Task
Make FreeRADIUS installation highly available
Solution
Author Archives: Kagarlickij Dmitriy
AWS CloudFormation EC2 Win AD servers
Task
- EC2 instances must be automatically added to Active Directory (AD) on provisioning and removed form AD on termination
- Each EC2 instance must have 3 private IP addresses (required for MS SQL Always-On) assigned by DHCP
- NLB must be used to expose MS SQL Always-On Listener because it’s faster than changing CNAME value
- Dedicated ASG to keep each instance fault tolerant
- Dedicated data disks which are re-attached to new instance in ASG with the same disk letters
Solution
https://github.com/kagarlickij/aws-cloudformation-ec2-win-ad-servers
AWS CloudFormation S3 basic auth
Task
When API specification is updated in git (master branch only) it must be updated on Confluence automatically.
Solution
https://github.com/kagarlickij/aws-cloudformation-s3-basic-auth
AWS ApiGateway Sample
Task
Provide sample API specification with CI pipeline for deployment to AWS API Gateway and S3 (only if petstore.yaml was changed in master branch)
This sample API specification is used by aws-cloudformation-git-confluence-integration sample
Solution
Cloud agnostic approach with Terraform
If you’ve been working with both AWS and Azure you should have noticed that each of them has some advantages.
Tools like Terraform might be very helpful if you’re not familiar with both CloudFormation and Azure RM.
However don’t consider Terraform as a nonpareil (this is not true at all), it is simple tool for simple tasks.
So in this post I’ll tell you about Terraform terms and concepts and show example with AWS & Azure.
For a bit more complicated infrastructure you’ll have to use CloudFormation and Azure RM
How to clone GitHub Gist via SSH
If you’re working with GitHub you definitely should consider Gists for smaller pieces of code, like scripts.
As soon as you start you might want to commit to Gists using SSH, and GUI provides such option:
Create custom Azure Fabric cluster
When you start working with Azure Service Fabric you might be disappointed with customisation possibilities.
So even if you just want to add a few Internal Load balancers you have to customise ARM template.
When you working with ARM templates it might be good idea to split VNet and KeyVaults from computing resources.
To make provision easier you can use PowerShell scripts, like this one for certificates.
Full solution you can find in my GitHub – https://github.com/kagarlickij/azure-fabric-arm
Now let’s see how it can be implemented:
Create certificate for Fabric secure cluster
When you’re working on CI/CD security is always important and certificates are quite useful.
Azure Service Fabric management with certificates is very easy, but creating certificate might be a bit confusing.
However, like most everything it can be easily automated with PowerShell and here’s example for you:
Running telnet from docker container
Sometimes you might need to execute telnet from Docker container, but telnet typically isn’t installed and can’t be installed easily.
However there’s a simple solution which I want to share with you.
How to query a few MS SQL databases on different servers from single script
It’s quite common practice to keep databases on dedicated servers nowdays, especially if you use AWS RDS or Azure.
Relational databases performance is always painful and you might want to split data across at least a few databases. But if data is divided you still to have to do some logical operations across the whole amount and it’s quite simple, so let me show how it can be done using bot SQL Server Management Studio and CLI.