Configure prod rhods for ope courses (Jan 18 ope course start date) #361
Comments
dystewart
changed the title
|
From a discussion with @hakasapl I think the hardware is available. Can you say more about how we plan to configure it and the expected number of nodes? |
|
@msdisme As far as configuration, we will be able to mirror much of what we've done with the test cluster, minus a few unnecessary operators. The big difference is that we will need to set up networking so that the cluster is available externally, much like prod. We will also need Ceph set up for this cluster as well, since the notebooks all require a pvc As for number of nodes, since this cluster is just for OCP/rhods:
This course will have 300 or more students, and we have to be prepared for all students logging in and spinning up notebooks concurrently. |
|
Dropping the prob rebuild doc here since much of the process will look the same: https://github.com/nerc-project/nerc-runbooks/blob/main/docs/nerc-ocp-prod-rebuild.md |
|
@hakasapl what hardware would you suggest for this? |
|
Some notes from a discussion with Heidi:
|
|
@naved001 since racks 1&2 have been added to ESI are we able to provide @dystewart access to the nodes he needs via ESI? If so can we start by offering him 3 FC430s and 5 FC830s? |
|
I have allocated the following nodes to the ESI project FC430: FC830: |
|
@dystewart please confirm you are able to access the allocated hardware. |
|
From Orran email: I just spoke to Erwan, and it appears like there is a straightforward path forward. So the issue for classes is that the project concept gives all users in a project access to all of the containers of all the other users in that project. There is a default project, I think he said jupyter something, where if you use the tile (see below), rather than the project interface, users containers are spun up isolated from each other in that project. What we can do is readily turn off the project functionality for any user in a class, and if they use the tile to spin up containers, everything will work like it always did on AWS. Turns out, that for NERC, the “launch application” link is missing if you look below. We must have done something special to turn that off. So, we also have to re-enable “launch application” on the NERC tile for RHODS. Description automatically generated Research users would still use the normal project interface. Classes would use the tile feature. The PODs created will have the user name in them, so we would eventually need to map back from a user to a course; but that is secondary for the short term. So, we need to do two things: I think we can/should discuss proper multi-tenancy support in RHODS longer term, but, as far as I can tell, this immediately solves our problems with the classes for at least the near term. It would be nice to have per-class resource management controls…. But we can worry about that later. |
|
@dystewart please review the notes above. |
|
Enables rhods notebook controller: OCP-on-NERC/nerc-ocp-config#338 |
dystewart
changed the title
This will re-enable the default functionality of the rhods notebook controller in the prod cluster. As a side effect of enabling, the ability to launch a notebook from the jupyter tile will be restored Addresses: nerc-project/operations#361
|
Update default jupyter notebook pvc size in rhods-notebooks: OCP-on-NERC/nerc-ocp-config#339 |
|
@hpdempsey I heard you have an idea as to what you think we should do with the 8 nodes that we prepped for the initial incarnation of this issue. What do you think would be a good use for that cluster of nodes? |
I think we should create a new issue for this, if we plan to use the nodes for something else, and we can close this one since ope is in prod |
|
We will leave these nodes available for now and if we get a new project we need them for we can open a new issue. |
For Orran's course that will be utilizing rhods we will need to stand up a new OCP cluster for the Spring semester. Our prod rhods does provide the user experience that ope are looking for due to the configuration of the rhods install in prod. See this slack thread for more specifics.
For more info on motivations behind doing this see this thread I've opened in the rhods redhat slack: thread
In short, this will greatly simplify the student experience for this course since we can curate the rhods install to the needs of the students, which is something we cannot do in the current prod install on a namespace basis.
To be clear this will not eliminate the ability for students to see each other's notebooks and log into them, though that level of security is possible by creating and granting access to a datascience project per student (which is not really feasible with the number of student we will be hosting). This however does grant us the ability to allow student to launch their notebooks through the jupyter tile in rhods, without seeing/clicking through and other notebooks in the process.
The first step here is to find some hardware and get OCP installed there ASAP since this course will be going like Jan. 18
The text was updated successfully, but these errors were encountered: