Skip to content

Instantly share code, notes, and snippets.

View nomaster's full-sized avatar
🏳️‍🌈
Chaos Penguin

Mic Szillat nomaster

🏳️‍🌈
Chaos Penguin
104 followers · 134 following
View GitHub Profile
@nomaster
nomaster / configuration.nix
Last active April 7, 2024 09:14
NixOS Configuration for experimental K3S cluster node
{ config, pkgs, ... }:
{
imports =
[ # Include the results of the hardware scan.
./hardware-configuration.nix
];
# Use the systemd-boot EFI boot loader.
boot.loader.systemd-boot.enable = true;
@nomaster
nomaster / 20auto-upgrades
Created March 8, 2024 09:13
Proxmox unattended upgrades
Unattended-Upgrade::Origins-Pattern {
"site=download.proxmox.com,codename=${distro_codename}";
};
@nomaster
nomaster / config.properties
Last active December 4, 2023 12:42
IPv6 on UniFi guest wireless network
config.system_cfg.1=ebtables.101.cmd=-t nat -I GUESTIN 1 -p IPv6 -d 06:be:ef:00:00:00/ff:ff:ff:00:00:00 -j ACCEPT
config.system_cfg.2=ebtables.102.cmd=-t nat -I GUESTIN 2 -p IPv6 --ip6-proto ipv6-icmp --ip6-icmp-type router-solicitation -j ACCEPT
config.system_cfg.3=ebtables.103.cmd=-t nat -I GUESTIN 3 -p IPv6 --ip6-proto ipv6-icmp --ip6-icmp-type neighbour-advertisement -j ACCEPT
config.system_cfg.4=ebtables.104.cmd=-t nat -I GUESTIN 4 -p IPv6 --ip6-proto ipv6-icmp --ip6-icmp-type neighbour-solicitation -j ACCEPT
config.system_cfg.5=ebtables.105.cmd=-t nat -I GUESTOUT 1 -p IPv6 -s 06:be:ef:00:00:00/ff:ff:ff:00:00:00 -j ACCEPT
@nomaster
nomaster / config.boot
Last active October 5, 2023 07:35
EdgeRouter: DNS forwarding to CloudFlare with DNSSEC
set service dns forwarding name-server 1.1.1.1
set service dns forwarding name-server 1.0.0.1
set service dns forwarding name-server '2606:4700:4700::1111'
set service dns forwarding name-server '2606:4700:4700::1001'
set service dns forwarding options dnssec
set service dns forwarding options trust-anchor=.,19036,8,2,49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5
set service dns forwarding options trust-anchor=.,20326,8,2,E06D44B80B8F1D39A95C0B0D7C65D08458E880409BBC683457104237C7F8EC8D
set service dns forwarding options dnssec-check-unsigned
set service dns forwarding options dnssec-timestamp=/config/dnsmasq/dnsmasq.time
@nomaster
nomaster / sysctl-ipv6.sh
Created September 24, 2023 19:23
EdgeRouter IPv6 instability workaround
#!/bin/sh
/sbin/sysctl -w net.ipv6.route.max_size=104857600
/sbin/sysctl -w net.ipv6.route.gc_thresh=104857600
@nomaster
nomaster / ethtool.fact
Last active June 26, 2023 10:51
Ansible facts script for ethtool
#!/usr/bin/env python
import json
import subprocess
result = {}
interface_stats = subprocess.check_output("/usr/sbin/ethtool -i eth0", shell=True)
for line in interface_stats.strip().split("\n"):
@nomaster
nomaster / patch.yaml
Created June 10, 2022 13:45
Kustomization patch for Java Application Insights Agent
---
- op: add
path: /spec/template/spec/containers/0/envFrom/-
value:
secretRef:
name: appinsights
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: JAVA_OPTIONS
@nomaster
nomaster / dashboard.json
Created June 8, 2022 12:16
Azure Application Insights dashboard for Grafana
{
"annotations": {
"list": [
{
"builtIn": 1,
"datasource": {
"type": "grafana",
"uid": "-- Grafana --"
},
"enable": true,
@nomaster
nomaster / dashboard.json
Created May 27, 2022 15:27
Grafana Dashboard for Kubernetes Pod Metrics and Logs
{
"annotations": {
"list": [
{
"builtIn": 1,
"datasource": {
"type": "grafana",
"uid": "-- Grafana --"
},
"enable": true,
@nomaster
nomaster / output.txt
Last active April 28, 2022 07:11
Test NetBox API docs requests with curl
% curl -I -X GET -H "Content-Type: application/json" -H "Token: 62b24bdf9ce08cfa3fb7ed15aa0d3e027a142df1" https://demo.netbox.dev/api/docs/\?format\=openapi
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 28 Apr 2022 06:59:18 GMT
Content-Type: application/openapi+json; charset=utf-8
Content-Length: 1064721
Connection: keep-alive
Vary: Accept, Cookie, Authorization, Origin
Allow: GET, HEAD, OPTIONS
Expires: Thu, 28 Apr 2022 20:40:14 GMT