[Cloudflare – Letsencrypt] Renew SSL Certificate with Certbot

This Article assumes renewal of an existing SSL (Letsencrypt) Certificate with DNS managed by Cloudflare. Renewal steps: 0. Preparation 1.Check Validity of the Certificate: In browser / SSL checker / openssl on host Example: vpn.devops100.net 2. Run the certbot command to renew the SSL Certificate for vpn.devops100.net 4. Check the TXT via Google Toolbox 5. … Read more

[GITLAB RUNNER – self hosted] Fix for Docker in Docker (DinD)

CI Job failed

1.2 The self hosted Gitlab runner (executable on Linux VM) is not configured properly to use DinD Source: https://docs.gitlab.com/ee/ci/docker/using_docker_build.html#use-docker-in-docker 2.3 THIS SOLUTION IS POTENTIALLY UNSAFE – ALTERNATIVE Alternative is to use kaniko to create the docker image. kaniko solves two problems with using the Docker-in-Docker build method: * Docker-in-Docker requires privileged mode to function, which … Read more

[DNS] Email undeliverable when using Cloudflare

Cloudflare does not proxy traffic on port 25 (SMTP) unless Cloudflare Spectrum is enabled and configured to proxy email traffic across Cloudflare. If you do not have Spectrum enabled, then no email traffic (SMTP) will actually pass through Cloudflare, and we will simply resolve the DNS. This also means that any DNS record used to send email … Read more

[Hetzner] Create Dockerhost with Terraform

There is a Terraform module to deploy a single Docker host (in swarm mode) on Hetzner Cloud.

There is a Terraform module to deploy a single Docker host (in swarm mode) on Hetzner Cloud. A separate Hetzner Cloud volume is also created, attached and configured as the Docker root directory. See the variables file for the available configuration settings. The resources/services/activations/deletions that this module will create/trigger are: Create a server and cloud … Read more

[Azure] Azure Cloudshell cheat sheet

Azure Cloudshell cheat sheet

AIX Azure Cloudshell cheat sheet Azure Cheatsheet ( https://lzone.de/cheat-sheet/Azure) List VMs + Public Ips and access with ssh (after that az login and aks get-credentials) Goto Azure Cloudshell and get ip of the box. 0. Set default subscription if not correct (check with ‘az account list’ to see where “isDefault”: true,) azureuser@jumpboxvm:~$ az account set –subscription … Read more