diff --git a/runbooks/source/add-concourse-to-cluster.html.md.erb b/runbooks/source/add-concourse-to-cluster.html.md.erb index dba51a97..efbeab6b 100644 --- a/runbooks/source/add-concourse-to-cluster.html.md.erb +++ b/runbooks/source/add-concourse-to-cluster.html.md.erb @@ -1,7 +1,7 @@ --- title: Add Concourse to a test cluster weight: 51 -last_reviewed_on: 2024-04-18 +last_reviewed_on: 2024-10-22 review_in: 6 months --- @@ -15,7 +15,7 @@ review_in: 6 months ## Process - Go to [`cloud-platform-infrastructure/terraform/aws-accounts/cloud-platform-aws/vpc/eks` directory](https://github.com/ministryofjustice/cloud-platform-infrastructure/tree/main/terraform/aws-accounts/cloud-platform-aws/vpc/eks) -and update `node_groups_count` and `node_size` as below to match the Manager cluster configuration, as this will support the cpu and memory demands of concourse module. +and update `node_groups_count` and `node_size` as below to match the Manager cluster configuration, as this will support the cpu and memory demands of the concourse module. ``` node_groups_count = { @@ -54,7 +54,7 @@ terraform apply -target=module.concourse - Login to Concourse -For this step you will need to authenticate to Concourse using your instance's local username and password. These are stored in the kubernete secret `concourse-web` in +For this step, you will need to authenticate to Concourse using your instance's local username and password. These are stored in the kubernete secret `concourse-web` in the `concourse` namespace, and can be obtained using the `cloud-platform` cli tool: ``` @@ -89,7 +89,7 @@ fly --target david-test1 set-pipeline \ --config pipelines/david-test1/main/plan-environments.yaml ``` -Repeat this command whenever you make changes to the pipeline yaml file. +Repeat this command whenever you make changes to the pipeline's yaml file. - Set up secrets diff --git a/runbooks/source/external-dns-error.html.md.erb b/runbooks/source/external-dns-error.html.md.erb index ca38a6bb..fec9f318 100644 --- a/runbooks/source/external-dns-error.html.md.erb +++ b/runbooks/source/external-dns-error.html.md.erb @@ -1,17 +1,17 @@ --- title: How to Investigate External-Dns Errors weight: 217 -last_reviewed_on: 2024-04-18 +last_reviewed_on: 2024-10-22 review_in: 6 months --- # <%= current_page.data.title %> -When there are errors in external-dns logs, "ErrorsInExternalDNS" alert sent to the low priority slack channel. +When there are errors in external-dns logs, "ErrorsInExternalDNS" alerts are sent to the low priority slack channel. ## Troubleshooting -If we see an ErrorsInExternalDNS alert in low-priority-alerts, this is usually due to a external-dns have an issue to write records to Route-53 for a particual hosted zones. +If we see an ErrorsInExternalDNS alert in low-priority-alerts, this is usually because an external-dns is unable to write records to Route-53 for a particual hosted zone. You can see errors from the external-dns pod by running: ```bash @@ -35,7 +35,7 @@ resource record set [name='cluster-thisingress.example.', type='TXT'] but it alr level=error msg="failed to submit all changes for the following zones: [/hostedzone/ABCDEFGHIJKLMN /hostedzone/NMLKJIHGFEDCBA]" ``` -Identify the ingress causing the error in question and fix the ingress depending upon the error message. We may need to inform users to update their ingress causing the error. +Identify the ingress causing the error in question and fix the ingress depending on the error message. We may need to inform users to update the ingress causing the error. Follow this [troubleshoot guide](https://aws.amazon.com/premiumsupport/knowledge-center/troubleshoot-route53-resource-record/) for common error messages to determine the error's cause and how to troubleshoot it. @@ -54,4 +54,4 @@ level=error msg="records retrieval failed: failed to list hosted zones: Throttli level=error msg="failed to list resource records sets for zone /hostedzone/BLAH_MOX: Throttling: Rate exceeded\n\tstatus code: 400, request id: 0-9216-435fblah" ``` -There isn't much we can do about being rate limited, acknowledge the alert. +There isn't much we can do about being rate limited; acknowledge the alert. diff --git a/runbooks/source/updating-prisoner-content-hub-waf.html.md.erb b/runbooks/source/updating-prisoner-content-hub-waf.html.md.erb index ab4a253b..1530f224 100644 --- a/runbooks/source/updating-prisoner-content-hub-waf.html.md.erb +++ b/runbooks/source/updating-prisoner-content-hub-waf.html.md.erb @@ -1,18 +1,18 @@ --- title: Updating Prisoner Content Hub WAF weight: 60 -last_reviewed_on: 2024-04-19 +last_reviewed_on: 2024-10-22 review_in: 6 months --- # Updating Prisoner Content Hub WAF -Every so often the Prisoner Content Hub require their WAF IP allowlist updating. This is a bespoke job and not fully #gitops +Every so often, the Prisoner Content Hub require their WAF IP allowlist updating. This is a bespoke job and not fully #gitops -> Note: When adding an IP range e.g. `/28` it must start with the first address in the range. `10.0.0.50/28` is not valid however `10.0.0.48/28` is since it's the start of the block. +> Note: When adding an IP range e.g. `/28`, it must start with the first address in the range. `10.0.0.50/28` is not valid, however `10.0.0.48/28` is since it's the start of the block. 1. Log in to AWS Console -2. Goto Parameter Store - ensure you're in eu-west-2 +2. Go to Parameter Store - ensure you're in eu-west-2 3. Search for "prisoner" 4. Select the correct `ip-allow-list` parameter store (per environment) 5. Add or remove the IP address from the JSON object and save diff --git a/runbooks/source/upgrade-AMI-version.html.md.erb b/runbooks/source/upgrade-AMI-version.html.md.erb index 6b579988..683da5b8 100644 --- a/runbooks/source/upgrade-AMI-version.html.md.erb +++ b/runbooks/source/upgrade-AMI-version.html.md.erb @@ -1,7 +1,7 @@ --- title: Upgrade AMI Version weight: 53 -last_reviewed_on: 2024-04-22 +last_reviewed_on: 2024-10-22 review_in: 6 months --- diff --git a/runbooks/source/upgrade-eks-terraform-module.html.md.erb b/runbooks/source/upgrade-eks-terraform-module.html.md.erb index 1c1c6293..f7f87d41 100644 --- a/runbooks/source/upgrade-eks-terraform-module.html.md.erb +++ b/runbooks/source/upgrade-eks-terraform-module.html.md.erb @@ -1,7 +1,7 @@ --- title: Upgrade EKS Terraform Module weight: 53 -last_reviewed_on: 2024-04-22 +last_reviewed_on: 2024-10-22 review_in: 6 months ---