Mercurial > code > home > repos > infra
annotate dns_check.py @ 238:a521d08d2b0d
upgrade syncthing
| author | drewp@bigasterisk.com |
|---|---|
| date | Mon, 27 Nov 2023 22:15:10 -0800 |
| parents | bf1573dd1947 |
| children | 3af02e24eaf9 |
| rev | line source |
|---|---|
| 45 | 1 # run key dns lookups everywhere |
| 2 import tempfile | |
| 3 | |
| 4 from pyinfra import host | |
| 81 | 5 from pyinfra.operations import server |
| 45 | 6 |
|
59
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
7 |
| 45 | 8 def check(name, addr): |
| 9 server.shell(commands=[ | |
| 10 # note: one big string | |
| 11 f"out=`dnsget -q {name}`; " | |
| 12 f'[ -n "$out" ] || exit 1; ' | |
| 13 f"if [ $out != {addr} ]; then echo got $out >&2 ; exit 1; fi" | |
|
59
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
14 ]) |
|
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
15 |
| 45 | 16 |
| 17 ''' | |
| 18 idea: read a file that looks like this: | |
| 19 | |
| 20 on host: bang dash slash prime | |
| 21 lookup: | |
| 22 bang 127.0.1.1 10.1.0.1 10.1.0.1 10.5.0.1 | |
| 23 bang5 10.5.0.1 10.5.0.1 10.5.0.1 10.5.0.1 | |
| 24 dash 10.1.0.5 127.0.1.1 10.1.0.5 10.5.0.5 | |
|
59
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
25 bang.bigasterisk.com |
|
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
26 bang.bigasterisk.com. |
|
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
27 prime |
|
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
28 projects.bigasterisk.com |
| 45 | 29 etc |
| 30 | |
| 31 ''' | |
| 32 | |
| 33 if host.name in ['dash', 'bang', 'slash']: | |
| 78 | 34 check('dash', '10.2.0.212') |
|
59
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
35 check('projects.bigasterisk.com', '10.2.0.1') |
| 45 | 36 elif host.name in ['prime']: |
| 37 check('dash', '10.5.0.5') | |
|
53
8945bf71da22
make bang look to itself, not just to ISP, for projects.bigasterisk.com
drewp@bigasterisk.com
parents:
45
diff
changeset
|
38 check('projects.bigasterisk.com', '10.2.0.1') # expected the public addr, but fine |
| 45 | 39 else: |
| 78 | 40 check('dash', '10.2.0.212') |
|
53
8945bf71da22
make bang look to itself, not just to ISP, for projects.bigasterisk.com
drewp@bigasterisk.com
parents:
45
diff
changeset
|
41 check('projects.bigasterisk.com', '10.2.0.1') |
| 45 | 42 |
|
59
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
43 if host.name in ['prime']: |
| 45 | 44 check('bang', '10.5.0.1') |
|
59
fa7a71b8a97f
more dns checks, including from inside containers in k8s`
drewp@bigasterisk.com
parents:
53
diff
changeset
|
45 check('slash', '10.5.0.6') |
| 45 | 46 else: |
| 47 check('bang', '10.2.0.1') | |
| 81 | 48 check('slash', '10.2.0.145') |
| 45 | 49 |
| 50 check('bang5', '10.5.0.1') | |
| 51 check('prime', '10.5.0.2') | |
| 52 |