Sunday Blog

人生是一场刻意练习

Kubernetes 1.24 二进制高可用集群安装

Kubernetes Binary Build High Availability

生产环境中,建议使用版本大于5的Kubernetes版本,如1.24.6 系统:CentOS 7.5 K8S:1.24.6 containerd: v1.6.4 calico: 1.24 集群环境 hostname IP/VIP software k8s-master01 192.168.1.171 e

Posted by BlueFat on Tuesday, May 17, 2022

Kubeadm搭建高可用Kubernetes v1.23.5集群

Kubeadm Builds High Availability Kubernetes

基础环境配置 IP地址 主机名 服务 配置 192.168.1.171 k8s-01 k8s-master、containerd、keepalived、nginx 2c4g 192.168.1.172 k8s-02 k8s-master

Posted by BlueFat on Tuesday, May 17, 2022

Ubuntu 16.04 Letsencrypt R3证书过期

Letsencrypt Certificate Has Expired

root@sunday:~# curl https://letsencrypt.org/ curl: (60) server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none More details here: http://curl.haxx.se/docs/sslcerts.html curl performs SSL certificate verification by default, using a "bundle" of Certificate Authority (CA) public keys (CA certs). If the default bundle file isn't adequate, you can specify an alternate file using the --cacert option. If this HTTPS server uses a certificate signed by a CA represented in the bundle, the certificate verification

Posted by BlueFat on Tuesday, October 5, 2021

OpenSSL 生成 gRpc SSL证书

Grpc Ssl Generate

TLS 概述 传输层安全 (TLS) 对通过 Internet 发送的数据进行加密,以确保窃听者和黑客无法看到您传输的内容,这对于密码、信用卡号和个人通信等私人和敏感信息特别有用

Posted by BlueFat on Sunday, December 6, 2020

Grpc Proxy 反向代理

Grpc Proxy

Nginx 在 1.13.10 中,新增了对gRPC的原生支持。 有了对 gRPC 的支持,NGINX 就可以代理 gRPC TCP 连接,还可以终止、检查和跟踪 gRPC 的方法调用。你可以: 发布 gRPC 服务,

Posted by BlueFat on Sunday, December 6, 2020

PHP Rocketmq grpc 插件安装

Php grpc

grpc need version 3.13 or later of cmake gcc https://ftp.gnu.org/gnu/gcc/gcc-8.3.0/gcc-8.3.0.tar.gz tar xf gcc-8.3.0.tar.gz cd gcc-8.3.0 ./contrib/download_prerequisites ./configure --prefix=/usr/local/gcc-8.3.0 --enable-bootstrap --enable-languages=c,c++ --enable-threads=posix --enable-checking=release --enable-multilib --with-system-zlib make -j$(nproc) make install cmake 指定gcc版本 可以直接在shell中对CC和CXX进行指定: export CC=/usr/local/gcc-8.3.0/bin/gcc export CXX=/usr/local/gcc-8.3.0/bin/g++ cmake /path/to/your/project make 也可以直

Posted by BlueFat on Thursday, December 3, 2020

Rocketmq 集群

Rocketmq

https://github.com/apache/rocketmq/tree/master/docs/cn 集群方案 https://github.com/apache/rocketmq/blob/master/docs/cn/operation.md 单Master模式 这种方式风险较大,一旦Broker重启或者宕机时,会导致整个服务不可用。不建议线上环境使用,可以用于本地测试。

Posted by BlueFat on Saturday, November 14, 2020

图解Https

Diagram Https

前言 图解 HTTP这本书蛮多人推荐的,在搜索 HTTPS 相关知识的时候正好看到 图解 HTTPS 的文章,细节解释通俗易懂,申请个人转载方便回顾学习。 存在即合理 http 是非

Posted by BlueFat on Friday, November 13, 2020

Trojan 转发

Trojan Forward

iptables转发 目前使用统计,trojan最多被封端口(如443),ip没太大问题。 这里使用iptables实现最简单的的动态端口! 将4

Posted by BlueFat on Wednesday, October 21, 2020

Trojan Web

Trojan Web

https://github.com/Jrohy/trojan #安装/更新 source <(curl -sL https://git.io/trojan-install) #卸载 source <(curl -sL https://git.io/trojan-install) --remove 安装完后输入trojan可进入管理程序 设置证书、新增用户 … root@ls:~# trojan mysql安全配置 # 记录mariadb r

Posted by BlueFat on Wednesday, October 21, 2020

Loki LogQL 查询语句

Loki LogQL

日志查询 Log queries 所有 LogQL 查询都包含一个日志流选择器。 以下示例显示了一个完整的日志查询: {container="query-frontend",namespace="loki-dev"} |= "metrics.go" | logfmt | duration > 10s and throughput_mb < 500 查询由以下部分组成: 一个日志流选择

Posted by BlueFat on Tuesday, August 11, 2020

一次HTTP connect-timeout的排查

Http Connect Timeout

一次HTTP connect-timeout的排查(上) 一次HTTP connect-timeout的排查(下)

Posted by BlueFat on Wednesday, January 22, 2020

浅析CDN原理

浅析CDN原理

什么是CDN CDN全称是Content Delivery Network,即内容分发网络,也称为内容传送网络。CDN是构建在现有网络基础之上的智能虚拟网络,依

Posted by BlueFat on Sunday, December 22, 2019

Linux Proxy_arp Arp_filter

Linux Proxy_arp Arp_filter

linux的proxy_arp和arp_filter参数解释 proxy_arp和arp_filter用来控制是否对arp请求作出响应,在正常

Posted by BlueFat on Monday, November 25, 2019

Linux操作系统加固

Linux System Reinforce

https://help.aliyun.com/document_detail/49809.html

Posted by BlueFat on Sunday, November 24, 2019

avatar

开心的蓝胖

QUICK LINKS
FEATURED TAGS
ansible bash calico containerd docker firewalld flannel grpc https iptables keepalived kernel kubernetes linux lvs mysql network nginx prometheus python rabbitmq rocketmq shell sort ssh tcp tcpdump ubuntu ufw 性能 排序 正则表达式 算法 递归 闭包
FRIENDS