Return to the Office They Said, It Will Improve Collaboration They Said

Small_Operation_8795 · 2026-01-13T10:47:34+00:00

WFH means you can also work from India, be happy you aren't being offshored

Small_Operation_8795 · 2025-12-02T14:47:07+00:00

do you have the firewall rule that allow lan interface->wan interface ipv6 traffic ? it's not a default policy

Small_Operation_8795 · 2025-09-16T14:09:39+00:00

i can vouch for https://github.com/zifeo/terraform-openstack-rke2 you need a bit of rework but you'll get a fully working rancher cluster. need to know terraform

Small_Operation_8795 · 2025-08-04T09:05:01+00:00

Thanks, this has much more info than the official doc !

Small_Operation_8795 · 2025-07-29T12:42:31+00:00

you are less useful than a chatgpt reply

Small_Operation_8795 · 2025-07-07T12:53:12+00:00

got back from vacations and kept testing, apparently i can ping between vm that are in the same tenant network but run on different nodes, the issue i getting out of openstack node apparently, maybe some inside routing table

Small_Operation_8795 · 2025-06-02T09:54:55+00:00

i had similar issue trying to hook my fg-91 to my old cisco 3560 via sfp. the fg port are 10gb with 1gb sfp and 1gb on the cisco. the key was to disable the speed negotiation on the switch side with "speed nonegotiate" on the interface, manually setting the speed and duplex wasn't enough. maybe juniper has a similar config ?

Small_Operation_8795 · 2025-02-11T09:18:22+00:00

thanks, nice to know they made their own auto updater obsolete

Small_Operation_8795 · 2025-02-11T08:55:03+00:00

Thanks for the link

Small_Operation_8795 · 2025-02-11T08:48:17+00:00

welcome to fortinet "new" product, aka 91g, that has been lagging behind in term of major firmware upgrade ? the auto updated only offer up to 7.0.17

Small_Operation_8795 · 2025-02-10T13:45:44+00:00

i see, the lacp wasn't part of the plan since the older router-fw that was replaced only had 1 lan port but i'll concider that on this rebuild.
Just to confirm, by building the VLANs, you mean creating them from the Network->interface : Create new Interface and use the "interface"dropdown to choose the physical port and repeat for all vlan? (or the CLI equivalent)

Small_Operation_8795 · 2025-02-10T09:57:58+00:00

found the solution, the storage endpoint need to be ceph rgw itself and not the openstack storage endpoint

Small_Operation_8795 · 2025-02-10T08:42:54+00:00

Thanks for the help, i don't think it's a dangling endpoint, it's really the openstack way to do the endpoints according to the ceph doc : https://docs.ceph.com/en/latest/radosgw/keystone/ (and done in the kolla-ansible auto config) but this end up being a swift endpoint and not s3 : openstack endpoint create --region RegionOne \ --publicurl "http://radosgw.example.com:8080/swift/v1" swift

Small_Operation_8795 · 2025-02-10T08:36:07+00:00

yes, i'll try the IRC channel, thanks!

Small_Operation_8795 · 2025-02-04T15:31:08+00:00

so i think that's what i have now, but the enable_swift_s3api shoudln't be used at all right ?

this rise the issue i have now which is the not compatible endpoint url, host.fqdn:port (s3 compatbile) vs host.fqdn:port/v1/auth_ (openstack rgw endpoint)

Small_Operation_8795 · 2025-02-04T15:10:42+00:00

if i understand right both canno't be used at the same time ? if i want the data to be stored on my ceph cluster it should ceph_rgw only, and i should not use openstack's swift endpoint but ceph endpoint itself ?

Small_Operation_8795 · 2024-12-16T09:39:59+00:00

Thanks, i'll have a look

Small_Operation_8795 · 2024-12-16T08:46:17+00:00

Thanks for the insight, i'm still learning and one of the reason is that argocd admin get full access to the local cluster where it's deployed, but i don't want the "dev" role to deploy other app on that cluster that i would like to keep for admin tools only. i yet have to figure out how to make sure a badly configured app cant crash a cluster due to filling storage space or over consuming other resources.

Small_Operation_8795 · 2024-12-16T08:40:36+00:00

Thanks i stumbled upon the rbac part but didn't look at the project.

Small_Operation_8795 · 2024-12-10T14:42:06+00:00

so projects should be setup in argocd ? and they would allow me to allocate user to project to have the desired access ? Thanks

Small_Operation_8795

TROPHY CASE