manish
Create custom docker image, publish and use from private gitea repo
Build a custom docker image For eg, added custom configs to apache Create custom Dockerfile Here it will pull latest apache and copy httpd.conf and mka-site.conf to the build custom build image.Make sure you have customized httpd.conf and mka-site.conf files in “apache-config/” dir Build image List images to see new image Enable docker packages on […]
Kubernetes horizontal scaling
Install metric server on controller node See https://github.com/kubernetes-sigs/metrics-server/releases https://github.com/kubernetes-sigs/metrics-server to download compactible versions Obtain metric server YAML file Apply metric YAML on controller Verify to see if metrics-server pod is running Note pod replia count before scaling Apply horizontal scaling to mysql database pod Create following YAML mentioning min, max replicas, CPU, memory benchmarks Appy it on controller […]
Kubernetes high availability
Background This document covers high-availabily implmentation on Kubenetes controller nodes.We will be using 2 controllers here.Here we are going to use keepalived s/w for hardware, OS and service level HA checks. Install keepalived s/w on both controllers. Configure HA using keepalived On both primary controller add two scripts One for kubelet service Second for api […]
Kubernetes SSL certificate management
List Kubenetes internal SSL certificates List Dashboard SSL certificates Renew Kubernetes internal SSL certificates Restarting above pods After this above pods are started again taking new SSL certs in effect. Adding new CSR Base64 encode CSR content and create YAML as following Apply above Check CSR Approve Check again Add new SSL certificate for apps […]
Kubernetes build and configuration guide
Basic cluster build and configuraion guide Covers Kubernetes cluster build with: OS and specs (tested on) Create three VMs and assign fixed IPs For eg: Set hostname on each VM Update /etc/hosts file on each VM Update each VM Disable SWAP on each VM Install Containerd on All Nodes Add Kubernetes Package Repository Adjust version […]
Starting with Ansible
This article covers basics of ansible based automation Structure For the test/demo setup following structure is prepared Inventory preparation Let us see details of following inventory file: “home_hosts” is just a host group name to bundle set of hosts. You can have multiple groups. For eng say “datacentre1-hosts”, “datacentre2-hosts” “hosts” is a keyword and is […]
Opensearch fluentd stack
After elasticsearch license changes, opensearch has forked out with Apache 2.0 opensource license in 2021. This is maintained by Amazon web services (AWS). In this article, we will walk through building opensearch stack using opensearch, opensearch-dashboards and fluentd. We are using debian 13 trixie, opensearch, opensearch-dashboards 3.10, fluentd 5.0.7. Obtain opensearch, opensearch-dashboards from https://opensearch.org/downloads/ and […]
Solo trip to Chakrata
In the month December, usually I avail all my leftover leaves. In 2024, my kids school session continued till December end. So I decided to venture alone for a random unplanned trip to make best use of holiday season. Packed few clothes, fruits I headed towards Kalesar national park from Kurukshetra. Reached there in less […]
Enable LDAP authentication on elasticsearch
Before trying it out make sure you have appropriate licenses If you have license, follow these steps in elasticsearch.yml add following LDAP config LDAP binddn user password is not part of config and must be defined in elasticsearch keystore Check keystore list