Tim Swanson tiswanso
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Branch Pointer: https://github.com/tiswanso/nsm-nse/tree/vl3_restore_ci | |
| # Prereqs: | |
| mkdir -p $GOPATH/src/github.com/cisco-app-networking | |
| git clone https://github.com/cisco-app-networking/networkservicemesh | |
| cd networkservicemesh | |
| git checkout vl3_latest | |
| cd .. | |
| git clone https://github.com/cisco-app-networking/nsm-nse | |
| cd nsm-nse |
tiswanso
/ gosec_notest.txt
Created
August 2, 2018 19:38
Istio master: gosec galley/... pilot/... mixer/... pkg/... security/... istioctl/...
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [gosec] 2018/08/02 15:29:06 including rules: default | |
| [gosec] 2018/08/02 15:29:06 excluding rules: default | |
| [gosec] 2018/08/02 15:29:06 Searching directory: /Users/tiswanso/go-istio/src/istio.io/istio/galley/cmd/galley | |
| [gosec] 2018/08/02 15:29:06 Searching directory: /Users/tiswanso/go-istio/src/istio.io/istio/galley/cmd/galley/cmd | |
| [gosec] 2018/08/02 15:29:06 Searching directory: /Users/tiswanso/go-istio/src/istio.io/istio/galley/cmd/shared | |
| [gosec] 2018/08/02 15:29:06 Searching directory: /Users/tiswanso/go-istio/src/istio.io/istio/galley/pkg/crd/validation | |
| [gosec] 2018/08/02 15:29:06 Searching directory: /Users/tiswanso/go-istio/src/istio.io/istio/galley/pkg/crd/validation/testcerts | |
| [gosec] 2018/08/02 15:29:06 Searching directory: /Users/tiswanso/go-istio/src/istio.io/istio/galley/pkg/kube | |
| [gosec] 2018/08/02 15:29:06 Searching directory: /Users/tiswanso/go-istio/src/istio.io/istio/galley/pkg/kube/converter | |
| [gosec] 2018/08/02 15:29:06 Searching directory: /Users/tiswanso/go-istio/src/istio.io/istio/galley/pkg/k |
tiswanso
/ GKE to GKE multicluster
Last active
July 26, 2018 18:40
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Create 2 clusters: | |
| proj=<proj name from gcloud projects list> | |
| cluster="cluster-1" | |
| zone="us-east1-b" | |
| gcloud beta container --project $proj clusters create $cluster --zone $zone --username "admin" \ | |
| --cluster-version "1.9.6-gke.1" --machine-type "n1-standard-2" --image-type "COS" --disk-size "100" \ | |
| --scopes "https://www.googleapis.com/auth/compute","https://www.googleapis.com/auth/devstorage.read_only","https://www.googleapis.com/auth/logging.write","https://www.googleapis.com/auth/monitoring","https://www.googleapis.com/auth/servicecontrol","https://www.googleapis.com/auth/service.management.readonly","https://www.googleapis.com/auth/trace.append"\ | |
| --num-nodes "4" --network "default" --enable-cloud-logging --enable-cloud-monitoring --enable-ip-alias --async |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Mod'd /etc/kubernetes/kubelet to add --require-kubeconfig: | |
| <snip> | |
| # Add your own! | |
| KUBELET_ARGS="--pod-manifest-path=/etc/kubernetes/manifests --cadvisor-port=4194 --require-kubeconfig --kubeconfig=/etc/kubernetes/kubeconfig.yaml --hostn | |
| ame-override=k8s-cluster-5ibc6pt6avhz-minion-0 --cluster_dns=10.254.0.10 --cluster_domain=cluster.local --cloud-provider=openstack --cloud-config=/etc/kub | |
| ernetes/kube_openstack_config --cgroup-driver=systemd" | |
| </snip> | |
| [root@k8s-cluster-5ibc6pt6avhz-minion-0 kubernetes]# systemctl restart kubelet | |
| [root@k8s-cluster-5ibc6pt6avhz-minion-0 kubernetes]# systemctl status kubelet |
tiswanso
/ Code reuse for networking-cisco-tox playbooks:
Created
October 26, 2017 13:45
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| There's a couple options for code-reuse in playbooks: | |
| 1) include a playbook from another playbook (& set vars in outer playbook) | |
| 2) make the common tasks into a role that's used by specific playbooks (& set vars at playbook level) | |
| My general preference is to use roles (option 2). If you put the common tasks into a role, ie. run_tasks, you can just make a var | |
| for the openstack branch and have each different playbook set it. For example: | |
| networking-cisco-tox-master.yml | |
| --- | |
| - hosts: all |
tiswanso
/ k8s_contiv_bgp_peer_asrRR
Created
February 14, 2017 17:50
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ______________________________________________________________ | |
| k8s+contiv BGP peering setup | |
| Status: | |
| - able to peer with ASR1K route-reflector | |
| - able to see reflected routes in k8s netctl bgp output | |
| - NOT able to see k8s pod routes in ASR1K | |
| ------------------------------------------------------- |
tiswanso
/ asr1k_keystone
Created
November 2, 2016 19:44
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 2016-11-02 12:23:18.617 43 DEBUG neutron.db.quota.driver [req-f56d3e2a-fb49-41d9-aafd-24602855c7eb 4a3769ba803e496eaf4605c6c61d71cd 12a103ba1ece42428ed7e2de9f1e4ada - - -] Attempting to reserve 1 items for resource router. Total usage: 0; quota limit: 10; headroom:10 make_reservation /usr/lib/python2.7/site-packages/neutron/db/quota/driver.py:199 | |
| 2016-11-02 12:23:18.753 43 DEBUG networking_cisco.plugins.cisco.db.l3.l3_router_appliance_db [req-f56d3e2a-fb49-41d9-aafd-24602855c7eb 4a3769ba803e496eaf4605c6c61d71cd 12a103ba1ece42428ed7e2de9f1e4ada - - -] Executable for parent process(6) is neutron-server | |
| so this is the MASTER process (43) _is_master_process /usr/lib/python2.7/site-packages/networking_cisco/plugins/cisco/db/l3/l3_router_appliance_db.py:814 | |
| 2016-11-02 12:23:18.776 43 DEBUG networking_cisco.plugins.cisco.db.l3.routertype_db [req-f56d3e2a-fb49-41d9-aafd-24602855c7eb 4a3769ba803e496eaf4605c6c61d71cd 12a103ba1ece42428ed7e2de9f1e4ada - - -] get_routertype() called get_routertype /usr/lib/python2.7/site |