This script is intended to be used with the Telmate terraform provider for Proxmox
B brianonn
brianonn
/ nsenter-node.sh
Created
January 18, 2023 09:30
get a shell on a kubernetes node using just the nodename
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| set -x | |
| node=${1} | |
| nodeName=$(kubectl get node ${node} -o template --template='{{index .metadata.labels "kubernetes.io/hostname"}}') | |
| nodeSelector='"nodeSelector": { "kubernetes.io/hostname": "'${nodeName:?}'" },' | |
| podName=${USER}-nsenter-${node} | |
| kubectl run ${podName:?} --restart=Never -it --rm --image overriden --overrides ' | |
| { |
brianonn
/ prepare-ubuntu-template.sh
Last active
December 26, 2022 07:38
cleanup a standard ubuntu server install for making a cloud-init template (i.e. for VM creation template, proxmox, vmsphere, etc)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| ########################################### | |
| # | |
| # 1) install a standard ubuntu server from the server image | |
| # 2) during server installation you will have to create a user, so create a throwaway user, ie 'tmpinstall' | |
| # 3) login to that throwaway user 'tmpinstall' after the server is up | |
| # 4) install any additional packages and even any special users that you want to always | |
| # be there in your base image template | |
| # 5) when finished, become a clean root shell for the next steps: |
brianonn
/ create-kubernetes-cluster.sh
Created
July 8, 2022 00:56
stand up a kubernetes cluster on a host - shell or yaml for ansible - from
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # originally from: https://github.com/kubernetes/kubernetes/issues/106464#issuecomment-1142563656 | |
| # edited by Brian Onn https://github.com/brianonn | |
| # see also | |
| # https://kubernetes.io/docs/setup/production-environment/container-runtimes/#containerd-systemd | |
| # works on debian 10, maybe 11 ? maybe 9 ? |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # from https://stackoverflow.com/a/59835994 | |
| # also see: https://soatok.blog/2020/05/13/why-aes-gcm-sucks/ | |
| import secrets | |
| from cryptography.hazmat.primitives.ciphers.aead import AESGCM | |
| # Generate a random secret key (AES256 needs 32 bytes) | |
| key = secrets.token_bytes(32) | |
| # Encrypt a message |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: Pod | |
| metadata: | |
| name: sleep | |
| spec: | |
| containers: | |
| - name: sleep | |
| image: busybox:latest | |
| # Just spin & wait forever | |
| command: [ "/bin/sh", "-c", "--" ] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- mode: ruby -*- | |
| # vi: set ft=ruby : | |
| Vagrant.configure("2") do |config| | |
| config.vm.box = "debian/buster64" | |
| config.vm.hostname = "docker-host" | |
| config.vm.define "docker-host" | |
| config.vagrant.plugins = ['vagrant-vbguest'] | |
| config.vm.provider "virtualbox" do |vb| |
brianonn
/ setup_iptables.sh
Created
March 8, 2021 06:50
Setup iptables for a new client only host. Allows SSH in, DNS queries, NTP and outbound to HTTP and HTTPS only.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # flush and delete all existing rules and chains | |
| iptables -t filter -F | |
| iptables -t nat -F | |
| iptables -t mangle -F | |
| iptables -F | |
| iptables -t filter -X | |
| iptables -t nat -X | |
| iptables -t mangle -X |
brianonn
/ multi-vagrant.sh
Created
September 13, 2020 23:43
run a command on multiple OS'es via Vagrant on Virtualbox
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| CMD="${1:-ls -l /}" | |
| BOXES="${2:-centos/8 generic/ubuntu1804}" | |
| PROVIDER="${3:-virtualbox}" | |
| LOG="$PWD/commands.log" | |
| : > "$LOG" | |
| TMPDIR="/tmp/$RANDOM.$$" |
brianonn
/ counters.go
Created
September 12, 2020 06:13
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- mode: ruby -*- | |
| # vi: set ft=ruby : | |
| # Config Github Settings | |
| github_username = "fideloper" | |
| github_repo = "Vaprobash" | |
| github_branch = "1.4.0" | |
| github_url = "https://raw.githubusercontent.com/#{github_username}/#{github_repo}/#{github_branch}" | |
| # Because this:https://developer.github.com/changes/2014-12-08-removing-authorizations-token/ |