| #!/bin/bash | |
| CLUSTER_TAG=harvester-$(openssl rand -hex 6) | |
| ISO=/var/lib/libvirt/images/harvester-v1.3.0-amd64.iso | |
| for i in {1..2}; do \ | |
| VM_NAME=$(openssl rand -hex 4); \ | |
| sudo qemu-img create /var/lib/libvirt/images/${CLUSTER_TAG}-${VM_NAME}-ROOT_VOL.img 180G; \ | |
| sudo qemu-img create /var/lib/libvirt/images/${CLUSTER_TAG}-${VM_NAME}-DATA_VOL.img 250G; \ | |
| sudo virt-install \ |
Using virt-install to install SUSE Elemental on KVM.
When creating your Machine Registration Endpoint in the Rancher UI, ensure that registration.emulated-tpm-seed is set to -1, if you plan to add more than a single machine using the ISO you will be building.
For example:
| #!/usr/bin/env bash | |
| ### Setup UniFi Controller Software on Ubuntu ### | |
| # - Download Ubuntu 22.04: https://releases.ubuntu.com/jammy/ | |
| # - UniFi Controller Software Releases: https://community.ui.com/releases | |
| # - Updating and Installing Self-Hosted UniFi Network Servers (Linux): https://help.ui.com/hc/en-us/articles/220066768 | |
| # - Self-Hosting a UniFi Network Server: https://help.ui.com/hc/en-us/articles/360012282453 | |
| # - UniFi - Repairing Database Issues on the UniFi Network Application: https://help.ui.com/hc/en-us/articles/360006634094 | |
| # - UISP Installation Guide: https://help.ui.com/hc/en-us/articles/115012196527-UNMS-Installation-Guide |
This is a short guide to deploying a three-node Kubernetes cluster using K3s, including kube-vip to provide a HA control-plane and to manage LoadBalancer Service resources, and finally as Cilium as our CNI with the Egress Gateway feature enabled. We'll also heavily lean into Cilium's support for eBPF by doing away with kube-proxy entirely, but note that this does come with some limitations.
First, let's set some common options for K3s:
export K3S_VERSION="v1.22.4+k3s1"
export K3S_OPTIONS="--flannel-backend=none --no-flannel --disable-kube-proxy --disable-network-policy"
Lima (Linux virtual machines, on macOS) installation guide for M1 Mac.
Sep. 27th 2021 UPDATED
Now we can install patched version of QEMU via Homebrew (thank you everyone for the info!). Here is the updated instruction with it:
Used M1 Mac mini 2020 with macOS Big Sur Version 11.6.
If you're reading this, chances are you have some idea of eBPF and XDP. In this article, we'll write an eBPF program that will count and categorize packets based on the destination port.
Writing low-level tracing, monitoring, or network programs in Linux is not easy. Through all the layers of the kernel, people have been squeezing every bit of performance they could get.
And that's where eBPF comes in. eBPF is basically an extended and modern variation of BPF which is like a virtual machine inside the Linux kernel. It can execute user-defined programs inside a sandbox in the kernel.
These programs can be executed in various hook points but we will focus on XDP for now.
Users added in Rancher get an object of kind User.
For them to be able to do anything, they need to login to Rancher and authenticate via the external AuthN provider. An instance of kind Token is then created which contains the User Principal account details:
$ kubectl describe user u-smckoeh6vq
Name: u-smckoeh6vq
Namespace:
The following list is sorted from general to specific.
(i.e. A listener contains a filter_chain which has either network filters or http filters...etc)
