Monday, 29 June 2020

ExecStart=/usr/bin/kubelet $KUBELET_KUBECONFIG_ARGS $KUBELET_CONFIG_ARGS $KUBELET_KUBEADM_ARGS $KUBELET_EXTRA_ARGS (code=exited, status=255)




sudo swapoff -a



/bin/systemctl restart firewalld.service

- 1 comment:

Sunday, 28 June 2020

ssh : Permission denied (publickey,gssapi-with-mic)




[root@ansible kube-cluster]# vi /etc/ssh/sshd_config


# To disable tunneled clear text passwords, change to no here!

PasswordAuthentication yes




[root@ansible kube-cluster]# service sshd restart

- No comments:

Saturday, 20 June 2020

Windows host through SSH bastion on Ansible



Pre requisite :

install the required Python packages pip install ansible pypsrp requests[socks]

command to route traffic 

ssh -o "ControlMaster=auto" -o "ControlPersist=no" -o "ControlPath=~/.ssh/cp/ssh-%r@%h:%p" -CfNq -D 127.0.0.1:2222 -p 2222 root@<bastion server IP>

[windowstarget]
<IP>
[windowstarget:vars]
ansible_user=<domain>\<username>
ansible_password=<password>
ansible_connection=psrp
ansible_psrp_protocol=http
ansible_psrp_proxy=socks5h://localhost:2222








REF#
- No comments:

Ansible inventory to connect juniper switch


[juniperswitch]
<IP>

[juniperswitch:vars]
ansible_connection=netconf
ansible_network_os=junos
ansible_user=<IP>
ansible_python_interpreter=/usr/bin/python2.7
ansible_password=<Password>

- No comments:

Ansible inventory to connect cisco router



[ciscorouter]
<IP>

[ciscorouter:vars]
ansible_connection=network_cli
ansible_become=yes
ansible_become_method=enable
ansible_network_os=ios
ansible_user=<username>
ansible_password=<password>
ansible_python_interpreter=/usr/bin/python2.7

- No comments:

Ansible inventory to connect vsphere firewall



ansible_user=<username>@vsphere.local
ansible_password=<password>
ansible_connection=winrm
ansible_port=5985
ansible_winrm_transport=ntlm
ansible_winrm_server_cert_validation=ignore
ansible_winrm_scheme=http

- No comments:

Ansible inventory to connect Paloalto firewall



ansible_user=<username>
ansible_password=<password>
ansible_network_os=eos
ansible_connection=network_cli
#ansible_httpapi_use_ssl=False
#ansible_httpapi_validate_certs=False

- No comments:

Ansible inventory to connect Windows host



[windows]
<IP>

[windows_2]

ansible_user=<domain\username>
ansible_password=<password>
ansible_port=<portno>
ansible_connection=winrm
ansible_winrm_server_cert_validation=ignore
#ansible_connection=winrm
#ansible_winrm_transport=kerberos
ansible_winrm_transport=ntlm

- No comments:

Ansible inventory to connect linux host



<IP> ansible_connection=ssh ansible_ssh_pass=<password> ansible_ssh_user=<username>

- No comments:

Configure QPID



Listener 

listener {
    host: 0.0.0.0
    port: 5001
    role: inter-router

Connector

Connector {
    host: public IP
    port: 5001
    role: inter-router
- No comments:

Regex pattern to convert puppet host file to ansible host



puppet cert list --all | egrep "^\+.*" | awk -F"\"" '{ print $2 }' > /etc/ansible/puppet_hosts
- No comments:

Saturday, 6 June 2020

Convert openssh to rsa key



ssh-keygen -p -m PEM -f ~/.ssh/id_rsa
- No comments: