- Updated on May 29 to accommodate etcd container not having
/bin/shavailable anymore.
curl -sL https://get.rke2.io | sh
systemctl daemon-reload
systemctl start rke2-server
leopay leopay
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # base on this args processing model | |
| for a in "$@"; do | |
| case $a in | |
| --path | -P) | |
| shift 1 | |
| EMACS="$1" | |
| shift 1 | |
| ;; | |
| --toolbars | -B) |
r0mdau
/ find-k8snode-interface.sh
Last active
November 9, 2024 21:16
How to get tcpdump for containers inside Kubernetes pods
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # find the kube node of the running pod, appear next to hostIP, and note containerID hash | |
| kubectl get pod mypod -o json | |
| # -> save hostIP | |
| # -> save containerID | |
| # connect to the node and find the pods unique network interface index inside it's container | |
| docker exec containerID /bin/bash -c 'cat /sys/class/net/eth0/iflink' | |
| # -> returns index | |
| # locate the interface of the node |
superseb
/ restore-rkestate-file.md
Last active
April 3, 2025 14:31
Recover cluster.rkestate file from controlplane node
Run on controlplane node, uses any found hyperkube image
docker run --rm --net=host -v $(docker inspect kubelet --format '{{ range .Mounts }}{{ if eq .Destination "/etc/kubernetes" }}{{ .Source }}{{ end }}{{ end }}')/ssl:/etc/kubernetes/ssl:ro --entrypoint bash $(docker inspect $(docker images -q --filter=label=org.opencontainers.image.source=https://github.com/rancher/hyperkube.git) --format='{{index .RepoTags 0}}' | tail -1) -c 'kubectl --kubeconfig /etc/kubernetes/ssl/kubecfg-kube-node.yaml -n kube-system get configmap full-cluster-state -o json | jq -r .data.\"full-cluster-state\" | jq -r .' > cluster.rkestate
jsdevtom
/ frontend-ws-connection.ts
Last active
February 8, 2025 05:24
kubernetes-ingress websockets with nodejs
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| export const ws = webSocket<WebsocketMessage>(`wss://${location.hostname}:${location.protocol === 'https:' ? 443 : 80}/ws/`); | |
| export const wsObserver = ws | |
| .pipe( | |
| retryWhen(errors => | |
| errors.pipe( | |
| delay(1000) | |
| ) | |
| ) | |
| ); |
janeczku
/ rancher-url-change.md
Last active
October 11, 2025 22:00
Change the hostname/URL and certificate of an existing Rancher installation
Steps to change the URL of Rancher installation and switch from a self-signed certificate to a certificate signed by recognized CA.
- Change the Rancher
server-urlsetting to the new URL:- Navigate to
https://<old_rancher_hostname>/g/settings/advanced - Edit
server-urltohttps://<new_rancher_hostname>
- Navigate to
- Clear the private CA certificate for the old certificate
- Navigate to
https://<old_rancher_hostname>/g/settings/advanced - Next to
cacertsclick context menu -> View in API - Click Edit
- Clear the content of the
valuefield
- Navigate to
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| IMAGES=`cat rancher-images.txt` | |
| for IMAGE in $IMAGES; do | |
| until docker inspect $IMAGE > /dev/null 2>&1; do | |
| docker pull $IMAGE | |
| done | |
| docker tag $IMAGE jgreat-test-airgap-registry.rancher.space/$IMAGE | |
| docker push jgreat-test-airgap-registry.rancher.space/$IMAGE | |
| done |
fliedonion
/ !GIST file list order - summary.md
Last active
April 20, 2025 11:29
Understand GIST file list order.
| Summary | How to control (or Understand) your GIST page's files list order. |
| Notice | not official documentation. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # openssl version | |
| openssl version | |
| # openssl commands | |
| openssl list-standard-commands | |
| # ca - create certificate authorities | |
| # dgst - compute hash functions | |
| # enc - encrypt/decrypt using secret key algorithms (it is possible to generate using a password or directly a secret key stored in a file) | |
| # genrsa - generate a pair of public/private key for the RSA algorithm | |
| # password - generation of “hashed passwords” |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| error_page 400 404 405 =200 @40*_json; | |
| location @40*_json { | |
| default_type application/json; | |
| return 200 '{"code":"1", "message": "Not Found"}'; | |
| } | |
| error_page 500 502 503 504 =200 @50*_json; | |
| location @50*_json { |
NewerOlder