Bug 1806684

Summary: Add architectural guidance to ensure services required for cloud deployments/functioning are not hosted on the cloud
Product: Red Hat OpenStack Reporter: Nate Johnston <njohnston>
Component: documentationAssignee: Greg Rakauskas <gregraka>
Status: CLOSED CURRENTRELEASE QA Contact: RHOS Documentation Team <rhos-docs>
Severity: medium Docs Contact:
Priority: medium    
Version: 10.0 (Newton)CC: jamsmith, njohnston, rcernin
Target Milestone: asyncKeywords: Triaged, ZStream
Target Release: 13.0 (Queens)   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: docs-accepted
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
: 1939266 (view as bug list) Environment:
Last Closed: 2021-03-16 22:07:41 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1939266    

Description Nate Johnston 2020-02-24 18:21:00 UTC 
I am creating this as a child of bug #1655207, which has was a customer escalation that ended up being something we don't want to code into TripleO or OpenStack.  Basically the customer put themselves in a catch-22 position by hosting a service (DNS) on the cloud.  The DNS service they hosted there was also the one that the undercloud and overcloud was configured to use.  As soon as they had a problem in their cloud the DNS service hosted on the cloud stopped working, which then meant the cloud components couldn't do DNS lookups on each other.  Bad Stuff Happened.

To reduce this to it's minimal viable expression: The cloud depended on working DNS.  The DNS service depended on a working cloud.  As soon as either had a problem, both were doomed.

I am not sure where we have a statement of generalized cloud architecture/deployment best practices, but wherever it is a statement to the effect that Thou Shalt Not Do This Thing should be added.

Priority: medium
Affected versions: all
Engineering SME: Nate Johnston
Comment 1 Nate Johnston 2020-02-24 18:24:08 UTC 
*** Bug 1655207 has been marked as a duplicate of this bug. ***
Comment 10 Greg Rakauskas 2021-03-16 22:07:41 UTC 
Hi,

The change has been made to the RHOSP 13 "Networking Guide." Customers can see
this change here:

   https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/13/html-single/networking_guide/index#create-network

Thanks,
--Greg