https://github.com/coreos/coreos-kubernetes/blob/master/Documentation/kubernetes-networking.md
*Master node(s):*
TCP 6443* Kubernetes API Server
- Initializes cluster master node:
kubeadm init --apiserver-advertise-address $(hostname -i)- Initialize cluster networking:
abdennour
/ authentication.sh
Last active
June 15, 2019 13:58
Add New Kubernetes User with Role biding
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Usage: $0 myuser | |
| k_user=${1} | |
| #... | |
| # 1. Step one: This new User generate a private key | |
| openssl genrsa -out ${k_user}.pem 2048 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| brew install nginx | |
| # Docroot is: /usr/local/var/www | |
| # The default port has been set in /usr/local/etc/nginx/nginx.conf to 8080 so that | |
| # nginx can run without sudo. | |
| # nginx will load all files in /usr/local/etc/nginx/servers/. | |
| # To have launchd start nginx now and restart at login: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # https://superuser.com/a/802544/217352 | |
| # http://mywiki.wooledge.org/BashFAQ/050#I_only_want_to_pass_options_if_the_runtime_data_needs_them |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| yum install -y java-1.8.0-openjdk-devel | |
| yum install -y wget | |
| wget -O /etc/yum.repos.d/jenkins.repo https://pkg.jenkins.io/redhat/jenkins.repo | |
| rpm --import https://pkg.jenkins.io/redhat/jenkins.io.key | |
| yum install -y jenkins | |
| systemctl enable jenkins | |
| systemctl start jenkins |
To provide software in the form of Docker Images, it requires a build system and an infrastructure that creates the images as part of a Continuous Integration and, if necessary, stores them in a Docker Registry. For open source projects there are offers in the cloud, from Travis CI to build on Dockerhub itself. For in-house development, the infrastructure for the build is often called Jenkins, and with good reason. To install a Jenkins - whether for the whole company, the team or locally for testing - there are many ways.
An installation of operating system packages or ZIP archives is one possibility, but leaves many things open (eg the Java version) and may depend on the operating system. Obviously - and also very trendy - is starting Jenkins itself as a Docker container. Starting Jenkins in a container is easy. It is possible to run Docker in a container, but it does not matter which way it is connected to some configuration.
jenkins_in_docker_for_docker Jenkins in the container accesses the Docker Execut
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| kubectl get po --all-namespaces --field-selector 'status.phase==Failed' -o json | kubectl delete -f - | |
| kubectl get po --all-namespaces --field-selector 'status.phase==Evicted' -o json | kubectl delete -f - | |
| kubectl get po --all-namespaces --field-selector 'status.phase==Pending' -o json | kubectl delete -f - |
abdennour
/ df_k8s_nodes.sh
Last active
September 7, 2019 18:15
Check K8s Nodes Disk Space without SSH
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cat <<EOF | kubectl apply -f - | |
| apiVersion: extensions/v1beta1 | |
| kind: DaemonSet | |
| metadata: | |
| name: disk-checker | |
| labels: | |
| tier: monitoring | |
| app: disk-checker | |
| version: v1 | |
| spec: |