BGP
Border Gateway Protocol (BGP) was designed as Exterior Gateway Protocol (EGP) between autonomous systems . . . may not be on the common subnet because it uses TCP (port 179). It does advertise prefixes. It also . . . retry attempt * Connect: BGP is waiting for the TCP connection to be completed * Active: TCP connection . . . listening for incoming connections * Opensent: TCP connection has been established and Open message . . .
13K - last updated 2016-11-24 23:57 UTC by 1423
How to automate Kubernetes cluster build in Openstack using a Heat (HOT) template
This article further enhances Kubernetes cluster build process described in How to build a Kubernetes . . . tune.ssl.default-dh-param 2048 defaults mode tcp log global timeout connect 5000ms timeout server . . . python-sphinx_rtd_theme - bind-utils - mlocate - tcpdump - telnet package_update: true proxy_boot_config_2: . . . tune.ssl.default-dh-param 2048 defaults mode tcp log global timeout connect 5000ms timeout server . . . python-sphinx_rtd_theme - bind-utils - mlocate - tcpdump - telnet package_update: true proxy_boot_script: . . .
42K - last updated 2023-03-29 08:31 UTC by 1423
How to automate Kubernetes cluster build in Openstack using a Heat HOT template
This article further enhances Kubernetes cluster build process described in [[How to build a Kubernetes . . . tune.ssl.default-dh-param 2048 defaults mode tcp log global timeout connect 5000ms timeout server . . . python-sphinx_rtd_theme - bind-utils - mlocate - tcpdump - telnet package_update: true proxy_boot_config_2: . . . tune.ssl.default-dh-param 2048 defaults mode tcp log global timeout connect 5000ms timeout server . . . python-sphinx_rtd_theme - bind-utils - mlocate - tcpdump - telnet package_update: true proxy_boot_script: . . .
43K - last updated 2020-02-11 01:10 UTC by 1423
How to build a Kubernetes cluster in Openstack for orchestrating Docker containers
"Kubernetes is a portable, extensible open-source platform for managing containerized workloads and services, . . . 3.13. Configure pass-through SSL for tcp port 6443 for 3 Kubernetes master nodes vi /opt/haproxy/etc/haproxy.conf . . . /run/systemd/journal/syslog local6 defaults mode tcp log global timeout connect 5000ms timeout server . . . --add-rule ipv4 filter IN_public_allow 0 -p tcp --dport 2379 -m conntrack --ctstate NEW -j ACCEPT . . . --add-rule ipv4 filter IN_public_allow 0 -p tcp --dport 2380 -m conntrack --ctstate NEW -j ACCEPT . . .
20K - last updated 2019-06-12 23:56 UTC by 1423
How to build docker containers
I build essential containers for statistical analysis tools, mainly for R, RStudio Server, Shiny Server . . . --add-rule ipv4 filter IN_public_allow 0 -p tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT . . . --add-rule ipv4 filter IN_public_allow 0 -p tcp --dport 443 -m conntrack --ctstate NEW -j ACCEPT . . . \ --mount 'type=volume,dst=/oracle,volume-opt=type=nfs,volume-opt=device=:/cluster/oracle,"volume-opt=o=addr=<netapp-ip>,nfsvers=3,hard,retrans=2,nointr,nolock,timeo=600,tcp,fg,rw"' . . . \ -v /etc/rstudio:/etc/rstudio:ro \ -v . . .
16K - last updated 2023-11-22 14:24 UTC by 1423
How to install elasticsearch, kibana and fluentd in k8s
k8s cluster provides a convinient environment for elastic search cluster fronted with redundant kibana . . . 9300 name: elastic-cluster protocol: TCP - containerPort: 9200 name: elastic-http protocol: . . . TCP resources: {} terminationMessagePath: /dev/termination-log . . . SingleStack ports: - port: 443 protocol: TCP targetPort: 5601 selector: app: kibana sessionAffinity: . . . kibana ports: - containerPort: 5601 protocol: TCP resources: {} terminationMessagePath: /dev/termination-log . . .
17K - last updated 2023-03-29 08:54 UTC by 1423
How to install JupyterHub in Kubernetes
!JupyterHub allows users to interact with a computing environment through a webpage. As most devices . . . AGE hub ClusterIP 10.100.254.40 <none> 8081/TCP 21s proxy-api ClusterIP 10.108.146.3 <none> 8001/TCP . . . LoadBalancer 10.102.222.146 <pending> 80:32522/TCP,443:32022/TCP 21s ==> v1/ServiceAccount NAME SECRETS . . . frontend sni timeout client 86400000 bind :443 tcp-request inspect-delay 5s tcp-request content accept . . . containerPort: 8443 name: proxy-https protocol: TCP - containerPort: 8000 name: proxy-public protocol: . . .
12K - last updated 2020-02-11 01:49 UTC by 1423
How to install Kubernetes Dashboard with Ingress Controller
Kubernetes dashboard provides web-based interface to Kubernetes. The steps below are partially based . . . metrics-server ports: - port: 443 protocol: TCP targetPort: 443 kubectl apply -f metrics-server.yaml . . . ports: - containerPort: 8443 protocol: TCP args: - --auto-generate-certificates - --namespace=kubernetes-dashboard . . . ports: - containerPort: 8000 protocol: TCP livenessProbe: httpGet: scheme: HTTP path: / port: . . . frontend https timeout client 86400000 bind :443 tcp-request inspect-delay 5s tcp-request content accept . . .
16K - last updated 2020-02-11 02:03 UTC by 1423
How to install openstack cloud provider in k8s
Openstack Cloud Provider for kubernetes with relevant plugins allow to use Openstack load balancers, . . . name: nginx ports: - containerPort: 80 protocol: TCP volumeMounts: - mountPath: /var/lib/www/html name: . . .
5K - last updated 2020-02-11 02:09 UTC by 1423
IPfilter
This is how to setup ipfilter in Solaris 10 1. Create configuration files in /etc/ipf and enable ipfilter . . . internal interface pass in quick log first proto tcp/udp from $int1_net to any keep state keep frags . . . internal interface pass in quick log first proto tcp/udp from $int2_net to any keep state keep frags . . . 20 #### SSH access pass in quick log first proto tcp from $x_net to $int_pool port = 22 flags S keep . . . HTTP/HTTPS access pass in quick log first proto tcp from any to $web_server port = 80 flags S keep . . .
7K - last updated 2009-02-10 15:04 UTC by arkadi
IPSec on Solaris
= IPSec on Solaris = == Quick steps to enable Solaris IPSec (in transport mode) == 1. Enter computer . . . {laddr computer1 raddr computer2 proto tcp rport 23} ipsec {encr_algs aes encr_auth_algs sha1} . . . {laddr computer1 raddr computer2 proto tcp lport 23} ipsec {encr_algs aes encr_auth_algs sha1} . . .
4K - last updated 2011-03-23 03:51 UTC by arkadi
Kerberos KDC server on Solaris
= Kerberos on Solaris = This is a guick guide to MIT 1.4 Solaris 10u5 implementation of Kerberos V. For . . . IN SRV 0 0 88 kdc2.domain.com. _kerberos._tcp.KRB_REALM. IN SRV 0 0 88 kdc2.domain.com. _kerberos._udp.KRB_REALM. . . . IN SRV 1 0 88 kdc1.domain.com. _kerberos._tcp.KRB_REALM. IN SRV 1 0 88 kdc1.domain.com. _kerberos-adm._udp.KRB_REALM. . . . IN SRV 0 0 749 kdc1.domain.com. _kerberos-adm._tcp.KRB_REALM. IN SRV 0 0 749 kdc1.domain.com. _kpasswd._udp.KRB_REALM. . . . IN SRV 1 0 88 kdc1.domain.com. _kerberos-master._tcp.KRB_REALM. IN SRV 1 0 88 kdc1.domain.com. _kerberos.domain.com. . . .
14K - last updated 2008-11-12 18:27 UTC by arkadi
Layer 4
== Transport Layer Protocols == * [[UDP]] * [[TCP]] . . .
1K - last updated 2016-12-03 23:42 UTC by 1423
Monitoring k8s cluster with Prometheus
Traditionally servers are monitored with Icinga, Nagios, Prtg, etc. Kubernetes though is more convinient . . . metrics-server ports: - port: 443 protocol: TCP targetPort: 443 2. Apply the manifest kubectl apply . . . containerPort: 8080 hostPort: 8080 protocol: TCP automountServiceAccountToken: false terminationGracePeriodSeconds: . . . --add-rule ipv4 filter IN_public_allow 0 -p tcp --dport 8080 -m conntrack --ctstate NEW -j ACCEPT . . . name: http nodePort: 30800 port: 8080 protocol: TCP targetPort: 8080 selector: app.kubernetes.io/instance: . . .
21K - last updated 2023-11-22 14:21 UTC by 1423
Monitoring Resources with Nagios
== Overview == Overview can be obtained from Nagios built-in documentation or on their web site [http://nagios.sourceforge.net/docs/3_0/toc.html . . . # vi /etc/inet/inetd.conf nsca stream tcp6 nowait nagios /usr/local/nagios/bin/nsca nsca . . . -o /var/tmp # svccfg import /var/tmp/nsca-tcp6.xml # inetadm|grep nsca enabled online svc:/network/nsca/tcp6:default . . . debug=1 # inetadm -d svc:/network/nsca/tcp6:default # /usr/local/nagios/bin/nsca nsca -c /usr/local/nagios/etc/nsca.cfg . . .
16K - last updated 2008-10-25 15:32 UTC by arkadi
PPTP
Point-to-Point Tunneling Protocol is another obsolete method to encapsulate PPP packets in a GRE tunnel. . . . PPTP uses TCP (port 1723) for control channel. As L2TP, PPTP . . .
1K - last updated 2016-12-04 05:57 UTC by 1423
Quagga BGP routing
This is how to setup bgp routing on Solaris 10 with quagga. For more information see http://www.quagga.net/ . . . bgp # routeadm # vi /etc/services zebrasrv 2600/tcp # zebra service zebra 2601/tcp # zebra vty ripd . . . 2602/tcp # RIPd vty ripngd 2603/tcp # RIPngd vty ospfd 2604/tcp . . . # OSPFd vty bgpd 2605/tcp # BGPd vty ospf6d 2606/tcp # OSPF6d vty ospfapi . . . 2607/tcp # ospfapi isisd 2608/tcp # ISISd vty # quaggaadm . . .
4K - last updated 2009-02-10 15:31 UTC by arkadi
snort
snort is an open source package that runs under most OSs including Windows. It can be run in few modes: . . . [192.168.1.0/24,10.1.1.0/24] === Rules === alert tcp any any -> $IPS $PORTS (flags:S; msg:"SYN packet";) . . . for a flow preprocessor stream5_global[:[track_tcp <yes|no>][,max_tcp <num>][,memcap <bytes>][,track_udp . . . <name>][,use_side_channel]] preprocessor stream5_tcp[:[log_asymmetric_traffic <yes|no>][,bind_to <dest_ip>][,timeout . . . port scans. preprocessor sfportscan[:[proto <TCP[,UDP][,ICMP][,ip_proto]|all>][,scan_type <portscan[,portsweep][,decoy_portscan]\ . . .
13K - last updated 2016-12-08 10:39 UTC by 1423
TCP
Transmission Control Protocol provides reliable, ordered, error-checked segments in IP datagrams. Segment . . . Pointer (16-bit) || Options || Payload || ==== TCP Flags ==== * NS - ECN-nonce (Explicit Congestion . . . received by this packet sender to signal to the TCP sender network congestion * URG - Urgent Pointer . . . sent segments. There are two window sizes in TCP: * Window size (RWND in TCP header) is used by . . . and is controlled by the sender. Modern TCP implementations use 4 algorithms: [[https://en.wikipedia.org/wiki/Slow-start . . .
4K - last updated 2016-12-04 05:51 UTC by 1423
X.25
X.25 is ITU-T standard protocol suite for packet switching over telephone line, leased lines and ISDN. . . . notifications). Nowadays, it is replaced by TCP/IP on a network layer or Frame Relay on a data . . .
1K - last updated 2016-12-05 12:39 UTC by 1423
20 pages found.