Kohei Yamada koheyamada

## maintenance
error_page 500 @maintenance;

# Set Env
set $maintenance "on";

# Allow Paths
if ($uri ~ "^/exclude/") {
  set $maintenance "off";
}

## IAMポリシー
{
    "Version": "2012-10-17",
    "Statement": {
        "Effect": "Allow",
        "Action": [
            "*"
        ],
        "Resource": "*",
        "Condition": {
            "DateGreaterThan": {"aws:CurrentTime": "2018-10-01T00:00:00Z"},

## maintenance
set $maintenance "true";

if ($uri ~ "^/maintenance.html") {
  set $maintenance "false";
}
if ($uri ~ "^/exclude/") {
  set $maintenance "false";
}
if ($remote_addr ~ "xxx.xxx.xxx.xxx") {
  set $maintenance "false";

## file1.txt
$ sudo mkdir /opt/chroot
$ sudo chown root.root /opt/chroot
$ sudo mkdir /opt/sftpuser
$ sudo chown sftpuser /opt/sftpuser/data
$ sudo chmod 755 /opt/sftpuser/data

## sendmail
QUEUE=1h

## addIpToNic
$ cloudstack-api addIpToNic --nicid <Masterで利用しているNIC ID> --ipaddress <VIP>
{
  "addiptovmnicresponse": {
    "id": "********-****-****-****-************",
    "jobid": "********-****-****-****-************"
  }
}

## marathon.csv

          
            marathon
            type
            m
            region

            
              honolulu
              full
              12
              hawaii

            
              shonann
              full
              12
              kanagawa

            
              okayama
              full
              11
              okayama

            
              fukkou
              full
              10
              miyagi

            
              fuji5lake
              ultra
              4
              yamanashi

            
              yokohama
              full
              10
              kanagawa

## Policy変更
$ aws elb set-load-balancer-policies-of-listener --load-balancer-name <CLBの名前> --load-balancer-port 443 --policy-names <セキュリティポリシーの名前>

## CloudMapperの取得
$ git clone git@github.com:duo-labs/cloudmapper.git

## アクセス確認
$ aws s3 ls s3://koh3i/
2018-03-17 06:46:22       5330 SampleApp_Linux.zip
	error_page 500 @maintenance;

	# Set Env
	set $maintenance "on";

	# Allow Paths
	if ($uri ~ "^/exclude/") {
	set $maintenance "off";
	}
	{
	"Version": "2012-10-17",
	"Statement": {
	"Effect": "Allow",
	"Action": [
	"*"
	],
	"Resource": "*",
	"Condition": {
	"DateGreaterThan": {"aws:CurrentTime": "2018-10-01T00:00:00Z"},
	set $maintenance "true";

	if ($uri ~ "^/maintenance.html") {
	set $maintenance "false";
	}
	if ($uri ~ "^/exclude/") {
	set $maintenance "false";
	}
	if ($remote_addr ~ "xxx.xxx.xxx.xxx") {
	set $maintenance "false";
	$ sudo mkdir /opt/chroot
	$ sudo chown root.root /opt/chroot
	$ sudo mkdir /opt/sftpuser
	$ sudo chown sftpuser /opt/sftpuser/data
	$ sudo chmod 755 /opt/sftpuser/data
	$ cloudstack-api addIpToNic --nicid <Masterで利用しているNIC ID> --ipaddress <VIP>
	{
	"addiptovmnicresponse": {
	"id": "******----**********",
	"jobid": "******----**********"
	}
	}
marathon	type	m	region
honolulu	full	12	hawaii
shonann	full	12	kanagawa
okayama	full	11	okayama
fukkou	full	10	miyagi
fuji5lake	ultra	4	yamanashi
yokohama	full	10	kanagawa
	$ aws s3 ls s3://koh3i/
	2018-03-17 06:46:22 5330 SampleApp_Linux.zip