Category: Cloud – Page 3

Resize Amazon EC2 Boot Disk

Posted on March 8, 2019 (March 13, 2021) by ServerOk

Once you resize disk in Amazon AWS console, it get auto resized on reboot. Some times this won’t happen, you have to manually resize the disk. To resize disk, do the following. 1) Take a snapshot of the disk 2) Create a new server in same availability zone as current server. Lets call it tmpServer. […]

VMWare ESXI add SSH key

Posted on February 23, 2019 by ServerOk

To enable password less SSH login on VMWare ESXI server, add your SSH key to file

/etc/ssh/keys-root/authorized_keys

1	/etc/ssh/keys-root/authorized_keys

[…]

VMWare esxcli

Posted on February 23, 2019 (March 2, 2019) by ServerOk

To list all running VM, run

esxcli vm process list

1	esxcli vm process list

To list all installed software

esxcli software vib list

1	esxcli software vib list

Example

[root@server:~] esxcli software vib list | grep esx-ui
esx-ui                         1.33.1-12086396                       VMware   VMwareCertified   2019-02-24
[root@server:~]

[root@server:~] esxcli software vib list | grep esx-ui

esx-ui 1.33.1-12086396 VMware VMwareCertified 2019-02-24

[root@server:~]

[…]

Google Cloud open a port in firewall

Posted on February 17, 2019 by ServerOk

To open port 80 globally for all VMs on google cloud project, run

gcloud compute firewall-rules create allow-port80-all --allow tcp:80 --source-ranges 0.0.0.0/0 --network default

1	gcloud compute firewall-rules create allow-port80-all --allow tcp:80 --source-ranges 0.0.0.0/0 --network default

[…]

Route 53

Posted on February 16, 2019 by ServerOk

Amazon Route 53 DKIM error […]

Amazon Route 53 DKIM error

Posted on February 16, 2019 (February 16, 2019) by ServerOk

DKIM keys failed to validate on a mail server. The domain used Amazon ROute 53 DNS server. amavisd-new showkeys command print out following public key for this domain.

root@mail:~# amavisd-new showkeys
; key#1 1024 bits, i=dkim, d=temashipyard.com.gh, /var/lib/dkim/temashipyard.com.gh.pem
dkim._domainkey.temashipyard.com.gh.	3600 TXT (
  "v=DKIM1; p="
  "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDWcxPI2x5A0JtsRFfm6w8FNoWe"
  "tDPtFAQz7fbWfIQC98sth7407E7IiskMDGL1Je1OCP/0nKT3IkduNjh1yJlzN5db"
  "/phTtdIKsPmGAcqjskDBqLKRiKmPhknZVfO0EwqwCrFO0i9ZpN9"
  "vTGmquN0EdzPLK77iQIDAQAB")

root@mail:~#

root@mail:~# amavisd-new showkeys

; key#1 1024 bits, i=dkim, d=temashipyard.com.gh, /var/lib/dkim/temashipyard.com.gh.pem

dkim._domainkey.temashipyard.com.gh. 3600 TXT (

"v=DKIM1; p="

"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDWcxPI2x5A0JtsRFfm6w8FNoWe"

"tDPtFAQz7fbWfIQC98sth7407E7IiskMDGL1Je1OCP/0nKT3IkduNjh1yJlzN5db"

"/phTtdIKsPmGAcqjskDBqLKRiKmPhknZVfO0EwqwCrFO0i9ZpN9"

"vTGmquN0EdzPLK77iQIDAQAB")

root@mail:~#

When you cut and paste this in Amazon ROute 53, it get treadted as 4 seperate TXT records.

root@mail:~# nslookup -q=txt dkim._domainkey.temashipyard.com.gh
Server:		172.31.0.2
Address:	172.31.0.2#53

Non-authoritative answer:
dkim._domainkey.temashipyard.com.gh	text = "v=DKIM1; p="
dkim._domainkey.temashipyard.com.gh	text = "vTGmquN0EdzPLK77iQIDAQAB"
dkim._domainkey.temashipyard.com.gh	text = "/phTtdIKsPmGAcqjskDBqLKRiKmPhknZVfO0EwqwCrFO0i9ZpN9MFBoY91Bzt9o4"
dkim._domainkey.temashipyard.com.gh	text = "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDWcxPI2x5A0JtsRFfm6w8FNoWe"
dkim._domainkey.temashipyard.com.gh	text = "tDPtFAQz7fbWfIQC98sth7407E7IiskMDGL1Je1OCP/0nKT3IkduNjh1yJlzN5db"

Authoritative answers can be found from:

root@mail:~#

root@mail:~# nslookup -q=txt dkim._domainkey.temashipyard.com.gh

Server: 172.31.0.2

Address: 172.31.0.2#53

Non-authoritative answer:

dkim._domainkey.temashipyard.com.gh text = "v=DKIM1; p="

dkim._domainkey.temashipyard.com.gh text = "vTGmquN0EdzPLK77iQIDAQAB"

dkim._domainkey.temashipyard.com.gh text = "/phTtdIKsPmGAcqjskDBqLKRiKmPhknZVfO0EwqwCrFO0i9ZpN9MFBoY91Bzt9o4"

dkim._domainkey.temashipyard.com.gh text = "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDWcxPI2x5A0JtsRFfm6w8FNoWe"

dkim._domainkey.temashipyard.com.gh text = "tDPtFAQz7fbWfIQC98sth7407E7IiskMDGL1Je1OCP/0nKT3IkduNjh1yJlzN5db"

Authoritative answers can be found from:

root@mail:~#

When i test with

root@mail:~# amavisd-new testkeys
TESTING#1 temashipyard.com.gh: dkim._domainkey.temashipyard.com.gh => invalid (public key: syntax error)
root@mail:~#

root@mail:~# amavisd-new testkeys

TESTING#1 temashipyard.com.gh: dkim._domainkey.temashipyard.com.gh => invalid (public key: syntax error)

root@mail:~#

It shows […]

kubectl

Posted on February 10, 2019 (February 9, 2021) by ServerOk

kubectl command is used to manage Kubernetes Clusters. To install kubectl on Linux, run

wget https://raw.githubusercontent.com/serverok/server-setup/master/install/kubectl.sh
bash kubectl.sh

1 2	wget https://raw.githubusercontent.com/serverok/server-setup/master/install/kubectl.sh bash kubectl.sh

On Ubuntu, you can install from snap using

sudo snap install kubectl --classic

1	sudo snap install kubectl --classic

or with apt

apt-get install kubectl

1	apt-get install kubectl

To get help, run

kubectl help

1	kubectl help

Check if Kubernetes environment is ready

kubectl version

1	kubectl version

Run nginx container

kubectl run nginx --image=nginx:1.10.0

1	kubectl run nginx --image=nginx:1.10.0

Connect to a pod

kubectl exec monolith --stdin --tty -c monolith /bin/sh

1	kubectl exec monolith --stdin --tty -c monolith /bin/sh

Execute a command in pod

kubectl exec POD-ID-HERE -- COMMAND_HERE

1	kubectl exec POD-ID-HERE -- COMMAND_HERE

[…]

Install LetsEncrypt SSL on Bitnami

Posted on January 27, 2019 (December 14, 2019) by ServerOk

To install LetsEncrypt SSL on bitnami wordpress server, install letsencrypt with

wget https://raw.githubusercontent.com/serverok/server-setup/master/install/letsencrypt.sh
sh ./letsencrypt.sh

1 2	wget https://raw.githubusercontent.com/serverok/server-setup/master/install/letsencrypt.sh sh ./letsencrypt.sh

Stop apache web server with

/opt/bitnami/ctlscript.sh stop apache

1	/opt/bitnami/ctlscript.sh stop apache

Now get SSL certificate using certbot

certbot certonly --standalone -d YOUR-DOMAIN.EXT -d www.YOUR-DOMAIN.EXT

1	certbot certonly --standalone -d YOUR-DOMAIN.EXT -d www.YOUR-DOMAIN.EXT

Now you have SSL certficate, lets copy it to bitnami folder

cat /etc/letsencrypt/live/YOUR-DOMAIN.EXT/privkey.pem >  /opt/bitnami/apache2/conf/server.key
cat /etc/letsencrypt/live/YOUR-DOMAIN.EXT/cert.pem > /opt/bitnami/apache2/conf/server.crt
cat /etc/letsencrypt/live/YOUR-DOMAIN.EXT/chain.pem >> /opt/bitnami/apache2/conf/server.crt

cat /etc/letsencrypt/live/YOUR-DOMAIN.EXT/privkey.pem > /opt/bitnami/apache2/conf/server.key

cat /etc/letsencrypt/live/YOUR-DOMAIN.EXT/cert.pem > /opt/bitnami/apache2/conf/server.crt

cat /etc/letsencrypt/live/YOUR-DOMAIN.EXT/chain.pem >> /opt/bitnami/apache2/conf/server.crt

Start the web server with

/opt/bitnami/ctlscript.sh start apache

1	/opt/bitnami/ctlscript.sh start apache

Auto Renew LetsEncrypt Create file

mkdir /usr/serverok
vi /usr/serverok/ssl-renew

1 2	mkdir /usr/serverok vi /usr/serverok/ssl-renew

Add following to the file. Replace […]

How to add ISO to VMware ESXi

Posted on December 31, 2018 (November 13, 2020) by ServerOk

To add ISO to VMware ESXi, enable SSH access VMware > Actions > Services > Enable Secure Shell (SSH) Once enabled, you will be able to login to server using SSH. Once logged in, go to folder

cd /vmfs/volumes/datastore1

1	cd /vmfs/volumes/datastore1

Create a folder ISO and change directory to ISO folder.

mkdir ISO
cd ISO

1 2	mkdir ISO cd ISO

Now you can download whatever ISO […]

Google Cloud SSH using gcloud command line

Posted on December 24, 2018 by ServerOk

To get SSH access to a Google Compute VM using gcloud command line tool, run

gcloud compute --project "PROJECT_NAME_JERE" ssh --zone "ZONE_HERE" "VM_NAME_HERE"

1	gcloud compute --project "PROJECT_NAME_JERE" ssh --zone "ZONE_HERE" "VM_NAME_HERE"

To list all instances, run

gcloud compute instances list

1	gcloud compute instances list

[…]