- Generate a StackRox central bundle for secondary central
- Make sure the version is the same as your existing central
roxctl generate ...
- Save the existing TLS certs from your existing StackRox Central cluster
kubectl get secret central-tls -n stackrox -o yaml --export > ./tls-secret.yaml
- Copy the saved kubernetes secret object to your newly generate bundle
cp tls-secret.yaml ./central-bundle/central/
- Deploy seconday central
- Backup existing central
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
apiVersion: v1 | |
kind: ConfigMap | |
metadata: | |
name: tkg-variables-v1.2.0 | |
namespace: tkg-system | |
data: | |
variables: | | |
- name: TKR_DATA | |
required: false | |
schema: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# Get the number of nodes | |
num_nodes=$(kubectl get nodes --no-headers | wc -l) | |
echo "Number of nodes: $num_nodes" | |
# Get the number of pods | |
num_pods=$(kubectl get pods --all-namespaces --no-headers | wc -l) | |
echo "Number of pods: $num_pods" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Notes: please be mindful of how secrets are stored | |
# Update your proxy address as needed (this is the default for the wavefront proxy on the same k8s cluster) | |
--- | |
apiVersion: v1 | |
kind: ConfigMap | |
metadata: | |
name: vcenter-config | |
namespace: observability-system | |
data: | |
vsphere.conf: | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
--- | |
apiVersion: batch/v1 | |
kind: Job | |
metadata: | |
name: kube-bench | |
spec: | |
template: | |
metadata: | |
labels: | |
app: kube-bench |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
version: '3.3' | |
networks: | |
splunk-backend: | |
driver: overlay | |
volumes: | |
splunk-forwarder-etc: | |
driver: cloudstor | |
splunk-forwarder-var: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# | |
# | |
# Copyright (c) 2016-2017 Oracle and/or its affiliates. All rights reserved. | |
# | |
# Licensed under the Universal Permissive License v 1.0 as shown at | |
# http://oss.oracle.com/licenses/upl. | |
# | |
import os | |
import sys |
I hereby claim:
- I am logankimmel on github.
- I am logankimmel (https://keybase.io/logankimmel) on keybase.
- I have a public key ASBVnFrb1IKkCOBd5vIXFy5tT4Y7aad65bhtMFc6zWcrAgo
To claim this, I am signing this object:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
--- | |
version: '3.1' | |
services: | |
drupal: | |
image: drupal:8-apache | |
ports: | |
- 8080:80 | |
restart: always |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#Docker for Windows: | |
Invoke-Webrequest -UseBasicparsing -Outfile "$env:TEMP\DockerForWindows.exe" "https://download.docker.com/win/stable/Docker%20for%20Windows%20Installer.exe" | |
Start-Process -FilePath "$env:TEMP\DockerForWindows.exe" -ArgumentList "install","--quiet" -Wait | |
New-NetFirewallRule -DisplayName "vpnkit" -Direction Inbound -Program "C:\Program Files\docker\docker\resources\vpnkit.exe" -Profile Public -Action Block -Protocol UDP | |
New-NetFirewallRule -DisplayName "vpnkit" -Direction Inbound -Program "C:\Program Files\docker\docker\resources\vpnkit.exe" -Profile Public -Action Block -Protocol TCP | |
New-NetFirewallRule -DisplayName "vpnkit" -Direction Inbound -Program "C:\Program Files\docker\docker\resources\vpnkit.exe" -Profile Private -Action Allow -Protocol UDP | |
New-NetFirewallRule -DisplayName "vpnkit" -Direction Inbound -Program "C:\Program Files\docker\docker\resources\vpnkit.exe" -Profile Private -Action Allow -Protocol TCP |
NewerOlder