The figure below calls out
- The netfilter hooks
- The order of table traversal
Archana Shinde amshinde
amshinde
/ iptables-cheatsheet.md
Created
November 9, 2018 22:43
— forked from mcastelino/iptables-cheatsheet.md
iptables-cheatsheet
amshinde
/ mlgre.md
Created
November 12, 2018 19:36
— forked from mcastelino/mlgre.md
Setting up a overlay network using point to multi-point GRE tunnels
Typically VxLAN is used to setup a point to multi-point overlay networks. However GRE also offers a similar capability which is often not heavily used. This document calls out how to setup an effient overlay mesh network to link up multiples sits together using multi point GRE tunnels.
The setup used in this case assumes there is a need to link three sites hosting three different subnets together using a simple overlay mesh network.
amshinde
/ side-by-side-diff.md
Created
November 12, 2018 19:38
#side by side terminal diff
git difftool -y -x "sdiff -w $COLUMNS" | less
curl -O https://storage.googleapis.com/golang/go1.11.2.linux-amd64.tar.gz
tar -xvf go1.11.2.linux-amd64.tar.gz
sudo mv go /usr/local
sudo ln -sf /usr/local/go/bin/go /usr/bin/go
vim ~/.bashrc
export GOPATH=$HOME/go
export PATH=$PATH:/usr/local/go/bin:$GOPATH/bin
amshinde
/ gist:98365ac2c715b917b467ee5a543534b5
Created
March 9, 2019 02:34
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sudo -E qemu-lite-system-x86_64 -machine pc,accel=kvm,kernel_irqchip -cpu host -m 2G,slots=3,maxmem=16G -object memory-backend-file,id=mem,size=2G,mem-path=/dev/shm,share=on -numa node,memdev=mem -device virtio-serial-pci,id=serial0 -device virtio-blk-pci,drive=image -drive if=none,id=image,file=kata-containers.img,format=raw -kernel vmlinuz.container -append 'console=ttyS0 console=hvc0 iommu=false root=/dev/vda1 rw rootfstype=ext4 data=ordered rcupdate.rcu_expedited=1 tsc=reliable no_timer_check loglevel=7 apic=verbose noapic noapictimer virtio_mmio.device=0x200@0x540000000:14' -smp 2,maxcpus=4 -device virtconsole,chardev=charconsole0,id=console0 -chardev stdio,id=charconsole0 -monitor telnet:127.0.0.1:55555,server,nowait -device isa-debugcon,iobase=0x402,chardev=debugcon -chardev file,path=/tmp/debug-log,id=debugcon -device isa-debugcon,iobase=0x3f8,chardev=serialcon -chardev file,path=/tmp/serial-log,id=serialcon | |
| [sudo] password for amshinde: | |
| [ 0.223920] brd: module loaded | |
| [ 0.226454] |
amshinde
/ K8s-Raw-Block-Kata.md
Last active
December 29, 2020 03:55
K8s Raw Block storage support with Kata
Beta support for raw block volumes is available in K8s 1.13: https://kubernetes.io/blog/2019/03/07/raw-block-volume-support-to-beta/
The following in-tree volumes types support raw blocks:
- AWS EBS
- Azure Disk
- Cinder
amshinde
/ guest-time-sync.md
Last active
April 4, 2019 01:10
Resources for syncing Guest time with host
amshinde
/ slirp4netns.md
Created
March 27, 2019 18:12
— forked from mcastelino/slirp4netns.md
slirp4netns: How does it work
amshinde
/ remap_and_post.md
Created
March 27, 2019 18:14
— forked from mcastelino/remap_and_post.md
Interrupt Remapping and posted interrupt notes
https://software.intel.com/sites/default/files/managed/c5/15/vt-directed-io-spec.pdf
• Legacy pin interrupts
— For devices that use legacy methods for interrupt routing (such as either through direct wiring to the I/OxAPIC input pins, or through INTx messages), the I/OxAPIC hardware generates the interrupt-request transaction. To identify the source of interrupt requests generated by I/OxAPICs, the interrupt-remapping hardware requires each I/OxAPIC in the platform (enumerated through the ACPI Multiple APIC Descriptor Tables (MADT)) to include a unique 16-bit source-id in its requests. BIOS reports the source-id for these I/OxAPICs via ACPI