module "kube_certs" {
source = "../../modules/tls/kube/user-provided"
ca_cert_pem_path = "/path/to/ca.pem"
kubelet_cert_pem_path = "/path/to/kubelet.pem"
kubelet_key_pem_path = "/path/to/kubelet.key"
apiserver_cert_pem_path = "/path/to/apiserver.pem"
apiserver_key_pem_path = "/path/to/apiserver.key"

Setup cfssl

Download cfssl binary


Set execute permissions on cfssl

View aws-cli.yaml
apiVersion: v1
kind: Pod
name: aws-cli
namespace: kiam-example
app: aws-cli
annotations: arn:aws:iam::XXXXXXXXXXXX:role/my-s3-role

These are my notes testing:

  • Calico on Tectonic
  • New (and undocumented) SystemNetworkPolicy TPR introduced in calico-lib
  1. Clone the repo containing the Calico additions and switch to the appropriate branch.
$ git clone abhinavdahiya &&\
   cd tectonic-installer &&\
   git checkout calico_policy_support
View gist:00490209a8e2a948375d

Getting Started with OpenStack Icehouse All-in-One Virtual Appliance

Date: 2014-09-08 15:46
tags:rackspace, openstack

The Easiest Way To Get Started with OpenStack

This VirtualBox Appliance will get you up and running with OpenStack Icehouse quickly!

View gist:9793286

Havana: Cinder NFS Backend


Cinder maintains an iSCSI connection between the cinder-volume and compute node when utilizing the LVM driver (cinder.volume.drivers.lvm.LVMISCSIDriver).

If one uses the NFS driver for a backend (cinder.volume.drivers.nfs.NfsDriver), the volume is served to the compute node via NFS share.

View gist:9378335

Glance v2 API

Havana comes with both v1 and v2 of the Glance API

python-glanceclient curently supports v1 but v2 support is in progress.

Glance v2 API adds:

View gist:8565097

Havana: Neutron

ML2 Plugin

One of the most significant features of Havana is the introduction of the ML2 (Modular Layer 2) plugin framework.

View gist:8445517

Havana: Cinder

Multiple-Storage Back-Ends

Multiple-storage back-end capability in Cinder was introduced in Grizzly.

This allows one to run multiple cinder volume back-ends and create groups of these back-ends based off unique volume drivers. Cinder volume backends are spawned as children to cinder-volume. The filter scheduler determines where to send the volume based on the volume type thats passed in.

View gist:8438906

Havana: Glance


Havana comes with both v1 and v2 Glance API (v2.2 is now in development).

python-glanceclient currently supports Glance API v1.