Skip to content

Instantly share code, notes, and snippets.

View kakoni's full-sized avatar

Karri Niemelä kakoni

79 followers · 2 following
View GitHub Profile
@kakoni
kakoni / gist:2355a853425ad905cb9b057b4f0a6bd8
Created October 8, 2019 06:27
Lifepo4 things
https://marinehowto.com/lifepo4-batteries-on-boats/
http://nordkyndesign.com
https://shop.pkys.com/Technical-Pages_ep_41.html
@kakoni
kakoni / gist:6c00fca369574fce8452364cd6ab7b3c
Created July 5, 2019 15:04
ufw and strongswan
DEFAULT_FORWARD_POLICY="ACCEPT"
# before.rules
# NAT table rules
*nat
:POSTROUTING ACCEPT [0:0]
# Allow traffic from OpenVPN client to eth0
-A POSTROUTING -s 10.8.0.0/8 -o eth0 -j MASQUERADE
COMMIT
@kakoni
kakoni / gist:f78f1b5f00d2f8aef889492acf1486f9
Created May 31, 2019 09:03
unifi site-to-site usg to linux
https://blog.ruanbekker.com/blog/2018/02/11/setup-a-site-to-site-ipsec-vpn-with-strongswan-and-preshared-key-authentication/
https://www.greyhat.dk/usg-ubiquiti-strongswan/
https://community.ubnt.com/t5/UniFi-Routing-Switching/Site-2-Site-VPN-between-USG-and-Linux-box-StrongSWAN/td-p/2386372
https://community.ubnt.com/t5/UniFi-Routing-Switching/IPsec-site-to-site-USG-gt-Cisco/m-p/2094765#M60671
@kakoni
kakoni / keybase.md
Created April 17, 2019 08:36

Keybase proof

I hereby claim:

  • I am kakoni on github.
  • I am kakoni (https://keybase.io/kakoni) on keybase.
  • I have a public key ASDaBXTVPPdT2FqgAbKwlh5-8Ysvu8Vhl8qEj8o5ft4zGgo

To claim this, I am signing this object:

@kakoni
kakoni / gist:8e24cd7eceb6b93ce3b83d594f1a13b1
Created February 7, 2019 14:16
### ex61-nvme, ubuntu 18.04 minimal, no raid. apt-get update, apt-get install postgresql
/usr/lib/postgresql/10/bin/pg_test_fsync
5 seconds per test
O_DIRECT supported on this platform for open_datasync and open_sync.
Compare file sync methods using one 8kB write:
(in wal_sync_method preference order, except fdatasync is Linux's default)
open_datasync 974.559 ops/sec 1026 usecs/op
fdatasync 957.327 ops/sec 1045 usecs/op
fsync 366.054 ops/sec 2732 usecs/op
@kakoni
kakoni / gist:9a1e962a5d2d56c4da7674daa2af3441
Last active November 6, 2018 21:23
Ilmuri
Daikin Ururu Sarara R35, Daikin CALDO XR40
Kolla
https://kvi.se/kvi-test-luftvarmepumpar/?selectAll=on&pump%5B%5D=4009&pump%5B%5D=3976&pump%5B%5D=3953&pump%5B%5D=3951&pump%5B%5D=3949&pump%5B%5D=3924&pump%5B%5D=3920
@kakoni
kakoni / gist:f21ee1953e827c9a4456cba31cc1e1bd
Last active August 30, 2018 10:56
IPtables family filter
iptables -A INPUT -p ALL -m mac --mac-source xx:xx:xx:xx:xx:xx -j blocked_access
iptables -N blocked_access #Create new chain
iptables -A blocked_access --protocol ALL #Rule all protocols
iptables -A blocked_access -m mac --mac-source xx:xx:xx:xx:xx:xx #limit by mac
iptables -A blocked_access -m time --timestart 23:00 --timestop 6:00 --days Mon,Tue,Wed,Thu,Fri,Sat,Sun #limit by time
iptables -A blocked_access -j DROP #if match, drop
https://www.digitalocean.com/community/tutorials/how-to-list-and-delete-iptables-firewall-
#thinking also limit per time
@kakoni
kakoni / gist:ff2f29ed25f0589c341d34b89cfa2bee
Created August 2, 2018 06:57
Postgres
# Roles
https://github.com/Squarespace/pgbedrock
@kakoni
kakoni / gist:854b6ffed1089a845d9d9e420a41b3f2
Created May 26, 2018 14:20
Streams
http://debezium.io/blog/2018/05/24/querying-debezium-change-data-eEvents-with-ksql/
http://sqlstream.com/5-reasons-why-spark-streamings-batch-processing-of-data-streams-is-not-stream-processing/
@kakoni
kakoni / gist:da5c927aa687b6a8d61f4578cd20f397
Last active April 27, 2018 10:50
Logstash keystore generation
# Using keytool
keytool -genkey -keyalg RSA -alias logstash -keystore keystore.jks -storepass 123pass -ext SAN=ip:1.2.3.4,ip:1.2.3.4.5 -validity 360 -keysize 2048
SAN ips are your server ips.
Also set first and lastname to ip address well. This is known as commanname and according to Internet
"here may be compatibility issues with certificates for IP addresses unless the IP address is in both the commonName and subjectAltName fields"