Steps for installing on Debian 11 from the Cloudsmith repos
Following the docs here
apt update
apt install curl gnupg apt-transport-https -y
Installing the signing keys
curl -1sLf "https://keys.openpgp.org/vks/v1/by-fingerprint/0A9AF2115F4687BD29803A206B73A36E6026DFCA" | gpg --dearmor | tee /usr/share/keyrings/com.rabbitmq.team.gpg > /dev/null
curl -1sLf https://ppa1.novemberain.com/gpg.E495BB49CC4BBE5B.key | gpg --dearmor | tee /usr/share/keyrings/rabbitmq.E495BB49CC4BBE5B.gpg > /dev/null
curl -1sLf …Using
- Debian 11
- PowerDNS 4.6
Will use postgres to store the records.
Installing postgres
apt install postgresql postgresql-client postgresql-contrib
Changing the password for the postgres database user:
su - postgres
psql -d template1 -c "ALTER USER postgres WITH PASSWORD 'PostgresPassword';"
Adjusting /etc/postgresql/13/main/pg_hba.conf:
# To allow remote connection
host all …When RDP-ing to a Linux Desktop (KDE) there are a lot of prompts for access blocked to some services.
Using these policies to convice polkit to allow this access
/etc/polkit-1/localauthority/50-local.d/45-allow-colord.pkla
[Allow Colord all Users]
Identity=unix-user:*
Action=org.freedesktop.color-manager.create-device;org.freedesktop.color-manager.create-profile;org.freedesktop.color-manager.delete-device;org.freedesktop.color-manager.delete-profil$
ResultAny=yes
ResultInactive=auth_admin
ResultActive=yes
/etc/polkit-1/localauthority/50-local.d/46-allow-update-repo.pkla …
Installing MetalLB
Configmap for metallb:
metallb-configmap.yaml
apiVersion: v1
kind: ConfigMap
metadata:
namespace: metallb-system
name: config
data:
config: |
address-pools:
- name: rpi-kube-pool-1
protocol: layer2
addresses:
- 192.168.122.190-192.168.122.209
kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.9.3/manifests/namespace.yaml
kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.9.3/manifests/metallb.yaml
kubectl create secret generic -n metallb-system memberlist --from-literal …Overview
This setup uses:
- Kubernetes 1.18
- eight servers running Ubuntu 20.04 LTS
- three master nodes
- five worker nodes
- all servers have a root drive and a data drive
- no swap drive
Setting up the servers
All servers are Ubuntu 20.04 LTS.
/etc/netplan/00-installer-config.yaml
kube-01 (master)
|
Some steps to create certificates using OpenSSL - self-signed or singned by a CA.
Creating the conf File used for creating the csr
srv1_tstlb_cert.conf:
[req]
distinguished_name = req_distinguished_name
req_extensions = v3_req
[req_distinguished_name]
countryName = Country Name (2 letter code)
countryName_default = CA
stateOrProvinceName = State or Province Name (full name) … 1. Configure servers
2. Configure HAProxy on all three nodes
3. Configure keepalived
4. Bind to non-local interfaces
5. Syslog config
6. Configure postfix on all three to just send email
I am using these three-node configuration with HAProxy as LB and reverse proxy for SMTP, IMAP, MariaDB Galera Cluster. …
Building a Postfix mail server on CentOS 7.
Steps
01. Server Configuration and design
02. Getting certificates for mai mail servers from Let's Encrypt
03. Installing MariaDB and creating the database
04. Installing Postfix 3.2
05. Configuring Postfix
main.cf
master.cf
virtual directories
virtual maps
06. Installing …
This is a configuration with three Squid cache servers using Keepalived for HA.
01. Servers and configurations
02. Installing Squid
03. Configuring the time server
04. Creating and configuring the cache folder for squid
05. Configuring squid
06. Configuring peering squid
07. Binding to non-local interfaces
08. Installing and Configuring …
Building a two-cluster MariaDB with garb (Galera Arbitrator).
MariaDB installed on its own partition.
Steps
1. Building and configuring the database servers
2. Adding a new drive to each of the servers to mount as /var/lib/mysql
3. Installing MariaDB and doing the initial configuration
4. Configuring both nodes for the …