Alex Seymour axeal
axeal
/ gist:180e50207e02a7a20782c57879b60914
Last active
June 14, 2019 09:46
— forked from alena1108/gist:7902b86122b62183b35e6c33b46bce62
cert rotate
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| title: "Kubernetes certificate expiry and rotation in Rancher Kubernetes clusters" | |
| author: alex-seymour | |
| date: 2019-06-14 | |
| description: "This guide details how to rotate certificates for Rancher launched, and Rancher Kubernetes Engine CLI provisioned, Kubernetes clusters, both before expiry when certificates are still valid, and also in the event that the certificates have already expired." | |
| type: "blog" | |
| tags: [Kubernetes, RKE, Rancher, Certificates] | |
| categories: [blog] | |
| image: "/img/featured-images/featured-images_security.png" | |
| URL: /blog/2019/kubernetes-certificate-expiry-and-rotation-in-rancher-kubernetes-clusters |
axeal
/ kubelet-nodefs-imagefs.sh
Last active
April 5, 2019 15:59
— forked from superseb/kubelet-nodefs-imagefs.sh
Check kubelet nodefs/imagefs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # nodefs | |
| # OS with curl | |
| curl -sLk --cacert /etc/kubernetes/ssl/kube-ca.pem --cert /etc/kubernetes/ssl/kube-node.pem --key /etc/kubernetes/ssl/kube-node-key.pem https://127.0.0.1:10250/stats/summary | jq '.node.fs' | |
| df -B1 / | |
| # RancherOS | |
| docker run -v /opt/rke/etc/kubernetes/ssl:/etc/kubernetes/ssl:ro --net host appropriate/curl -sLk --cacert /etc/kubernetes/ssl/kube-ca.pem --cert /etc/kubernetes/ssl/kube-node.pem --key /etc/kubernetes/ssl/kube-node-key.pem https://127.0.0.1:10250/stats/summary | jq '.node.fs' | |
| df / |