| #!/bin/sh | |
| # Copyright (C) 2020 Michel Stam <michel@reverze.net> | |
| # Copyright (C) 2021 Hung-I Wang <whygowe@gmail.com> | |
| # | |
| # The script is adatped from: | |
| # https://github.com/ndilieto/uacme/blob/5edec0eea1bcf6f454ec1787297c2408c2f2e97a/nsupdate.sh | |
| # | |
| # Licensed under the the GNU General Public License <http://www.gnu.org/licenses/>. | |
| # The script is meant to be used as a hook script of uacme to update TXT records for acme challenges. |
Install the operator using the Manual approval strategy, see the attached screenshot.
An install plan has been created but not executed as it has not been approved:
oc get installplan -n openshift-logging
NAME CSV APPROVAL APPROVED
install-dq68d clusterlogging.4.5.0-202007012112.p0 Manual false
| #!/usr/bin/env zsh | |
| #=========================================================================== | |
| # * INFO | |
| # | |
| # macOS Preferences Defaults | |
| # By Christopher Allen @ChristopherA https://github.com/christophera/ | |
| # My most basic macOS preferences, in this gist to make it easy to load on | |
| # multiple machines and VMs. Ideally runs on all macOS versions since Yosemite, |
Stangri's VPN Policy Routing package is a mainstay of my OpenWRT builds. It works great for IPv4, but I couldn't, for the life of me, get it working with IPv6. Instead, I had to faux-implement PBR as follows.
My VPN provider only gave me a single IP address with a /128 prefix, so I was forced to use NAT6. This left me with a stanza in my firewall config that looks like this; note the masq6 option
config zone
option name 'wan_vpn'
option input 'REJECT'
option output 'ACCEPT'
option forward 'REJECT'
| curl https://mirror.openshift.com/pub/openshift-v4/dependencies/rhcos/4.2/4.2.0/rhcos-4.2.0-x86_64-vmware.ova -o rhcos-4.2.0-x86_64-vmware.ova | |
| govc import.ova -name=rhcos-4.2.0-x86_64-vmware ./rhcos-4.2.0-x86_64-vmware.ova | |
| export GOVC_URL='vsphere.server.local | |
| export GOVC_USERNAME='admin@vsphere.local' | |
| export GOVC_PASSWORD='password | |
| export GOVC_INSECURE=1 | |
| export GOVC_NETWORK='NETWORK' |
The following describes how to setup Portworx security with a single token. The goal is for users to be authenticated by Kubernetes, then have a Kubernetes to Portworx token used by all users. This model protects the storage system from unwanted access from outside Kubernetes.
The following is based on Portworx 2.1.x with security.
The following describes how to setup Portworx security with a single token. The goal is for users to be authenticated by Kubernetes, then have a Kubernetes to Portworx token used by all users. This model protects the storage system from unwanted access from outside Kubernetes.
The following is based on Portworx 2.2 with security and CSI.
USB modem - Huawei E3372h-153/E3372s-153 (in StickMode; non-HiLink)
Firmware versions beginning with 21.xxx.xx.xx.xx NOT 22.xxx.xx.xx.xx
Router running OpenWRT; I use:
Convert the ISO to UDRW format. Note: the names destination and source are used for clarification. The name of the destination does not matter.
$ hdiutil convert -format UDRW -o destination.img source.iso
Reading CCCOMA_X64FRE_EN-US_DV9 (Apple_UDF : 0)…
...............................................................................
Elapsed Time: 11.058s
| # Self-signed server certificates | |
| Strongswan 5.6.2 | |
| Mac OS X 10.14.2 / Windows 7 / Windows 10 | |
| Without doing anything MacOS X VPN error: User Authentication failed. | |
| After adding ca.crt and setting IP Security (IPSec) to "Always Trust", VPN connection works. | |
| After adding ca.crt also works for Windows 7 and Windows 10. | |
| # CA |