The main point is to save the SSL/TLS keys those used by the web browser (SSLKEYLOGFILE=/tmp/tmp-google/.ssl-key.log
).
In the example below we run brand new instance of Google Chrome (--user-data-dir=/tmp/tmp-google
do the trick):
SSLKEYLOGFILE=/tmp/tmp-google/.ssl-key.log /Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome --user-data-dir=/tmp/tmp-google
Then run the Wireshark and open the Preferences -> Protocols -> SSL, where we put the path to the SSL keys log file into the (Pre)-Master-Secret log filename
field.
Now all SSL/TLS traffic from this browser instance will be decrypted.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
virt-install \ | |
--name=centos-compute-$i \ | |
--ram=32768 \ | |
--vcpus=16 \ | |
--cpu host-model-only \ | |
--os-type linux \ | |
--os-variant centos7.0 \ | |
--import \ | |
--disk path=/var/lib/libvirt/images/centos74-compute-$i.qcow2,bus=virtio,cache=none,format=qcow2,bus=virtio \ | |
--network type=direct,source=enp6s0f0,source_mode=bridge,model=virtio \ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Install packages: | |
# yum install -y libguestfs-tools qemu-img | |
Create the target image | |
# qemu-img create -f qcow2 target.qcow2 256G | |
Expand the new image and resize the partitions | |
# virt-resize --expand /dev/sda1 ubuntu.qcow2 target.qcow2 | |
If CentOS, do xfs_growfs inside the VM after boot |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Source: https://albertomolina.wordpress.com/2016/12/02/shrinking-qcow2-images/ | |
virt-df -h image.raw | |
Filesystem Size Used Available Use% | |
image.raw:/dev/sda1 1.9G 1020M 837M 52% | |
guestfish | |
><fs> add image.raw | |
><fs> run | |
><fs> list-filesystems |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
as sudo user | |
sh-3.2# scutil | |
> list | |
subKey [0] = Plugin:IPConfiguration | |
subKey [1] = Plugin:InterfaceNamer | |
subKey [2] = Plugin:KernelEventMonitor | |
subKey [3] = Setup: | |
subKey [4] = Setup:/ | |
subKey [5] = Setup:/Network/Global/IPv4 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
To generate certs: | |
apt-get install openvswitch-common | |
ovs-pki init | |
ovs-pki req+sign vtep | |
scp vtep-cert.pem root@<tor>:/var/db/certs | |
scp vtep-privkey.pem root@<tor>:/var/db/certs | |
QFX Config: | |
set protocols ovsdb controller <ha proxy vip> protocol ssl port <port> | |
(remove the passive option) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Ubuntu Desktop environment: | |
* apt-get update && sudo apt-get upgrade | |
* apt-get install ubuntu-desktop gnome-panel gnome-settings-daemon metacity nautilus gnome-terminal | |
Setup VNC server environment: | |
* apt-get install vnc4server | |
* adduser sanity (passwd: c0ntrail123) | |
* usermod -G sudo sanity | |
As user sanity do the below | |
* vncserver |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
virsh net-define <below xml> | |
<network> | |
<name>macvtap-net</name> | |
<forward mode="bridge"> | |
<interface dev="eth1"/> | |
</forward> | |
</network> | |
<domain type='kvm'> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
sshpass -p c0ntrail123 ssh -T -N -L 8085:localhost:8085 99.1.1.11 -g -l root | |
ssh -L 9143:10.2.4.27:8143 root@10.87.74.74 |
NewerOlder