Skip to content

Instantly share code, notes, and snippets.

View walidshaari's full-sized avatar

Walid Shaari CNJ walidshaari

650 followers · 132 following
View GitHub Profile
@walidshaari
walidshaari / hcp-rosa.md
Created March 22, 2024 04:55 — forked from rcarrata/hcp-rosa.md
Hosted Control Planes for ROSA HCP

HyperShift

  • Set environment variables
CLUSTER_NAME="rosa-hcp-rcs"
PREFIX_NAME="hcp-rcs"
REGION="us-east-1"
VERSION="4.14.9"
USER=rcarrata
@walidshaari
walidshaari / DO425.md
Created February 4, 2021 17:45 — forked from luckylittle/DO425.md
Red Hat DO425 Notes

Red Hat Security: Securing Containers & OpenShift (DO425)

Last update: Tue Jan 14 23:15:49 UTC 2020 by @luckylittle

Objectives

  1. Understand, identify, and work with containerization features
  2. Deploy a preconfigured application and identify crucial features such as namespaces, SELinux labels, and cgroups
@walidshaari
walidshaari / snowball.sh
Created September 8, 2023 07:57 — forked from dmc5179/snowball.sh
OpenShift 4 on an AWS Snowball Edge
#!/bin/bash -xe
SNOWBALL_IP='192.168.1.240'
S3="aws --profile snowballEdge --region snow --endpoint https://${SNOWBALL_IP}:8443 --ca-bundle /etc/pki/ca-trust/source/anchors/sbe.crt s3"
EC2="aws --profile snowballEdge --region snow --endpoint https://${SNOWBALL_IP}:8243 --ca-bundle /etc/pki/ca-trust/source/anchors/sbe.crt ec2"
BUCKET="redhat-dan"
IGN_CONFIGS='/home/danclark/openshift_clusters/snow/'
IGN_BASE='/home/danclark/openshift_clusters/install-config.yaml'
@walidshaari
walidshaari / Kubernetes vagrant cluster
Last active September 11, 2020 08:27
Completion
install bash-completion package
kubeadm completion bash|tee /etc/bash_completion.d/kubeadm
kubectl completion bash|tee /etc/bash_completion.d/kubectl
Bootstrapping the master node "Kubernetes control panel" :
kubeadm init --apiserver-advertise-address=192.168.205.10 --pod-network-cidr=10.244.0.0/16 --kubernetes-version=v1.6.2
## for calico default is 192.168.0.0/16 for flannel it is 10.244.0.0/16, not sure what needs to be done to vagrant for ips not clash
@walidshaari
walidshaari / K8s networking
Last active September 10, 2017 03:54
cbr0 the bridge that links the pods to each other within the node or in other nodes and hence to the external network
flannel0 VXLAN interface acts like any other vNIC device.packets gets routed from cbr0 to flannel0 device if ther is communition between pods in different nodes.
K8s services use iptables to connect a request to its final end point "ep". the svc will be implemented across every nodes in k8s cluster. that managment and update of iptables is guranteed by the kube-proxy, kube proxy is one of the k8s controller that watches the api-server for any service changes and keeps tracks of services and end points.
kube-dns is the in-house dns server, it automticaly adds new services to its records, serving A, and SRV records.
@walidshaari
walidshaari / Dhahran-docker-meetup Nov 2016
Last active November 20, 2016 15:58
Saudi Eastern province Dhahran -Docker meetup
TLDR: RSVP at https://www.meetup.com/Docker-Dhahran/events/234807816/
Make sure you have a Docker Hub account, if not please register with a good name as it will present your future software repositroy, think of it as you application store, such as Google play, or Apple store, mine for example is wshaari, some of the official names are docker, redhat, microsoft, mysql.
Create a Docker Hub account here at https://hub.docker.com. You will need a Docker Hub account to access the course materials.
Also register to Docker community so that you can get access to remote mentors, chat with other particpants, ask questions, among other chat activities https://community.docker.com/registrations/groups/4316
Bring your laptop fully charged.
Prefereably you laptop should have Docker already set-up. if you can not, do not worry as we will have access to online labs, and there are some computers already in the facility. but could prove helpful if there is network congestion, or internet issues if you are interetsed t