Skip to content

Instantly share code, notes, and snippets.

View markuskont's full-sized avatar

markuskont

45 followers · 8 following
View GitHub Profile
@markuskont
markuskont / bridge.v4
Last active January 25, 2017 13:43
Generated by iptables-save v1.6.0 on Wed Jan 25 15:32:29 2017
*nat
:PREROUTING ACCEPT [4:14250]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [4:14250]
-A POSTROUTING -s 192.168.13.0/24 -o br0 -j MASQUERADE
COMMIT
# Completed on Wed Jan 25 15:32:29 2017
# Generated by iptables-save v1.6.0 on Wed Jan 25 15:32:29 2017
@markuskont
markuskont / facter2grain.py
Created January 31, 2017 15:09
Convert puppet facts to salt grains
#!/usr/bin/env python
import subprocess
from subprocess import Popen, PIPE
import json, os
def facter():
binary = "/opt/puppetlabs/puppet/bin/facter"
if os.path.isfile(binary):
output = json.loads(subprocess.Popen([binary, '-p', '-j'], stdout=PIPE, stderr=PIPE).stdout.read().rstrip('\n'))
@markuskont
markuskont / influx_check_db.py
Last active February 2, 2017 14:05
Create missing influxdb databases, users and permissions
#!/usr/bin/env python
# usage:
# ./check_grants.py -u admin -p test1234 -f influx -d '{"telegraf":{"perms":{"telegraf":"WRITE","test":"READ"},"pass":"asdasdd"},"vova":{"perms":{"test5":"WRITE","test4":"READ"},"pass":"test234"},"asd":{"perms":{"telegraf":"READ","test5": "ALL"},"pass":"asdmk"}}'
import sys, json, argparse
import requests, urllib
from requests.packages.urllib3.exceptions import InsecureRequestWarning
requests.packages.urllib3.disable_warnings(InsecureRequestWarning)
@markuskont
markuskont / kapa-smtp-email.txt
Last active February 12, 2017 12:22
var data = stream
|from()
.database('telegraf')
.retentionPolicy('autogen')
.measurement('cpu')
.groupBy('host')
.where(lambda: "cpu" == 'cpu-total')
|eval(lambda: "usage_user" + "usage_system")
.as('usage_total')
.keep()
@markuskont
markuskont / gist:bda5e4f201140143c7357a58aabe709e
Last active February 20, 2017 14:28
mkpart.sh
salt 'ceph*' cmd.run 'parted --script /dev/sdb mklabel gpt mkpart primary 1MiB 30GiB mkpart primary 30GiB 60GiB'
for i in {0..5}; do salt 'ceph-1.*' cmd.run "ceph osd out osd.$i" ; done
for i in {0..5}; do salt 'ceph-1.*' cmd.run "ceph osd down osd.$i" ; done
for i in {0..5}; do salt 'ceph-1.*' cmd.run "ceph auth del osd.$i" ; done
for i in {0..5}; do salt 'ceph-1.*' cmd.run "ceph osd crush remove osd.$i" ; done
for i in {0..5}; do salt 'ceph-1.*' cmd.run "ceph osd rm osd.$i" ; done
do salt 'ceph-1.*' cmd.run "ceph osd tree"
salt 'ceph*' cmd.run 'ceph-disk list '
salt 'ceph-*' cmd.run 'ceph-disk zap /dev/sdd; ceph-disk zap /dev/sdc'
@markuskont
markuskont / reindex.json
Created March 4, 2017 12:26
{
"source": {
"index": "suricata-1-2017.03.04",
"query": {
"term": {
"event_type": "alert"
}
}
},
"dest": {
@markuskont
markuskont / change_kafka_replica.json
Created March 13, 2017 11:20
{"version": 1, "partitions": [{"topic": "syslog", "partition": 0, "replicas": [63, 61, 62]}, {"topic": "syslog", "partition": 1, "replicas": [61, 63, 62]}, {"topic": "syslog", "partition": 2, "replicas": [62, 63, 61]}]}
@markuskont
markuskont / 01-suri-rsyslog.conf
Created March 16, 2017 12:20
module(load="omelasticsearch")
module(load="mmjsonparse")
template(name="myformat" type="list") {
constant(value="<")
property(name="pri")
constant(value=">")
property(name="timestamp" dateFormat="rfc3339")
constant(value=" ")
property(name="hostname")
@markuskont
markuskont / eval_load.tick
Last active April 3, 2017 06:49
var warn_load1 = 2
var warn_load5 = 1
var warn_load15 = 0.5
var crit_load1 = 4
var crit_load5 = 1.5
var crit_load15 = 1
var period = 1m
var every = 1m
@markuskont
markuskont / add_roles.py
Last active September 5, 2017 08:11
#!/usr/bin/env python3
from os import listdir
from os import path
import yaml
role = 'logs'
base_dir = '/var/cache/salt/master/minions'
minions_dirs = listdir(base_dir)