Skip to content

Instantly share code, notes, and snippets.

View egeneralov's full-sized avatar

Eduard Generalov egeneralov

27 followers · 16 following
View GitHub Profile
@egeneralov
egeneralov / manual-strongswan-lxc-over-digitalocean.sh
Created December 18, 2019 18:50
# =================================================================================================================================================================
# all
echo "1" > /proc/sys/net/ipv4/ip_forward
apt-get update -q
apt-get install -yq strongswan lxc
# =================================================================================================================================================================
# node1
@egeneralov
egeneralov / ansible-sysctl.yml
Created December 26, 2019 16:58
---
- hosts: all
gather_facts: no
vars:
sysctl:
vm.swappiness: 0
net.ipv4.tcp_wmem: 4096 65536 33554432
net.core.netdev_max_backlog: 262144
net.ipv4.tcp_no_metrics_save: 1
@egeneralov
egeneralov / lir-from-running-system.sh
Created December 28, 2019 04:52
#!/bin/sh -xe
# backup
cp /usr/share/initramfs-tools/scripts/local{,.orig}
cp /etc/fstab{,.orig}
# prepare
echo 'none / tmpfs defaults 0 0' > /etc/fstab
# echo 'none / tmpfs defaults,noatime,nodiratime,discard 0 0' > /etc/fstab
curl -s https://gist.githubusercontent.com/egeneralov/89f6294f5cdfabffc9c15d9fa9bf14ba/raw/f4cf9c786ef818c333a2e5d0c10401b1706ab933/local.patch | patch -p0 /usr/share/initramfs-tools/scripts/local
@egeneralov
egeneralov / kind.sh
Created January 22, 2020 04:25
kind delete cluster --name kind
cat <<EOF | kind create cluster --config=-
kind: Cluster
apiVersion: kind.x-k8s.io/v1alpha4
networking:
apiServerAddress: "0.0.0.0"
apiServerPort: 6443
@egeneralov
egeneralov / docker-compose.yml
Last active March 8, 2020 09:45
index lifecycle management example
version: '2.2'
services:
kibana:
image: docker.elastic.co/kibana/kibana:7.6.0
environment:
SERVER_NAME: 127.0.0.1
ELASTICSEARCH_URL: http://elasticsearch:9200/
ports:
- 5601:5601
logging:
@egeneralov
egeneralov / dhcpd_leases.go
Created March 28, 2020 20:52
dhcpd_leases golang parser example
package main
import (
"encoding/json"
"strings"
"bufio"
"fmt"
"os"
)
@egeneralov
egeneralov / k8s rbac user sample.md
Last active May 12, 2020 21:38

k8s example rbac for sysadmin

Just for exclude mistake like kubeconfig delete ns --all.

usage

  • kubectl apply -f operator.yaml
  • bash -xe kubeconfig.sh
  • kubectl --kubeconfig operator-kubeconfig.yaml get ns,sa,po,hpa,rs,deploy,sts,pv,pvc,svc,ingress,secrets,ep,nodes > /dev/null
@egeneralov
egeneralov / terraform-kubernetes-scaleway-cluster-example.tg
Created May 30, 2020 16:11
# helm repo add stable https://kubernetes-charts.storage.googleapis.com
# helm repo add elastic https://helm.elastic.co
# helm repo update
# terraform apply -auto-approve -no-color -var "access_key=" -var "secret_key=" -var "organization_id="
variable "access_key" {
type = string
}
variable "secret_key" {
type = string
@egeneralov
egeneralov / ingress-geoip2-example.yaml
Created June 3, 2020 13:38
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: echoserver
labels:
app: echoserver
spec:
replicas: 3
selector:
@egeneralov
egeneralov / linux.sh
Last active April 21, 2025 22:16
linux to mikrotik ip tunnel
ip tunnel add ipip local ${linux_ip} remote ${mikrotik_ip} mode ipip
ip link set ipip up
ip addr add 192.168.3.1/30 dev ipip
iptables -t mangle -A POSTROUTING -o ipip -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
iptables -t nat -A POSTROUTING -s 192.168.3.0/30 -o ${linux_output_iface} -j MASQUERADE