From 5fed1f7c1b98f3cf3cce90bafe38f43e944f3d44 Mon Sep 17 00:00:00 2001
From: Alex <caskd@420blaze.it>
Date: Mon, 6 Apr 2020 15:09:35 +0200
Subject: [PATCH] Initial plans

---
 tooling.md | 47 +++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 47 insertions(+)
 create mode 100644 tooling.md

diff --git a/tooling.md b/tooling.md
new file mode 100644
index 0000000..c2a33fa
--- /dev/null
+++ b/tooling.md
@@ -0,0 +1,47 @@
+# Tooling
+
+## Control
+- lxc _(and sub-tools)_
+
+## Building container images
+- debootstrap
+_Note: it allows importing docker rootfs's aswell, however it isn't recommended_
+
+### Base images
+- Alpine - edge
+
+### Build location
+- Servers _(prefferably)_
+- Local _(fallback)_
+
+# Setup
+
+## Initial clustering
+- Manual
+- Preseed _(needs reading and some dynamic variables, could be done via Ansible)_
+
+## Deployment
+- Manual _(automated with the help of the shell on need)_
+- Likely small use of volumes _(live migration and snapshots allow easy migration)_
+_TODO: Check if volume snapshots are a thing_
+- Limited base image modification _(especially if it doesn't need any on-disk data)_
+- Port exposure needs to be defined manually on a per container basiss using proxy devices _see: [Proxy Protocol for Proxy device in LXD](https://discuss.linuxcontainers.org/t/performance-of-the-proxy-device-compared-to-traditional-iptables-rules/2052/6)_
+- Ports can be forwarded in the firewall with DNAT aswell
+	- Containers need IPv6 endpoint in DNAT mode
+
+## Backup
+- Container/Volume snapshots
+- Eventual backup locations:
+	- Amazon S3
+	- Hetzner storage boxes
+	- Local _(occasional)_
+
+# Documenting/Testing list
+- DNS (mostly unknown)
+	- Endpoint from containers? _(/etc/resolv.conf? DHCP? Fixed?)_
+	- TLD .lxd (default)
+- Tiered networks
+	- Most likely possible with special interfaces
+	- Needs host configuration
+- Replicas
+	- Looks like it is not possible