I hereby claim:
- I am sirkirby on github.
- I am chriskirby (https://keybase.io/chriskirby) on keybase.
- I have a public key ASBT3pQVwsN0LTNVsgsEl7AxPccPMkgR30RFMKrhK6u6nAo
To claim this, I am signing this object:
sirkirby
/ SerilogEventGridEvent.json
Last active
October 6, 2017 22:48
Example event payload generated from serilog event grid sink
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "id": "85a69262-5b1a-43e5-80d9-af6c98c7ba49", | |
| "eventType": "importComplete", | |
| "subject": "myApp/myLogic/900000", | |
| "eventTime": "2017-10-05T20:47:58.2488847Z", | |
| "data": [ | |
| { | |
| "key": "recordCount", | |
| "value": 1452 | |
| }, |
sirkirby
/ keybase.md
Created
October 16, 2017 18:49
sirkirby
/ cloudflare-tunnel-ingress.yml
Created
January 13, 2022 01:15
Cloudflare tunnel ingress rules
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| tunnel: fd1f3bb2-ca6d-4807-9e60-b5b6834d060e | |
| credentials-file: fd1f3bb2-ca6d-4807-9e60-b5b6834d060e.json | |
| originRequest: # Root-level configuration | |
| connectTimeout: 30s | |
| noTLSVerify: true | |
| ingress: | |
| # plex media server | |
| - hostname: plex.mydomain.net | |
| service: https://192.168.1.20:32400 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Unit] | |
| Description=Cloudflare Tunnel | |
| After=network.target | |
| [Service] | |
| TimeoutStartSec=0 | |
| Type=notify | |
| ExecStart=/usr/local/bin/cloudflared --config /home/chris/.cloudflared/config.yml --autoupdate-freq 24h tunnel run | |
| Restart=on-failure | |
| RestartSec=5s |
sirkirby
/ cloudflared-lb-tunnel-stack.yml
Last active
March 11, 2022 20:23
Set up two load balanced cloudflared tunnels
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| version: "3.7" | |
| configs: | |
| swarm-config: | |
| file: swarm-config.yml | |
| swarm2-config: | |
| file: swarm2-config.yml | |
| secrets: | |
| cloudflared-cert: |
sirkirby
/ cloudflared-lb-ingress.yml
Created
March 10, 2022 18:28
ingress portion of config, which includes health check endpoint
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ingress: | |
| # plex and media servers | |
| - hostname: plex.mydomain.net | |
| service: https://192.168.1.20:32400 | |
| # health check | |
| # important for up/down notifications from Cloudflare | |
| - hostname: "*" | |
| path: /check | |
| service: http_status:200 |
sirkirby
/ cloudflared-proxy-service-linux.service
Last active
January 11, 2023 15:58
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sudo nano /etc/systemd/system/cloudflared-proxy-dns.service | |
| [Unit] | |
| Description=DNS over HTTPS (DoH) proxy client | |
| Wants=network-online.target nss-lookup.target | |
| Before=nss-lookup.target | |
| [Service] | |
| AmbientCapabilities=CAP_NET_BIND_SERVICE | |
| CapabilityBoundingSet=CAP_NET_BIND_SERVICE |
sirkirby
/ cloudflared-proxy-service-linux-zerotrust.service
Last active
January 11, 2023 16:33
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Unit] | |
| Description=DNS over HTTPS (DoH) proxy client | |
| Wants=network-online.target nss-lookup.target | |
| Before=nss-lookup.target | |
| [Service] | |
| AmbientCapabilities=CAP_NET_BIND_SERVICE | |
| CapabilityBoundingSet=CAP_NET_BIND_SERVICE | |
| DynamicUser=yes | |
| ExecStart=/usr/local/bin/cloudflared proxy-dns --port 5053 --upstream "https://your-gateway.cloudflare-gateway.com/dns-query" |
sirkirby
/ cloudflared-legacy-service.service
Created
January 12, 2023 19:51
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Unit] | |
| Description=Cloudflare Tunnel | |
| After=network.target | |
| [Service] | |
| TimeoutStartSec=0 | |
| Type=notify | |
| ExecStart=/usr/local/bin/cloudflared --config /etc/cloudflared/config.yml --autoupdate-freq 24h --origincert /etc/cloudflared/cert.pem | |
| Restart=on-failure | |
| RestartSec=5s |
sirkirby
/ pi-hole-gravity-sync.bash
Created
January 12, 2023 19:54
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # primary pi-hole | |
| export GS_INSTALL=primary && curl -sSL https://gravity.vmstan.com | bash | |
| # secondary pi-hole | |
| export GS_INSTALL=secondary && curl -sSL https://gravity.vmstan.com | bash | |
| # automate sync on secondary | |
| ./gravity-sync.sh automate |