1. 15 Apr, 2022 1 commit
    • Kristian Klausen's avatar
      Avoid single point-of-failure for our GeoIP domain · aa359082
      Kristian Klausen authored
      We don't want mirror.pkgbuild.com's DNS server to be a
      single-point-of-failure, so this commit adds multiple authoritative DNS
      servers for the zone. The extra DNS servers are run on the geomirror
      The _acme-challenge zone, used for obtaining certificates, is run solely
      on mirror.pkgbuild.com's DNS server, to avoid syncing DNS records
      between the servers (KISS).
  2. 14 Apr, 2022 1 commit
  3. 13 Apr, 2022 5 commits
    • Evangelos Foutras's avatar
      geoipupdate: download dbs on install/config change · d303a4ca
      Evangelos Foutras authored
      We want the GeoIP databases to be ready for use by software installed
      by dependant roles; run geoipupdate when it's installed or configured.
    • Evangelos Foutras's avatar
    • Evangelos Foutras's avatar
      Enable certbot_dns_support for geo mirrors only · 64ec52ca
      Evangelos Foutras authored
      mirror.pkgbuild.com doesn't need it.
    • Kristian Klausen's avatar
      Merge branch 'geomirror' into 'master' · 1eafe451
      Kristian Klausen authored
      Add GeoIP domain for our sponsored mirros
      Closes #101
      See merge request !522
    • Kristian Klausen's avatar
      Add GeoIP domain for our sponsored mirros · 9f65f99c
      Kristian Klausen authored
      We had a GeoIP mirror in the past based on nginx and its GeoIP module,
      but it didn't perform very well, due to the high latency (asking a
      central server for the package and then redirected to the closest
      One of the reasons for offering this service, is so we can relieve
      mirror.pkgbuild.com which is burning a ton of traffic (50TB/month),
      likely due to it being the default mirror in our Docker image. Another
      reason is so we can offer a link to our arch-boxes images in libosinfo
      (used by gnome-boxes, virt-install and virt-manager), with good enough
      performance for most users.
      This time we take a different approach and use a DNS based solution,
      which means the latency penalty is only paid once (the first DNS
      request). The downside is that the mirrors must have a valid certificate
      for the same domain name, which makes using third-party mirrors a
      challenge. So for now, we are just using the sponsored mirorrs
      controlled by the DevOps team.
      Fix #101
  4. 12 Apr, 2022 2 commits
  5. 11 Apr, 2022 4 commits
  6. 10 Apr, 2022 4 commits
  7. 09 Apr, 2022 15 commits
  8. 05 Apr, 2022 6 commits
  9. 29 Mar, 2022 1 commit
  10. 28 Mar, 2022 1 commit