全文検索:
- 34 UnboundでHA構成
- sudo localectl set-locale LANG=ja_JP.UTF-8 cat /etc/systemd/timesyncd.conf systemctl status systemd-t... m profile latency-performance cat << __EOM__ >> /etc/hosts.allow sshd: 192.168.0. :allow sshd: all :de... _ sudo apt install resolvconf cat << __EOM__ >> /etc/resolvconf/resolv.conf.d/head nameserver 1.1.1.1 ... #volumes: # - './unbound:/opt/unbound/etc/unbound/' network_mode: "host" __EOM__ </co
- 04 Docker MailServer
- ります。 /var/lib/docker/volumes/app_certs/_data:/etc/letsencrypt/live <code|compose.yml> services: ... data/dms/config/:/tmp/docker-mailserver/ - /etc/localtime:/etc/localtime:ro - /var/lib/docker/volumes/app_certs/_data:/etc/letsencrypt/live restart: always stop_gra
- 33 Let's Encrypt リバースプロキシ(手動板)+ GitLab
- ssl_session_tickets off; ssl_certificate /etc/letsencrypt/live/gitlab.fl8.jp/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/gitlab.fl8.jp/privkey.pem; #ssl_dhparam /etc/nginx/certs/gitlab.fl8.jp.dhparam.pem; ssl_st... _stapling_verify on; ssl_trusted_certificate /etc/letsencrypt/live/gitlab.fl8.jp/cert.pem; set
- 15 Kubernetes Error
- = 対応 ==== 下記実行 <code> mkdir -p $HOME/.kube cp -i /etc/kubernetes/admin.conf $HOME/.kube/config chown $(... /.kube/config unset KUBECONFIG export KUBECONFIG=/etc/kubernetes/admin.conf </code> {{tag>Kubernetes}} ... ith --v=5 or higher </code> ==== 対応 ==== rm /etc/containerd/config.toml systemctl restart contai... the control plane as static Pods from directory "/etc/kubernetes/manifests". This can take up to 4m0s [
- 10 Docker Let's Encrypt
- : nginx restart: always volumes: - /etc/nginx/conf.d:/etc/nginx/conf.d - /etc/letsencrypt:/etc/letsencrypt - /var/www/html:/var/www/html ports: - 80:80 #network
- 12 Kubernetes
- ==== Kernel モジュール ==== <code> cat <<EOF | tee /etc/modules-load.d/containerd.conf overlay br_netfilt... ==== Kernel パラメータ ==== <code> cat <<EOF | tee /etc/sysctl.d/99-kubernetes-cri.conf net.bridge.bridge... containerd ==== Containerdの設定 ==== mkdir -p /etc/containerd containerd config default | tee /etc/containerd/config.toml systemctl restart container
- 09 Dockerリバースプロキシ(HTTPS)
- 80:80 - 443:443 volumes: - vhost:/etc/nginx/vhost.d - html:/usr/share/nginx/html ... /docker.sock:/tmp/docker.sock:ro - ./certs:/etc/nginx/certs:ro - ./nginx-proxy/custom.conf:/etc/nginx/conf.d/custom.conf:ro restart: always ... nginx-proxy-companion volumes: - vhost:/etc/nginx/vhost.d - html:/usr/share/nginx/html
- 11 Docker image 作成
- http://archive.debian.org/debian wheezy main' > /etc/apt/sources.list RUN apt-get update -y && apt-get... un/zabbix # configure zabbix web server RUN cp /etc/zabbix/zabbix_agentd.conf /root/zabbix_agentd.con... === <code|entrypoint.sh> #!/bin/bash if [ ! -f /etc/zabbix/zabbix_agentd.conf ];then cp /root/zabbix_agentd.conf /etc/zabbix/zabbix_agentd.conf mkdir /etc/zabbix/zab
- 25 Let's Encrypt リバースプロキシ
- n.nginx_proxy: "true" volumes: - certs:/etc/nginx/certs:ro - vhost.d:/etc/nginx/vhost.d - html:/usr/share/nginx/html - /var/run/... r.sock:/tmp/docker.sock:ro - ./server.conf:/etc/nginx/conf.d/server.conf networks: - pr... t restart: always volumes: - certs:/etc/nginx/certs - acme:/etc/acme.sh - vho
- 24 Bitwarden/Vaultwarden
- n.nginx_proxy: "true" volumes: - certs:/etc/nginx/certs:ro - vhost.d:/etc/nginx/vhost.d - html:/usr/share/nginx/html - /var/run/... n restart: always volumes: - certs:/etc/nginx/certs - acme:/etc/acme.sh - vhost.d:/etc/nginx/vhost.d - html:/usr/share/nginx
- 16 Kubernetes + DRBD Linstor
- linstor-controller ===== 自動補完 ===== # source /etc/bash_completion.d/linstor # または # source /usr/s... tore_dbマウントするsystemd用意 ==== <code> cat << EOF > /etc/systemd/system/var-lib-linstor.mount [Unit] Descr... actor ==== 起動順のファイル作成 ==== <code> cat << EOF > /etc/drbd-reactor.d/linstor_db.toml [[promoter]] id = ... も良いように、linstor-client.confを修正しておく。 <code> # cat /etc/linstor/linstor-client.conf [global] controllers=
- 05 Docker Nginx reverse proxy
- volumes: - ./reverse-proxy/nginx.conf:/etc/nginx/nginx.conf ports: - 8088:80 </co... tmpfsをキャッシュディレクトリへ ==== === fstabへ追加 === <code|/etc/fstab> tmpfs /tmpfs tmpfs ... volumes: - ./reverse-proxy/nginx.conf:/etc/nginx/nginx.conf - /tmpfs:/var/cache po
- 08 docker-compose Nginx
- RENEW: 'true' volumes: - ./docker/web/:/etc/nginx/conf.d/ web: image: nginx:1.15... #- '8000:80' volumes: - ./nginx/conf.d:/etc/nginx/conf.d - ./nginx/html:/var/www/html </
- 17 Kubernetes IPマスカレード
- - name: config mountPath: /etc/config volumes: - name: config ... he daemon looks for its config in a YAML file at /etc/config/ip-masq-agent - key: config
- 26 Docker iptables
- 映方法は設定反映されなくなってた。。。 やはり再起動後はシェルなどで追加する方が良さそう。 /etc/init.d/netfilter-persistent save /etc/init.d/netfilter-persistent reload {{tag>Docker iptables}}
