Install Amazon AWS awscli Amazon Workmail AWS CloudFormation Getting Started with Amazon Elastic Beanstalk Deploy Docker Image using Elastic Beanstalk Amazon Route 53 DKIM error AWS Elastic Beanstalk Ubuntu pure-ftpd reply with unroutable address Amazon Elastic Container Registry Amazon EC2 Migrate AWS EC2 instance to another AWS account Prevent an EC2 Instance getting Terminated by […]
Amazon ElastiCache
Amazon ElastiCache to run Redis or Memcached cluster on Amazon cloud. You get some stats for your cache server/cluster. You can connect to the Endpoint from your application. There is no authentication, you can protect your server by placing it inside private network/vpc. […]
Cpanel Server Behind NAT – Amazon EC2
When your cpanel server is behind nat, for example Amazon EC2 where you have an internal IP and External IP. Go to Home > Server Configuration> Basic WebHost Manager® Setup Enter your servers internal IP where it ask for “The IPv4 address (only one address) to use to set up shared IPv4 virtual hosts.”. Now […]
Amazon Elastic IP The maximum number of addresses has been reached.
When assigning Elastic IP in Amazon AWS, i get error The maximum number of addresses has been reached. This is because Amazon only allow 5 Elastic IP address per region. You can see the AWS service limits at http://docs.aws.amazon.com/general/latest/gr/aws_service_limits.html […]
WordPress bitnami
Install LetsEncrypt SSL on Bitnami To stop/start service use ctlscript.sh
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 |
root@ip-172-31-26-46:~# /opt/bitnami/ctlscript.sh usage: /opt/bitnami/ctlscript.sh help /opt/bitnami/ctlscript.sh (start|stop|restart|status) /opt/bitnami/ctlscript.sh (start|stop|restart|status) mysql /opt/bitnami/ctlscript.sh (start|stop|restart|status) php-fpm /opt/bitnami/ctlscript.sh (start|stop|restart|status) apache help - this screen start - start the service(s) stop - stop the service(s) restart - restart or start the service(s) status - show the status of the service(s) root@ip-172-31-26-46:~# |
To stop MySQL, run
|
1 2 3 4 |
root@ip-172-31-26-46:~# /opt/bitnami/ctlscript.sh stop mysql Unmonitored mysql /opt/bitnami/mysql/scripts/ctl.sh : mysql stopped root@ip-172-31-26-46:~# |
To disable Banner on WordPress site, run
|
1 |
/opt/bitnami/apps/wordpress/bnconfig --disable_banner 1 |
Disable MySQL in Bitnami instance after moving Database to RDS
|
1 2 3 |
/opt/bitnami/ctlscript.sh stop mysql mv /opt/bitnami/mysql/scripts/ctl.sh /opt/bitnami/mysql/scripts/ctl.sh.disabled mv /opt/bitnami/config/monit/conf.d/mysql.conf /opt/bitnami/config/monit/conf.d/mysql.conf.disabled |
Apache Config VirtualHost entry for wordpress is available on file
|
1 |
vi /opt/bitnami/apache2/conf/bitnami/bitnami.conf |
[…]
Amazon EFS
Amazon EFS can be used to mount same drive on multiple EC2 instances allowing you to make web site scale on multiple web servers. To mount EFS drive on Ubuntu, you need to install
|
1 |
apt-get -y install nfs-common |
To mount a EFS drive, run
|
1 2 |
mkdir /efs mount -t nfs4 -o nfsvers=4.1,rsize=1048576,wsize=1048576,hard,timeo=600,retrans=2 fs-YOUR-ID.efs.us-east-1.amazonaws.com:/ /efs |
Here is fstab entry for to auto mount efs on boot. Here it […]
Enable Static External IP in Google Cloud
By default when you create a Compute Engine virtual machine in Google Cloud, you get public IP address. This IP address changes when you ever shutdown down your instance. To avoid IP getting changed, you need to reserve the IP address to do this, you need to change type of IP address from Ephemeral to […]
rancher
Rancher is an open source container management platform. https://rancher.com To install rancher, you need to install docker. Once you have docker installed and running, run
|
1 |
docker run -d --restart=unless-stopped -p 80:80 -p 443:443 --privileged rancher/rancher |
Now you will be able to access your Rancher installation at https://your-server-ip On your first visit, you will be asked to set password for user “admin”. Newer version of […]
Installing kubernetes master on Ubuntu 16.04
To install master on Ubuntu 16.04, lets start by installing docker.
|
1 2 |
apt-get update apt-get install -y docker.io |
Now install kubeadm
|
1 2 3 4 5 6 7 |
apt-get update && apt-get install -y apt-transport-https curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | apt-key add - cat <<EOF >/etc/apt/sources.list.d/kubernetes.list deb http://apt.kubernetes.io/ kubernetes-xenial main EOF apt-get update apt-get install -y kubelet kubeadm kubectl |
You can create kubernetes master by running kubeadmin init command.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 |
root@doc1:~# kubeadm init [kubeadm] WARNING: kubeadm is in beta, please do not use it for production clusters. [init] Using Kubernetes version: v1.8.5 [init] Using Authorization modes: [Node RBAC] [preflight] Running pre-flight checks [kubeadm] WARNING: starting in 1.8, tokens expire after 24 hours by default (if you require a non-expiring token use --token-ttl 0) [certificates] Generated ca certificate and key. [certificates] Generated apiserver certificate and key. [certificates] apiserver serving cert is signed for DNS names [doc1.elitetechs.com kubernetes kubernetes.default kubernetes.default.svc kubernetes.default.svc.cluster.local] and IPs [10.96.0.1 45.32.210.20] [certificates] Generated apiserver-kubelet-client certificate and key. [certificates] Generated sa key and public key. [certificates] Generated front-proxy-ca certificate and key. [certificates] Generated front-proxy-client certificate and key. [certificates] Valid certificates and keys now exist in "/etc/kubernetes/pki" [kubeconfig] Wrote KubeConfig file to disk: "admin.conf" [kubeconfig] Wrote KubeConfig file to disk: "kubelet.conf" [kubeconfig] Wrote KubeConfig file to disk: "controller-manager.conf" [kubeconfig] Wrote KubeConfig file to disk: "scheduler.conf" [controlplane] Wrote Static Pod manifest for component kube-apiserver to "/etc/kubernetes/manifests/kube-apiserver.yaml" [controlplane] Wrote Static Pod manifest for component kube-controller-manager to "/etc/kubernetes/manifests/kube-controller-manager.yaml" [controlplane] Wrote Static Pod manifest for component kube-scheduler to "/etc/kubernetes/manifests/kube-scheduler.yaml" [etcd] Wrote Static Pod manifest for a local etcd instance to "/etc/kubernetes/manifests/etcd.yaml" [init] Waiting for the kubelet to boot up the control plane as Static Pods from directory "/etc/kubernetes/manifests" [init] This often takes around a minute; or longer if the control plane images have to be pulled. [apiclient] All control plane components are healthy after 48.004158 seconds [uploadconfig] Storing the configuration used in ConfigMap "kubeadm-config" in the "kube-system" Namespace [markmaster] Will mark node doc1.elitetechs.com as master by adding a label and a taint [markmaster] Master doc1.elitetechs.com tainted and labelled with key/value: node-role.kubernetes.io/master="" [bootstraptoken] Using token: cfeeef.e7a85b6b4a55936c [bootstraptoken] Configured RBAC rules to allow Node Bootstrap tokens to post CSRs in order for nodes to get long term certificate credentials [bootstraptoken] Configured RBAC rules to allow the csrapprover controller automatically approve CSRs from a Node Bootstrap Token [bootstraptoken] Configured RBAC rules to allow certificate rotation for all node client certificates in the cluster [bootstraptoken] Creating the "cluster-info" ConfigMap in the "kube-public" namespace [addons] Applied essential addon: kube-dns [addons] Applied essential addon: kube-proxy Your Kubernetes master has initialized successfully! To start using your cluster, you need to run (as a regular user): mkdir -p $HOME/.kube sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config sudo chown $(id -u):$(id -g) $HOME/.kube/config You should now deploy a pod network to the cluster. Run "kubectl apply -f [podnetwork].yaml" with one of the options listed at: http://kubernetes.io/docs/admin/addons/ You can now join any number of machines by running the following on each node as root: kubeadm join --token cfeeef.e7a85b6b4a55936c 45.32.210.20:6443 --discovery-token-ca-cert-hash sha256:68540be50b8436e5d08c097ec9328b61398d8dd5a9a7449a1e55520b88d423f3 root@doc1:~# |
[…]