isle/tasks/remove-host/by-host.md

---
type: task
after:
  - ./watch-hosts.md
---

When is removed by the host itself, the host's daemon should modify its file in
the common bucket, changing the HostConfigured section to indicate that the host
is no longer present in the network.

All other hosts in the network, when a host is updated with an indication that
it's no longer present in the network, should add that host's certificate
fingerprint to the `pki.blocklist` of their local nebula instance.

The `pki.disconnect_invalid` boolean should always be true in the nebula config.
More work on task planning and organization 2024-12-29 19:59:15 +00:00			`---`
			`type: task`
			`after:`
			`- ./watch-hosts.md`
			`---`

			`When is removed by the host itself, the host's daemon should modify its file in`
			`the common bucket, changing the HostConfigured section to indicate that the host`
			`is no longer present in the network.`

			`All other hosts in the network, when a host is updated with an indication that`
			`it's no longer present in the network, should add that host's certificate`
			fingerprint to the `pki.blocklist` of their local nebula instance.

			The `pki.disconnect_invalid` boolean should always be true in the nebula config.