Consul: Feature Request: CLI command to force reaping/removal of specific nodes
Description of the Issue (and unexpected/desired result)
I am using Terraform to register nodes into Consul, then using Consul as a dynamic inventory for ansible.
When destroying and re-creating a node with Terraform, it attempts to update the Consul node with the newly assigned IP, but Consul does not update the node's IP, instead persisting the "left" state and existing metadata.
I would like a way to force the reaping of specific nodes that I know I don't want to wait around for.
Reproduction steps
Create an aws_instance and consul_node resource with Terraform.
Inspect consul members making note of the IP and the state "alive"
Taint the aws_instance and then re-apply with Terraform.
Inspect 'consul members` again, noticing that the IP has not changed, and the node is still seen as "left"
Please let me know if I can provide more context and thanks in advance!
cornfeedhobo
All 10 comments
Hi @cornfeedhobo the https://www.consul.io/docs/commands/force-leave.html command can do this. Do you end up with an old and a new node entry, or does the name change too?
slackpad
on 2 May 2017
@slackpad Howdy! Thanks for taking a look at this. force-leave does not do what I am looking for (unless I am missing something).
Consul periodically tries to reconnect to "failed" nodes in case it is a network partition. After some configured amount of time (by default 72 hours), Consul will reap "failed" nodes and stop trying to reconnect. The force-leave command can be used to transition the "failed" nodes to "left" nodes more quickly.
Instead, I would like to forcibly "reap" a node at will, and not have it persist in left until automatic reaping occurs.
cornfeedhobo
on 2 May 2017
The force-leave will push it into "left" so Consul will stop trying to contact it. When you say "forcibly" do you mean that you want the node itself to exit if it's still alive, kind of thing?
slackpad
on 2 May 2017
What I mean by "forcibly", is just to bypass the wait time for reaping. In other words, if I am manually destroying an instance, I should be able to tell consul not to keep the node around in the "left" state until reaping, but rather to immediately purge/reap without waiting until the configured reaping interval.
consul force-reap <node name> would be amazing.
cornfeedhobo
on 2 May 2017
I see. We are also considering https://github.com/hashicorp/consul/issues/2982 which would let you set them to reap in some super short interval so Consul does the work and you don't have to run any special commands.
slackpad
on 2 May 2017
Yeah, I saw that and side with the viewpoint that a super short reaping interval could be dangerous to servers. My thought was that this would be a safer and less contentious change - I probably should have said as much in the initial post.
cornfeedhobo
on 2 May 2017
Sorry, I confused #2982 with a different issue. Yes my issue is nearly the same, although I still would like to have this as a CLI option.
cornfeedhobo
on 2 May 2017
+1
ebarriosjr
on 30 Nov 2018
+1
frtmelody
on 6 Mar 2019
@slackpad, would it be sufficient, given https://github.com/hashicorp/consul/blob/master/agent/consul/leader.go#L976-L979, to only reap from Serf, or should the nodes be also explicitly reaped from the catalog?
automaticgiant
on 24 Sep 2019
Related issues
atomantic
路
4Comments
wing731
路
3Comments
achille-roussel
路
4Comments
powerman
路
3Comments
darron
路
4Comments
Most helpful comment
What I mean by "forcibly", is just to bypass the wait time for reaping. In other words, if I am manually destroying an instance, I should be able to tell consul not to keep the node around in the "left" state until reaping, but rather to immediately purge/reap without waiting until the configured reaping interval.
consul force-reap <node name>would be amazing.