For a new vault cluster, add the APT repo: Depending on how you have configured the listener you may need to set an environment variable specifying the vault location before commands like ‘vault status’ will work: Notice I am setting a variable to disable certificate verification to avoid having to add ‘-tls-skip-verify’ to each command…. Read more »
Posts By: jonny
Packer HCL Environment Variables
Converting Packer templates from json to HCL for Packer version 1.7.2. The easiest thing to do is try the automated conversion: For environment variables we need to set them with a PKR_VAR prefix e.g. Then that can be defined in the template.pkr.hcl file with: And then used in later sections like this: Then your validation… Read more »
Ansible Ad Hoc Commands
Just for future reference: ansible -i /tmp/ips -f 10 -m shell -a “sudo docker restart logstash” all
CentOS 8 munin-node needs PowerTools
I had the following error installing munin-node on a new CentOS 8 system: Depsolve Error occured: Problem: package munin-node-2.0.54-2.el8.noarch requires perl(Net::SNMP), but none of the providers can be installed\n – conflicting requests – nothing provides perl(Digest::SHA1) >= 1.02 needed by perl-Net-SNMP-6.0.1-25.el8.1.noarch Solution is to enable the repo CentOS-PowerTools sed -i ‘/enabled=0/enabled=1/’ /etc/yum.repos.d/CentOS-PowerTools.repo
Gitlab API and Python
To start, create a config file with your Gitlab personal token: vi ~/.python-gitlab.cfg With contents similar to below: [global] default = gitlab ssl_verify = true timeout = 5 [gitlab] url = https://gitlab.com private_token = 1234ABCD1234ABCD api_version = 4 next create a directory and a python virtualenv: bashmkdir ./code/python/testpython3 -m venv envsource env/bin/activatepip3 install requests python-gitlab… Read more »
Chef Beginner First Cookbook
I wanted to play around with Chef locally for testing pulling encrypted variables from data bags. Prerequisites ChefDK (includes chef-solo) Encryption Create a Cookbook: chef generate cookbook “firstcookbook” Data Bags Create the encryption key for encrypting data bag items: openssl rand -base64 512 > ~/.chef/encrypted_data_bag_secret Create a local data bag: knife data bag create ssh-private-keys… Read more »
Chef Knife List Nodes with IPs
I had to fiddle a bit with this so possibly worth keeping a note of it. I wanted to pull all the node hostnames and ip addresses from chef for use in hostname lookups and ssh config.
Resetting MySQL root password on newer MySQL 5.7
In newer versions of MySQL it looks like the ‘Password’ field has been replaced with the ‘authentication_string’ field so older instructions online may not work. Stop the currently running MySQL service: systemctl stop mysql Start mysql skipping permissions tables: mysqld_safe –skip-grant-tables Then in another terminal run the mysql client: mysql Then the following SQL: UPDATE… Read more »
LHT65 setup and UART Serial Connection
I wired a CP2102 USB to TTL Serial Converter to the LHT65 UART connector – see images below: Then on the linux command line ran: dmesg | tail to check the device name that was added by the system. I then connected to that serial device using screen: sudo screen /dev/ttyUSB0 If you type you… Read more »
Postgresql VACUUM and ANALYZE all tables in a database
The example below uses the database named netbox so change as needed. It gets a list of the tables in the database and for each one performs a full vacuum and analyze. There is probably a more efficient way to do this from the psql prompt but this is what worked for me: su -… Read more »