How to convert godaddy certification files from .cert to .pem Recently days, I met an issue to renew ssl certification file for a website. The former developer setup certification file to .pem. It take a long time to make it work. Here we go. Convert .crt to .pem # convert .key file to key.pem openssl rsa -in mywebsite.com.key -text > key.pem # convert .cert to cert.pem cat mywebsite.com.crt > cert.pem # add cert chain to the cert.
How to enable NTFS Read and Write in Macos Catalina 10.15 For a long time. It was much trouble to enable ntfs write mode in macos. Today I done it about enable ntfs wirte support with fuse and ntfs-3g. Install FUSE for macos You can download latest FUSE for macOS from here: FUSE for macOS Then you can install it by yourself. Install ntfs-3g brew install ntfs-3g Replace ntfs-3g Since from OS X 10.
How to Install Graylog with Docker-compose Hostname my-graylog Docker-compose.yaml version:'2'services:# MongoDB: https://hub.docker.com/_/mongo/mongodb:image:mongo:3volumes:- ./data/mongo_data:/data/db- /etc/localtime:/etc/localtime:ro# Elasticsearch: https://www.elastic.co/guide/en/elasticsearch/reference/6.x/docker.htmlelasticsearch:image:docker.elastic.co/elasticsearch/elasticsearch-oss:6.8.2volumes:- ./data/es_data:/usr/share/elasticsearch/data- /etc/localtime:/etc/localtime:roenvironment:- http.host=0.0.0.0- transport.host=localhost- network.host=0.0.0.0- "ES_JAVA_OPTS=-Xms512m -Xmx512m"ulimits:memlock:soft:-1hard:-1mem_limit:1g# Graylog: https://hub.docker.com/r/graylog/graylog/graylog:image:graylog/graylog:3.1volumes:- ./data/graylog_journal:/usr/share/graylog/data/journal- /etc/localtime:/etc/localtime:roenvironment:# CHANGE ME (must be at least 16 characters)!- GRAYLOG_PASSWORD_SECRET=somepasswordpepper# Password: admin- GRAYLOG_ROOT_PASSWORD_SHA2=8c6976e5b5410415bde908bd4dee15dfb167a9c873fc4bb8a81f6f2ab448a918- GRAYLOG_HTTP_EXTERNAL_URI=http://my-graylog:9000/links:- mongodb:mongo- elasticsearchdepends_on:- mongodb- elasticsearchports:# Graylog web interface and REST API- 9000:9000# Syslog TCP- 1514:1514# Syslog UDP- 1514:1514/udp# GELF TCP- 12201:12201# GELF UDP- 12201:12201/udp# Volumes for persisting data, see https://docs.
How to build ipse site-to-site VPN with vyos and pfsense Vyos VS pfsense For build all kinds of network functions like nat,firewall, site-to-site vpn , dial in vpn with pfsense.It works well. But it has some Crons: Hard to upgrade version, it manybe crashed Didn’t support API. Heavy loading and low performance. After try to replace pfsense to build all functions with vyos. It has a lot of pros:
How to install Jenkins with docker compose Create Dockerfile With office jenkins docker images.change the jenkins mirrors and change alpine linux soure list to aliyun #DockerfileFROM jenkins/jenkins:alpineUSER rootENV JENKINS_MIRROR https://mirrors.tuna.tsinghua.edu.cnENV JENKINS_UC_DOWNLOAD="https://mirrors.tuna.tsinghua.edu.cn/jenkins/"RUN sed -i 's/dl-cdn.alpinelinux.org/mirrors.aliyun.com/g' /etc/apk/repositories \&&apk update \&&apk add docker nodejs nodejs-npm yarnCreate docker-compose.yaml # docker-compose.yamlversion:"2.4"services:jenkins:build:./#image: jenkins/jenkins:alpinecontainer_name:jenkinsports:- "80:8080"- "50000:50000"environment:#- JAVA_OPTS=-Xmx1500m -Duser.timezone=GMT+8- JAVA_OPTS=-Duser.timezone=GMT+8- JENKINS_UC_DOWNLOAD=https://mirrors.tuna.tsinghua.edu.cn/jenkins/volumes:- ./data/jenkins:/var/jenkins_home- /var/run/docker.sock:/var/run/docker.sock- /root/.ssh/:/root/.ssh- /etc/localtime:/etc/localtime:ro# cpus: 3.5# mem_limit: 1800muser:rootrestart:alwaysInstall Jenkins with Check initial Admin Password by run command
How to Install gitlab with docer-compose version:"3.5"services:gitlab:image:gitlab/gitlab-ce:latestcontainer_name:gitlabrestart:alwayshostname:'xa-gitlab'environment:GITLAB_OMNIBUS_CONFIG:|external_url 'http://xa-gitlab' gitlab_rails['backup_keep_time'] = 604800 gitlab_rails['time_zone'] = 'Asia/Shanghai' gitlab_rails['gitlab_shell_ssh_port'] = 1022 #gitlab_rails['ldap_enabled'] = true #gitlab_rails['ldap_servers'] = YAML.load <<-EOS #main: # label: 'LDAP' # host: '192.168.1.1' # port: 389 # uid: 'uid' # bind_dn: 'CN=admin,DC=lotbrick,DC=com' # password: 'admin' # user_filter: 'objectclass=person' # base: 'ou=People,dc=xxxxx,dc=com' # active_directory: false # method: 'plain' # attributes: # username: ["cn"] # email: ['email'] # name: 'displayName' # first_name: 'givenName' #
How to Change Settings After Clone Debian 10 With Cloudinit Enable on Proxmox VE Issue I found an issue about create a linux vm as a template with cloudinit enabled. Seem like after cloned the virtual machine, the cloud-init cd rom didn’t be created automatically. We need to delete it,then change setings again to apply the apt source. solution #!/usr/bin/env sh mv /etc/apt/sources.list /etc/apt/sources.list.backup wget https://mirrors.ustc.edu.cn/repogen/conf/debian-http-4-buster -O /etc/apt/sources.list apt update && apt -y dist-upgrade apt install -y openssh-server git vim cloud-init apt-transport-https sed -i 's/http/https/g' /etc/apt/sources.
How to install Elasticflow Today, i found a good software that is Elasticflow. It is so perfect for us to monitor status of our networking. So I tried to install it will docker-compose way. You know what, after servial hours, fixed a lot bugs it works. Download and modified docker-compose.yml for elasticflow # Download `docker-compose.yml` for elasticflow wget https://raw.githubusercontent.com/robcowart/elastiflow/master/docker-compose.yml # version 3.5.2 is now existed. So we need change it to `3.
How to Deploy Cloud Images on PVE To deploy cloud images on pve has a lot of benifit, for example, auto expand disk capicity, auto update and auto deploy virtual machine. How to deploy debian 10 colud image on pve I perfer to debian as my first choice between all of the linux distributes. since it has light footprinting and more stable.
Some tips for management proxmxo VE Force shutdown a vm #List all vm in pve qm list # qm unlock the specific vm qm unlock <vmid> # qm stop the specific vm qm stop <vmid> # qm shutdown the specific vm qm shutdown <vmid> # Check vm status qm list | grep <vmid>
How to install and configure FreeRADIUS with Active Directory allow specific group of users to authenticate in Debian 10 serval years ago,I built freeradius server in centos 6 work with active directory. It works perfect with wifi authortication and ikev2 vpn authortication. But recently days, I found a bug that the radius server can not limit user access to a group in AD. So I’m trying to build a new
How to change default swap settings for Proxmox VE Check Default swap policy from value 60 to 0 cat /proc/sys/vm/swappiness #default value is 60 , it means when the memory remain 60, the swap will be enable Change swap policy # Temp to change default swap enable when memory remain 0. sysctl vm.swappiness=0 # Permanent to change swapp cat << EOF >> /etc/sysctl.conf vm.swappiness=0 #apply settings sysctl -p # check cat /proc/sys/vm/swappiness Vacuum swap swapoff -a swapon -a
How to Setup Vyos as a Firewall Setup interface Interface IP Address Description eth0 pppoe WAN eth1 192.168.68.1 / 24 DMZ eth2 10.0.0.1 / 24 LAN set interface ethernet eth0 pppoe 0 user-id '<pppoe accout>' set interface ethernet eth0 pppoe 0 password '<pppoe password>' set interface ethernet eth0 pppoe 0 name-server 'none' set interface ethernet eth0 description 'WAN' set interface ethernet eth1 address 192.
How to Deploy Bookstack with Docker Compose Bookstack is a good opensource solution for enterprie document management with light footprinting. It support auth like ldap,active directory,google,azure,aws,slack etc. and it can export document as pdf file. Preparation Install docker and docker-compose on debian 10 Information for bookstack installation. Type Value Hostname mybookstack Domainame mydomain.local AD Auth User stevedong Domain Controller IP <domain contoller IP> Time Zone Asia/Shanghai How to fix export chinese pdf document with error Install chinese fonts on docker server host apt install fonts-wqy-microhei fonts-wqy-zenhei xfonts-wqy customized dockerfile with option: environments:# To let bookstack export pdf with chinese language supported.
How to configure debian 10 as a docker server After try to install docker in LXC with proxmox ve, there will be some issues to make docker stop working. At last, I gave up and brance pure linux as docker sever. Install debian 10 in promxox ve Configure deiban 10 vm with ‘qemu-agent’ checked. After install deiban 10 Change source list mv /etc/apt/sources.list /etc/apt/sources.list.backup wget https://mirrors.ustc.edu.cn/repogen/conf/debian-http-4-buster -O /etc/apt/sources.list apt update && apt -y dist-upgrade apt install -y openssh-server git vim cloud-init apt-transport-https sed -i 's/http/https/g' /etc/apt/sources.