This is how to connect to another host with your docker client, without modifying your local Docker installation or when you don't have a local Docker installation.
First be sure to enable the Docker Remote API on the remote host.
This can easily be done with a container.
For HTTP connection use jarkt/docker-remote-api.
For HTTPS connection use whiledo/docker-remote-api-tls.
| root | |
| $cert = New-SelfSignedCertificate -Type Custom -KeySpec Signature ` | |
| -Subject "CN=P2SRootCert" -KeyExportPolicy Exportable ` | |
| -HashAlgorithm sha256 -KeyLength 2048 ` | |
| -CertStoreLocation "Cert:\CurrentUser\My" -KeyUsageProperty Sign -KeyUsage CertSign | |
| Client |
| ##Connect to ACS##https://docs.microsoft.com/en-us/azure/container-service/dcos-swarm/container-service-connect | |
| ##Kubectl.exe: https://storage.googleapis.com/kubernetes-release/release/v1.9.3/bin/windows/amd64/kubectl.exe | |
| ##clientID==appId | |
| ##cleintPassword==password | |
| az login | |
| az account set --subscription "mySubscriptionID" | |
| az group create --name "myResourceGroup" --location "westus" |
| sudo apt-get update | |
| sudo apt-get install -y apt-transport-https ca-certificates | |
| sudo apt-key adv --keyserver hkp://ha.pool.sks-keyservers.net:80 --recv-keys 58118E89F3A912897C070ADBF76221572C52609D | |
| echo "deb https://apt.dockerproject.org/repo ubuntu-xenial main" | sudo tee /etc/apt/sources.list.d/docker.list | |
| sudo apt-get update | |
| #sudo apt-get install -y linux-image-extra-$(uname -r) linux-image-extra-virtual | |
| sudo apt-get install -y docker-engine | |
| #sudo apt-cache policy docker-engine | |
| #sudo apt-get install -y docker-engine=1.13.1-0~ubuntu-xenial | |
| sudo service docker start |
The sole dependency is a build of openssl for your platform. Without further due, our first step is to provide Azure with a certificate that will be used to sign client certificates. We call this the root certificate and by importing it to Azure we trust certificates signed by it. Most of the following commands will ask you to guard the output files with a passphrase, leave them empty until you have a working solution, then follow the guide again and add strong passwords when you’re asked to.
openssl genrsa -aes256 -out MyAzureVPN.key 2048
openssl req -x509 -sha256 -new -key MyAzureVPN.key -out MyAzureVPN.cer -days 3650 -subj /CN="ca_name"
Note: fix for opesssl random number issue: openssl rand -out ~/.rnd -writerand ~/.rnd
In Azure portal navigate to “Virtual Networks Gateway/Configuration/Point-to-site” and cert name and data from MyAzureVPN.cer removing '--Begin/end certificate'.
| #Login | |
| Login-AzureRmAccount | |
| #Variables | |
| $oldSubscription = Read-Host 'oldSubscriptionID' #Name of source susbcription | |
| $newSubscription = Read-Host 'newSubscriptionID' #Name of destination subscription | |
| $sourceRG = Read-Host 'sourceRG' #Name of ource Resource Group | |
| $destinationRG = Read-Host 'destinationRG' #Name of destinatino Resource Group | |
| #Get resources |
| #Login | |
| Login-AzureRmAccount | |
| #Variables | |
| $sourceRG = Read-Host 'sourceRG' #Name of source Resource Group | |
| $destinationRG = Read-Host 'destinationRG' #Name of destinatino Resource Group | |
| $Subscription = Read-Host 'SubscriptionName' #Name of Subscription | |
| #Get resources | |
| Select-AzureRmSubscription -SubscriptionName $Subscription |
(by @andrestaltz)
If you prefer to watch video tutorials with live-coding, then check out this series I recorded with the same contents as in this article: Egghead.io - Introduction to Reactive Programming.
| ## ssh connection behind proxy, requires netcat(nc) installed | |
| ssh USER@FINAL_DEST -o "ProxyCommand=nc -X connect -x PROXYHOST:PROXYPORT %h %p" |