The cloud team wants to make folks aware of a possible change to the cloud >images. The team plans to register a new domain, debian.cloud, for mirrors >inside of cloud provider infrastructure. For such mirrors, sources.list will >look like:
deb http://<provider>.debian.cloud/debian/ bullseye main
On Tue, 25 Jan 2022 21:47:49 -0800, Ross Vandegrift
<rvandegrift@debian.org> wrote:
The cloud team wants to make folks aware of a possible change to the cloud >images. The team plans to register a new domain, debian.cloud, for mirrors >inside of cloud provider infrastructure. For such mirrors, sources.list will
look like:
deb http://<provider>.debian.cloud/debian/ bullseye main
Are the IP ranges of the Cloud Providers registered that badly that deb.debian.org wouldn't reliably point to the mirrors inside the
provider's infrastructure? Or are the cloud providers' mirrors
differnet from what we expect from a Debian mirror?
On Wed, Jan 26, 2022 at 07:25:18AM +0100, Marc Haber wrote:
On Tue, 25 Jan 2022 21:47:49 -0800, Ross Vandegrift
<rvandegrift@debian.org> wrote:
The cloud team wants to make folks aware of a possible change to the cloud >> >images. The team plans to register a new domain, debian.cloud, for mirrors >> >inside of cloud provider infrastructure. For such mirrors, sources.list will
look like:
deb http://<provider>.debian.cloud/debian/ bullseye main
Are the IP ranges of the Cloud Providers registered that badly that
deb.debian.org wouldn't reliably point to the mirrors inside the
provider's infrastructure? Or are the cloud providers' mirrors
differnet from what we expect from a Debian mirror?
deb.debian.org is served from fastly and AWS CDNs - so it's outside of most >cloud provider's infrastructure.
Our first choice would be a subzone of debian.org. But we are not in DSA, and
haven't been able to get help with this request. So in the interest of making
progress, a new domain is the simplest alternative.
Are the IP ranges of the Cloud Providers registered that badly that deb.debian.org wouldn't reliably point to the mirrors inside the
provider's infrastructure? Or are the cloud providers' mirrors
differnet from what we expect from a Debian mirror?
On Tue, 25 Jan 2022 22:38:00 -0800, Ross Vandegrift
<rvandegrift@debian.org> wrote:
On Wed, Jan 26, 2022 at 07:25:18AM +0100, Marc Haber wrote:
On Tue, 25 Jan 2022 21:47:49 -0800, Ross Vandegrift
<rvandegrift@debian.org> wrote:
The cloud team wants to make folks aware of a possible change to the cloud >>>> images. The team plans to register a new domain, debian.cloud, for mirrors
inside of cloud provider infrastructure. For such mirrors, sources.list will
look like:
deb http://<provider>.debian.cloud/debian/ bullseye main
Are the IP ranges of the Cloud Providers registered that badly that
deb.debian.org wouldn't reliably point to the mirrors inside the
provider's infrastructure? Or are the cloud providers' mirrors
differnet from what we expect from a Debian mirror?
deb.debian.org is served from fastly and AWS CDNs - so it's outside of most >> cloud provider's infrastructure.
So it is not possible to hook arbitrary mirrors into deb.debian.org
and we're dependent on Fastly and AWS here?
The cloud team wants to make folks aware of a possible change to the cloud
images. The team plans to register a new domain, debian.cloud, for mirrors
inside of cloud provider infrastructure. For such mirrors, sources.list will
look like:
deb http://<provider>.debian.cloud/debian/ bullseye main
Are the IP ranges of the Cloud Providers registered that badly that
deb.debian.org wouldn't reliably point to the mirrors inside the
provider's infrastructure? Or are the cloud providers' mirrors
differnet from what we expect from a Debian mirror?
deb.debian.org is served from fastly and AWS CDNs - so it's outside of most >cloud provider's infrastructure.
So it is not possible to hook arbitrary mirrors into deb.debian.org
and we're dependent on Fastly and AWS here?
I thought it was something more flexible.
Hello,
The cloud team wants to make folks aware of a possible change to the cloud images. The team plans to register a new domain, debian.cloud, for mirrors inside of cloud provider infrastructure. For such mirrors, sources.list will look like:
deb http://<provider>.debian.cloud/debian/ bullseye main
Hosting mirrors inside the cloud infrastructure provides users with faster, cheaper access to the archive. And since it saves the providers money, they're
often willing to provide the hosting infrastructure for free. Our image build
process allows customizing sources.list with these mirrors when possible. All
of this is great!
But some of the hostnames are controlled by the cloud providers. Mostly, this
has happened when the name is assigned by a CDN. This isn't optimal: if that name ever changes, users with the old hostname will be unable to install packages.
These names have been very stable. But in some providers, they're tied to cloud accounts. This makes it impossible to move the mirror to another account
without losing the name. And of course, for reasons [1], we need to move some
of these mirrors.
Since a migration is required, we'd like to adopt debian-controlled hostnames in sources.list. This way, we can never lose the hostnames that appear in sources.list.
Our first choice would be a subzone of debian.org. But we are not in DSA, and
haven't been able to get help with this request. So in the interest of making
progress, a new domain is the simplest alternative.
I don't know when this work will be complete - hopefully, all of the new infrastructure will be ready to go for the next stable release.
Are the IP ranges of the Cloud Providers registered that badly that
deb.debian.org wouldn't reliably point to the mirrors inside the
provider's infrastructure? Or are the cloud providers' mirrors
differnet from what we expect from a Debian mirror?
deb.debian.org is served from fastly and AWS CDNs - so it's outside of most >>cloud provider's infrastructure.
So it is not possible to hook arbitrary mirrors into deb.debian.org
and we're dependent on Fastly and AWS here?
I thought it was something more flexible.
I think we (DSA) have been reluctant to add new third-party-run services under debian.org, and it's not clear to me if that infrastructure would
be run by the cloud team on behalf of debian, or if the cloud team would control the names but point them at mirrors run by the cloud providers themselves.
Either way as Stefano said if you go for a new domain name it should be possible to use the same setup as our other domains if you want.
On Wed, Jan 26, 2022 at 07:25:18AM +0100, Marc Haber wrote:
Are the IP ranges of the Cloud Providers registered that badly that
deb.debian.org wouldn't reliably point to the mirrors inside the
provider's infrastructure? Or are the cloud providers' mirrors
differnet from what we expect from a Debian mirror?
I wonder, which mechanism would you propose to do so?
I think we (DSA) have been reluctant to add new third-party-run services under debian.org,
and it's not clear to me if that infrastructure would
be run by the cloud team on behalf of debian, or if the cloud team would control the names but point them at mirrors run by the cloud providers themselves.
This was redir.debian.org. I was very happy with it. I never understood
why we replaced it by something centralized. There were problems with it
and nobody was fixing them, but I think we have never been told exactly
what the problems were.
From my memory: one apt session may requires many http requests. The redirector could send those requests to different mirrors. If two of those mirrors were in different states, apt would interpret that as bad data. This caused unreliable updates.
On Wed, Jan 26, 2022 at 07:58:23PM +0100, Julien Cristau wrote:
I think we (DSA) have been reluctant to add new third-party-run services under debian.org, and it's not clear to me if that infrastructure would
be run by the cloud team on behalf of debian, or if the cloud team would control the names but point them at mirrors run by the cloud providers themselves.
It depends on the provider, and what you mean by "infrastructure". Many cases
fall into a grey area between your options:
- AWS: the mirror will be a CloudFront distribution. SPI will own the account,
the cloud team will create the CDN, but the infrastructure will be AWS.
- Azure, Infomaniak: they contract or employ folks to run mirrors for them.
Cloud team folks are responsible in both cases.
Speaking for myself only, I'd be be open to providing a name for a provider that doesn't work with us, and runs their own mirror. This would definitely not meet your requirement.
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 300 |
Nodes: | 16 (2 / 14) |
Uptime: | 26:54:23 |
Calls: | 6,707 |
Calls today: | 1 |
Files: | 12,239 |
Messages: | 5,352,575 |