Skip to content

Instantly share code, notes, and snippets.

View knisbet's full-sized avatar

Kevin Nisbet knisbet

12 followers · 1 following
  • Mississauga, On
View GitHub Profile
@knisbet
knisbet / central.yaml
Created May 21, 2020 07:09
WireGuard connecting kubernetes services between multiple clusters
apiVersion: apps/v1
kind: Deployment
metadata:
name: wg-cluster1-cluster2
namespace: wormhole
labels:
app: wg-cluster1-cluster2
spec:
# Because we're sharing secrets, we should only deploy one replica, otherwise WireGuard
@knisbet
knisbet / README.md
Last active June 26, 2023 11:02
gravity-firewalld isolation

For testing, the default DMZ zone was used as a basis for testing

# Set DMZ interface to eth0
firewall-cmd --zone=dmz --change-interface=eth0 --permanent
firewall-cmd --reload

Assumptions:

  • localhost isn't restricted
  • subnet all members belong to is 10.162.0.0/20 (this CIDR needs to be substitued for the one running the cluster)
@knisbet
knisbet / debug-gravity-network.sh
Last active November 26, 2019 21:07
Gravity network debug
#!/bin/bash
# Copyright 2019 Gravitational, Inc.
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
# http://www.apache.org/licenses/LICENSE-2.0
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
@knisbet
knisbet / network-monitor
Last active September 12, 2019 05:08
# Copyright 2019 Gravitational, Inc.
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
# http://www.apache.org/licenses/LICENSE-2.0
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
@knisbet
knisbet / keybase.md
Created April 30, 2019 02:26

Keybase proof

I hereby claim:

  • I am knisbet on github.
  • I am knisbet (https://keybase.io/knisbet) on keybase.
  • I have a public key ASCWEPFbGG7von-sUGnPaxX-73w2SUr5BMlvxfF9W2cl8Ao

To claim this, I am signing this object:

@knisbet
knisbet / kubernetes.repo
Created August 15, 2017 03:11
Kubernetes repo file
[kubernetes]
name=Kubernetes
baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
enabled=1
gpgcheck=1
repo_gpgcheck=1
gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg
https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg