Skip to content

Instantly share code, notes, and snippets.

View zukka77's full-sized avatar

Andrea Zucchelli zukka77

9 followers · 6 following
View GitHub Profile
@zukka77
zukka77 / haproxy.cfg
Created January 11, 2017 18:57
frontend ssl
mode tcp
bind 0.0.0.0:443 name frontend-ssl
option tcplog
log global
tcp-request inspect-delay 3s
tcp-request content accept if { req.ssl_hello_type 1 }
use_backend main-ssl if { req.ssl_hello_type 1 }
use_backend ssh if !{ req.ssl_hello_type 1 } { payload(0,7) -m bin 5353482d322e30 }
use_backend openvpn if !{ req.ssl_hello_type 1 } !{ req.len 0 }
@zukka77
zukka77 / openvpn.conf
Last active September 25, 2019 05:28
Openvpn configurations
#########SERVER TCP
port 1194
proto tcp6
dev tun
ca ca.crt
cert ${path_to_crt}
key ${path_to_key}
dh dh.pem
server 10.6.0.0 255.255.255.0
ifconfig-pool-persist ipp-tcp.txt
@zukka77
zukka77 / apache redirect to ssl
Last active August 13, 2019 13:29
RewriteEngine on
RewriteRule ^/.well-known/.* - [L,NC]
RewriteCond %{HTTPS} !=on
RewriteRule .* https://%{HTTP_HOST}%{REQUEST_URI} [R=permanent,L]
#certbot certonly --webroot -w /var/www/html -d domain
@zukka77
zukka77 / apache auth ldap ad group
Created August 1, 2019 14:10
<Directory /var/www/html/secure>
AuthBasicProvider ldap
AuthLDAPURL "ldap://server1 server2/dc=example,dc=com?sAMAccountName?sub" NONE
#AuthLDAPInitialBindAsUser On
#AuthLDAPInitialBindPattern (.+) $1@example.com
AuthLDAPBindDN user@example.com
AuthLdapBindPassword password
AuthLDAPGroupAttribute member
AuthLDAPGroupAttributeIsDN on
AuthType Basic
@zukka77
zukka77 / Oracle Backup
Last active April 1, 2019 14:04
Oracle snippets
#USER FOR DATAPUMP
create pumpuser identified by password;
grant EXP_FULL_DATABASE to pumpuser;
grant DATAPUMP_EXP_FULL_DATABASE to pumpuser;
grant DATAPUMP_IMP_FULL_DATABASE to pumpuser;
alter user pumpuser quota unlimited on system;
create directory DPDIR as 'dirpath';
grant all on directory DPDIR to pumpuser;
#EXPDP
expdp pumpuser/password FULL=y DIRECTORY=DPDIR COMPRESSION=ALL FLASHBACK_TIME=systimestamp DUMPFILE="filename-$(date -I).dmp" LOGFILE="filename-$(date -I).dmp.log"
@zukka77
zukka77 / tablespace_usage.sql
Created December 18, 2018 09:00
Oracle tablespace usage
--from https://www.databasejournal.com/features/oracle/monitoring-tablespace-usage-in-oracle.html
set linesize 132 tab off trimspool on
set pagesize 105
set pause off
set echo off
set feedb on
column "TOTAL ALLOC (MB)" format 9,999,990.00
column "TOTAL PHYS ALLOC (MB)" format 9,999,990.00
column "USED (MB)" format 9,999,990.00
@zukka77
zukka77 / postgres_json_insert.sql
Created October 16, 2018 14:30
function to insert a row in a table using json keys and data
CREATE OR REPLACE FUNCTION jsoninsert(relname text, reljson json)
RETURNS record AS
$BODY$DECLARE
ret RECORD;
inputstring text;
BEGIN
SELECT string_agg(quote_ident(key),',') INTO inputstring
FROM json_object_keys(reljson) AS X (key);
EXECUTE 'INSERT INTO '|| quote_ident(relname)
|| '(' || inputstring || ') SELECT ' || inputstring
@zukka77
zukka77 / pg_replication_check
Last active August 3, 2018 08:22
check_mk pg_replication_check
#!/bin/bash
Q="select now() - pg_last_xact_replay_timestamp() < interval '10 seconds',extract (epoch from now() - pg_last_xact_replay_timestamp()) ;"
RES=($(echo ${Q} | /usr/bin/psql -tA -Upostgres | tr '|' " "))
STATUS=2
if [ ${RES[0]} == 't' ];then
STATUS=0
STATUSTEXT="OK"
else
@zukka77
zukka77 / network.service
Created July 26, 2018 20:43
systemd wait for vpn up
#/etc/systemd/system/[yourService].service.d/[any_name].conf
[Unit]
Wants=sys-devices-virtual-net-tun0.device
After=sys-devices-virtual-net-tun0.device
@zukka77
zukka77 / lxc.conf
Created July 26, 2018 20:23
lxc tun device configuration
## for openvpn
lxc.mount.entry = /dev/net dev/net none bind,create=dir
lxc.cgroup.devices.allow = c 10:200 rwm