Skip to content

Instantly share code, notes, and snippets.

View logan2211's full-sized avatar

Logan V logan2211

View GitHub Profile
@superseb
superseb / k3s-etcd-commands.md
Last active November 2, 2024 14:56
k3s etcd commands

k3s etcd commands

etcd

Setup etcdctl using the instructions at https://github.com/etcd-io/etcd/releases/tag/v3.4.13 (changed path to /usr/local/bin):

Note: if you want to match th etcdctl binaries with the embedded k3s etcd version, please run the curl command for getting the version first and adjust ETCD_VER below accordingly:

curl -L --cacert /var/lib/rancher/k3s/server/tls/etcd/server-ca.crt --cert /var/lib/rancher/k3s/server/tls/etcd/server-client.crt --key /var/lib/rancher/k3s/server/tls/etcd/server-client.key https://127.0.0.1:2379/version
@oxc
oxc / ipmi-updater.py
Last active November 30, 2023 09:21 — forked from dmerner/ipmi-updater.py
Supermicro IPMI certificate updater
#!/usr/bin/env python3
# vim: autoindent tabstop=4 shiftwidth=4 expandtab softtabstop=4 filetype=python
# This file is part of Supermicro IPMI certificate updater.
# Supermicro IPMI certificate updater is free software: you can
# redistribute it and/or modify it under the terms of the GNU General Public
# License as published by the Free Software Foundation, version 2.
#
# This program is distributed in the hope that it will be useful, but WITHOUT
@mahirrudin
mahirrudin / ubuntu-bionic-openldap-mysql.sh
Created June 17, 2018 15:12
OpenLDAP with MySQL Backend - Ubuntu 18.04
## installation openldap with backend mysql
sudo apt update && sudo apt upgrade -y && sudo reboot
sudo apt install mysql-server unixodbc make gcc libmysqlclient-dev unixodbc-dev groff ldap-utils
## mysql login as root
sudo mysql -u root
CREATE DATABASE ldap
CREATE USER 'ldap'@'%' IDENTIFIED BY 'S3cureP4ssw0rd$';
GRANT ALL PRIVILEGES ON ldap.* TO 'ldap'@'%';
@danilochilene
danilochilene / Instructions
Last active January 8, 2018 17:07
OVS with OSA for Pike
Enter each neutron agent container, and run the following:
ovs-vsctl add-br br-provider
ovs-vsctl add-port br-provider eth12
On each compute node, run the following:
ovs-vsctl add-br br-provider
ovs-vsctl add-port br-provider br-vlan
---
################################### Anchors ###################################
# Used more than once in inventory, an anchor keeps things dry.
vms: &vms
# MNAIO VMs
infra1:
ansible_host: 172.16.27.100
server_vm_fixed_addr: "{{ ansible_host }}"
ansible_user: root
infra2:
@halberom
halberom / 00_play.yml
Last active September 6, 2022 08:03
ansible - example of parsing a url
---
- hosts: localhost
gather_facts: False
connection: local
vars:
myvar: 'http://www.example.domain.com:9090'
tasks:
- name: not as good as a custom filter
debug:

Overview

Non-OpenStack libvirt + kvm plugged into Calico as part of platform control plane. OpenStack is too complex to manage for this workload, and using containers walks the complexity line depending on the solution.

Sources Used

  • CentOS 7.3
  • libvirt 2.0.0
  • OpenStack packages for Calico bits
    • calico-common-2.0.2-1.el7.centos.x86_64
    • calico-felix-2.0.2-1.el7.centos.x86_64
  • dnsmasq-2.72_calico1.0.0-1.el7.x86_64
@cloudnull
cloudnull / vxlan-mesh-create.sh
Last active February 3, 2024 15:51
Create a vxlan mesh on multiple hosts for multiple bridged interfaces to create isolated user networks. The primary use-case here is tenant Isolation with OpenStack Ironic.
#!/bin/bash
# Copyright 2016, Rackspace US, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
@odyssey4me
odyssey4me / 00-full-command-transcript.sh
Last active November 6, 2024 17:07
Ansible remote chroot experimentation
#!/bin/bash
# do this on localhost (deployment host)
# ensure that there's a local ssh private key
ssh-keygen -t rsa -N '' -f ~/.ssh/id_rsa
# now make sure that the public key is in the second host's authorized_keys
# then do a test ssh connection to make sure it works, and to add the host
# to known hosts
@robbat2
robbat2 / CEPH-STATICSITES-HOWTO.md
Last active March 28, 2024 17:28
Ceph staticsites config RGW static website serving & SNI

Ceph StaticSites Configuration, with HAProxy & SNI

An instructional document by Robin H Johnson [email protected]. I wrote much of the staticsites functionality of Ceph-RGW, during during late 2015 and early 2016, based on an early prototype by Yehuda Sadeh (yehudasa). It was written for usage at Dreamhost, but developed in the open for community improvement.

It is fully functional as of Jewel v10.2.3 plus PR11280 (ceph/ceph#11280). Prior to that, neither the non-CNAME nor CNAME-to-service modes will function correctly.

These configuration files represent how to quickly set up RGW+HAProxy for staticsite serving. I've tried to make them more readable, without leaving out too many details. You are strongly recommended to run a seperate RGW instance for staticsites, on a DIFFERENT outward-faciing IP than your normal instance (and in fact, certain functionality is not supported without it).

In place of using HAProxy, you could run the second rgw instance on port 80,