Amet Umierov Amet13
Amet13
/ filebeat.yaml
Created
June 9, 2022 09:12
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| apiVersion: beat.k8s.elastic.co/v1beta1 | |
| kind: Beat | |
| metadata: | |
| name: filebeat | |
| namespace: monitoring | |
| spec: | |
| type: filebeat | |
| version: 8.2.0 | |
| elasticsearchRef: |
Amet13
/ kibana.yaml
Created
June 9, 2022 09:10
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: kibana.k8s.elastic.co/v1 | |
| kind: Kibana | |
| metadata: | |
| name: kibana-logging | |
| namespace: monitoring | |
| spec: | |
| version: 8.2.2 | |
| count: 1 | |
| elasticsearchRef: | |
| name: elasticsearch-logging |
Amet13
/ elasticsearch.yaml
Created
June 9, 2022 09:08
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This sample sets up an Elasticsearch cluster with 3 nodes. | |
| apiVersion: elasticsearch.k8s.elastic.co/v1 | |
| kind: Elasticsearch | |
| metadata: | |
| name: elasticsearch-logging | |
| namespace: monitoring | |
| spec: | |
| version: 8.2.0 | |
| nodeSets: | |
| - name: default |
Amet13
/ zaborona.help
Last active
March 24, 2022 10:21
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Connect Keenetic router to zaborona.help | |
| # https://github.com/zhovner/zaborona_help/wiki/Zyxel-Keenetic-(new-web-interface) | |
| # https://ntc.party/t/zyxel-keenetic-ultra/698/9 | |
| nobind | |
| client | |
| remote vpn.zaborona.help | |
| remote-cert-tls server | |
| cipher AES-128-CBC | |
| setenv opt ncp-ciphers AES-128-GCM |
Amet13
/ terraform.tfvars
Created
October 16, 2021 13:24
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ... | |
| vpn_client_cidr_block = "10.0.192.0/19" | |
| vpn_dns_servers = ["1.1.1.1", "8.8.8.8"] |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # SAML providers from metadata documents downloaded before | |
| resource "aws_iam_saml_provider" "vpn" { | |
| name = "vpn" | |
| saml_metadata_document = file("${path.module}/files/VPN_ins-mymetadata-file.xml") | |
| } | |
| resource "aws_iam_saml_provider" "vpn_self_service" { | |
| name = "vpn-self-service" | |
| saml_metadata_document = file("${path.module}/files/VPN Self-Service_ins-mymetadata-file.xml") | |
| } |
Amet13
/ generate_certs
Created
October 16, 2021 13:11
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ git clone https://github.com/OpenVPN/easy-rsa.git | |
| $ cd easy-rsa/easyrsa3 | |
| $ ./easyrsa init-pki | |
| $ ./easyrsa build-ca nopass | |
| ... | |
| Common Name (eg: your user, host, or server name) [Easy-RSA CA]:vpn.domain.org | |
| $ ./easyrsa build-server-full vpn-aws-server nopass | |
| $ ./easyrsa build-client-full vpn-aws-client nopass |
Amet13
/ copy_certs
Last active
October 16, 2021 13:10
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ mkdir ~/.vpn-assets/ | |
| $ cp pki/ca.crt ~/.vpn-assets/ | |
| $ cp pki/private/ca.key ~/.vpn-assets/ | |
| $ cp pki/issued/vpn-aws-*.crt ~/.vpn-assets/ | |
| $ cp pki/private/vpn-aws-*.key ~/.vpn-assets/ | |
| $ aws --profile common \ | |
| --region eu-central-1 \ | |
| acm import-certificate \ | |
| --certificate fileb://$HOME/.vpn-assets/vpn-aws-server.crt \ |
Amet13
/ terraform.tfvars
Created
October 16, 2021 12:43
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Add to terraform.tfvars | |
| ... | |
| vpc_dev_accepter_id = "vpc-12345678" |
Amet13
/ vpc_peering.tf
Last active
October 16, 2021 12:39
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| module "common_dev_peering" { | |
| source = "grem11n/vpc-peering/aws" | |
| version = "4.0.1" | |
| providers = { | |
| aws.this = aws | |
| aws.peer = aws.dev | |
| } | |
| this_vpc_id = module.vpc.vpc_id |
NewerOlder