Skip to content

Instantly share code, notes, and snippets.

View adamancini's full-sized avatar

ada mancini adamancini

36 followers · 44 following
  • Raleigh, NC
View GitHub Profile
@adamancini
adamancini / gist:14c8ee441feab69b025acc70c88db9d5
Created November 15, 2024 22:17
...
spec:
contatiners:
- env:
- name: REQUESTS_CA_BUNDLE
value: /opt/cert/bundle.pem
volumeMounts:
- mountPath: /opt/cert
name: custom-cert
subPath: cert
@adamancini
adamancini / gist:75282a67c6f6cde693ae835db87d006f
Created November 15, 2024 19:56
apiVersion: v1
kind: Deployment
metadata:
name: my-pod
spec:
containers:
- name: my-app
image: my-image
volumeMounts:
@adamancini
adamancini / gist:6abaf04bca0f81bdcbfd1b61bcdc5e0f
Last active October 28, 2024 16:26
---
apiVersion: apps/v1
kind: DaemonSet
metadata:
name: netshoot
labels:
app: netshoot
spec:
updateStrategy:
type: RollingUpdate
@adamancini
adamancini / tcpdump-calico.md
Last active October 10, 2024 14:28
Instrumented Calico VXLAN test procedure

Instrumented Calico VXLAN test procedure 

Prerequisites

  • root access is required
  • make sure you are using a sufficiently new tcpdump version that supports the -T flag.  This is the version I used for testing:
root@ada-ec-1:/home/ada# tcpdump --version
tcpdump version 4.99.1
libpcap version 1.10.1 (with TPACKET_V3)
@adamancini
adamancini / brew-bundle-brewfile-tips.md
Created February 12, 2024 18:12 — forked from ChristopherA/brew-bundle-brewfile-tips.md
Brew Bundle Brewfile Tips

Brew Bundle Brewfile Tips

Copyright & License

Unless otherwise noted (either in this file or in a file's copyright section) the contents of this gist are Copyright ©️2020 by Christopher Allen, and are shared under spdx:Creative Commons Attribution Share Alike 4.0 International (CC-BY-SA-4.) open-source license.

Sponsor

If you more tips and advice like these, you can become a monthly patron on my GitHub Sponsor Page for as little as $5 a month; and your contributions will be multipled, as GitHub is matching the first $5,000! This gist is all about Homebrew, so if you like it you can support it by donating to them or becoming one of their Github Sponsors.

@adamancini
adamancini / gist:588c2911abd229c3d98148c8a82f869b
Last active January 10, 2024 18:34
apiVersion: "cluster.kurl.sh/v1beta1"
kind: "Installer"
metadata:
name: "patch"
spec:
firewalldConfig:
firewalld: enabled
firewalldCmds:
- ["--permanent", "--add-port=22/tcp"]
- ["--zone=home", "--change-interface=eth0"]
@adamancini
adamancini / gist:d8c42a855e8935fe49370fc269d4e8e7
Created December 14, 2023 20:25
apiVersion: "cluster.kurl.sh/v1beta1"
kind: "Installer"
metadata:
name: "patch"
spec:
kotsadm:
version: "1.104.5"
@adamancini
adamancini / netshoot.yaml
Created November 17, 2023 21:01 — forked from randomvariable/netshoot.yaml
netshoot.yaml
---
apiVersion: apps/v1
kind: DaemonSet
metadata:
name: netshoot
labels:
app: netshoot
spec:
updateStrategy:
type: RollingUpdate
@adamancini
adamancini / readme.md
Created January 13, 2023 16:13
create kubernetes user certificates

Create user CSR

openssl genrsa -out user1.key 2048
openssl req -new -key user1.key -out user1.csr

Approve CSR

openssl x509 -req -in user1.csr -CA /etc/kubernetes/pki/ca.crt -CAkey /etc/kubernetes/pki/ca.key -CAcreateserial -out user1.crt -days 500
@adamancini
adamancini / secret.sh
Created October 10, 2022 17:20 — forked from divolgin/secret.sh
#!/bin/bash
set -e
bail() {
printf "${RED}$1${NC}\n" 1>&2
exit 1
}
function registry_pki_secret() {