Kubernetes Cluster Setup with KubeKey

In this HowTo I will create a 3-node Kubernetes cluster where all nodes hold all Kubernetes roles (controlplane, worker and etcd). As Linux distribution I used Fedora 38 Server edition. I created three VMs with about 8GB memory and an extra 50+GB /data partition for later usage. I call my VMs in this HowTo vkube-1... » weiterlesen

Grafana – Workaround for Templated Dashboard/Panel Playlists

As there still is no option to create a proper dashboard/panel playlist for templated dashboards (see this issue "Support for playlist with templating variables" starting 2014(!)) I searched for quite a bit and found a nice HTML/JavaScript page that could do that. But unfortunately, as browsers make someone’s life harder and harder, basic-auth credentials do... » weiterlesen

CheckMK v2 – Coding own SNMP-Check Plugin

No word about CheckMK’s supplied documentation :expressionless: In this example we add some features for the included SNMP-check kemp_loadmaster_services. For whatever reason, the included check only has hardcoded thresholds, and only takes "Active Connections" into account. Besides it is not yet migrated to CMK v2.0 which we will do in this course. Plugin Structure SNMP-plugins... » weiterlesen

CheckMK v2 – Coding own Active-Check Plugin

Again CheckMK thought it’s awesome to change everything with v2.3, rename all kinds of functions etc., say somehow normal active-checks are now deprecated and still have no real documentation available – I really cannot stand why they make such mystery around their stuff. This is what I found out so far – for the "Check-File"... » weiterlesen

Renaming pfSense Interfaces

Only recommended for a fresh setup. I do not take any responsibility if you brick your config. Always make sure you have a recent backup of your config before tinkering with the config-file! If you are using for example pfELK for analysing your logs from your pfSense firewall, you may want to rename your interfaces... » weiterlesen

Elasticsearch As Log-Buffer

Why? What is that good for? Save license-costs and putting ingest-pipeline load somewhere else! :smiley: At my workplace we currently parse the events mostly with Logstash, but configuring those grok-filters so that the messages are ECS-comform is a lot of work. Yes, I know that there is a possibility to export those ingest-pipelines from Beats... » weiterlesen

Setup 3 Node Kubernetes 1.20 HA-Cluster (Without Docker) on Fedora 33

Master nodes will be worker nodes too (resources you know :wink:) We will use Keepalived and HAproxy as load-balancer for Kubernetes control-traffic. The whole Kubernetes-Cluster won’t use Docker anymore. Prerequisites Three machines setup with minimal installation of Fedora 33 Server. I will call them vkube-001 (192.168.100.120) vkube-002 (192.168.100.121) vkube-003 (192.168.100.122) One VIP (192.168.100.123) which we... » weiterlesen

Check_MK – pfSense State Table Check (SNMP)

I needed a quick and dirty check for the pfSense’s "State Table" via SNMP as I sometimes have the strange problem that it gets full and then I lose internet-connection. If the thresholds are hit and I am alerted, I hope I have time to investigate what is going wrong. The Check The default values... » weiterlesen

PART-5 – Elasticsearch Templates And Policies

PART-5 – Elasticsearch Templates And Policies I have to update this page – as the templating stuff is not working as intended for none-legacy indices! Because we use Logstash for analysing Logs, we have to prepare templates and ILM policies. Setting Up ILM-Policies And Index-Templates For this setup I created an index-template listening for index-pattern... » weiterlesen