExplorer, Avner, Zppix, _jensen, rosalieper, Jonas, FloNight, Xmlizer, Wong128hk, jkroll, Wikidata-bugs, Jdouglas, aude, Tobias1984, Manybubbles, faidon, Mbch331, Jay8g, fgiunchedi
_______________________________________________ Wikidata-bugs mailing list Wikidata-bugs@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikidata-bugs
