This is a fork from the original CoreOS cloud formation template. It adds two EBS disks of 30G, mounted to /var/lib/docker.
This is intended to be used with an m3.large machine which comes with 30G of SSD.
The reason I add two of 30 and not one of 60 is because a BTRFS limitation.
You can use the "btrfs add" approach in the units to create a BTRFS raid.
| { | |
| "AWSTemplateFormatVersion": "2010-09-09", | |
| "Description": "CoreOS on EC2: http://coreos.com/docs/running-coreos/cloud-providers/ec2/", | |
| "Mappings" : { | |
| "RegionMap" : { | |
| "ap-northeast-1" : { | |
| "AMI" : "ami-19fba518" | |
| }, |
| #cloud-config | |
| coreos: | |
| update: | |
| reboot-strategy: best-effort | |
| units: | |
| - name: etcd.service | |
| command: start | |
| - name: fleet.service | |
| command: start | |
| hostname: slickle |
| #!/bin/sh | |
| # Setup encrypted disk image | |
| # For Ubuntu 14.04 LTS | |
| CRYPTFS_ROOT=/cryptfs | |
| apt-get update | |
| apt-get -y upgrade | |
| apt-get -y install cryptsetup |
I hereby claim:
To claim this, I am signing this object:
JSON
Get Homebrew installed on your mac if you don't already have it
Install highlight. "brew install highlight". (This brings down Lua and Boost as well)
| Feature: SSL Renewal Checks | |
| We have a large list of SSL certificates | |
| So that none of those expire | |
| We can run a check for those soon expiring | |
| Scenario Outline: Check SSL certificate expiration | |
| When I sslcheck <website> | |
| Then the SSL certificate should have at least 30 days remaining | |
| Examples: | |
| | website | |
| { | |
| "Statement": [ | |
| { | |
| "Sid": "PackerSecurityGroupAccess", | |
| "Action": [ | |
| "ec2:CreateSecurityGroup", | |
| "ec2:DeleteSecurityGroup", | |
| "ec2:DescribeSecurityGroups", | |
| "ec2:AuthorizeSecurityGroupIngress", | |
| "ec2:RevokeSecurityGroupIngress" |
