Userland

let me get some rules straight:

  • This is about Syntax and Highlighting

Code blocks are in backticks and will be rendered different but readable if bash, sh, json, python, ruby, go etc. is declared1.

This is an example of a footnote2.

Markers: are words enclosed in <mark> </mark> tags.

Supertscriptsin any form are enclosed in <sup> </sup>

This text is centered because it's identifier is center in angle brackets

any text starting with ####

those hav a real heavy padding

any text starting with ###

any text starting with ##

A huge headline for mermaid #

graph TD;
    A-->B;
    A-->C;
    B-->D;
    C-->D;

---
title: Node with text
---
flowchart LR;
    id1[This is the text in the box]
``

Now why is this image centered?
[<img src="./Userland_TextLayer.svg" alt="Alt text" width="32px" height="32px" >](https://www.example.com)

> ssh-rsa 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 k.goerg@geva-group.com

> - Revenue was off the chart.
> - Profits were higher than ever.
>
>  *Everything* according to **plan**.

#### the most common is this one
```markdown
systemctl restart|start|stop wildfly-proppr.service

systemctl restart|start|stop wildfly-proppr.service

http://alp:8888/

./jboss-cli.sh --connect --controller=alp:8888

voilĂ .

Highlight some Text

I need to highlight these very important words in bold. Open and close them with 2x asterisk.

by starting with the closing chevron and ticking some words, you frame and highlight text parts

the plain md lines will look like:

> remember to `loadbalance and dns those sluggers`, my guess here: use pods and traefik as entry

images, or here svg's should be attached like

![Userland](Userland_TextLayer.svg)

Userland

Reminder from where you are coming!

An example of strikethrough text.

Service/Appnamehostsub.tldsites
eeweealpartific.ialconsole
proppralpartific.ialUserland

List's, unordered and ordered

* milk
* eggs
* butter

1. carrots
2. celery
3. radishes
  • milk
  • eggs
  • butter
  1. carrots
  2. celery
  3. radishes
- [x] Complete task
- [ ] Incomplete task
or 
[x] Complete task
[ ] Incomplete task
  • Complete task
  • Incomplete task

make use of Footnotes? Cool, but be aware that they are divided by a empty line

2

This text is the contents of the footnote, which will be rendered towards the bottom.

Duc Hiep Ha <d.ha@geva-group.com> admin123 
	http://gbs-lmonitor.gevabs.local/gbs/check_mk/index.py?start_url=%2Fgbs%2Fcheck_mk%2Fdashboard.py%3Fname%3Dproblems
	http://192.168.111.59/gbs/check_mk/login.py?_origtarget=index.py

Against

Chapter 1..3

for i in {1..100}; do echo $i; done;

It will update if real file

Application and Summary.

Technical Consultant 2DevOp

Backup (local), backup (external), backup (hidden). Weise gewählt wohlgemerkt. Upgrades nur mit Rollback Plan. Fallback Scenario? Immer durchdacht, von Komfort bis Tragbar. Von Erfahrung in IT kann man sprechen, wenn man an der Reaktionsfreudigkeit eines Systems bemerkt wer gerade noch alles darauf zugreift.

Ich arbeite lösungsorientiert und Liefere, achte in meiner Kommunikation auf chronologischen Aufbau und bin Fähig greifbare Analogieen zu verwenden um Aufträge an alle Beteiligten zu verdeutlichen.

Momentan arbeite ich in der Operativen IT, bin Bindeglied zur Infrastruktur und Netzwerk Abteilung und den Developern eines zur Konzerngröße wachsenden Betriebs im Finanzsektor. Zum Security und Compliance Department pflege ich konstanten Kontakt und evaluiere deren eingesetzte Software, insbesondere Central Logging. Ich arbeite im On-Premise und IBMCloud Environment an den Applikationsservern Jboss, Tomcat und Websphere. Die Betriebssysteme sind Linux RHEL/Suse/Debian, mitunter noch Bleche mit Unix AIX und Solaris. An den Datenbanken Oracle und PostgreSQL bin ich beteiligt an Ex-/Importen und Verbindungseinrichtung.

SIL Safety Integrity s Workstations:

  • MacOS
  • Linux
  • Windows

Scripting:

  • Bash, ZSH
  • Python
  • Java

Fertigkeiten:

  • On-Premise, Oracle Cloud, IBM Cloud
  • Filesystem
  • DNS und Firewalling, Load Balancing
  • TLS VerschlĂĽsselung, SSH und RDP
  • Monitoring TICK/ELK Stack (InfluxDB-Grafana, Elastic-Kibana,)
  • Gitlab & Bitbucket Versionierung
  • Virtualsierung und Docker inkl. Orchestrierung
  • HA Clustering
  • CheckMK und Nagios Monitoring
  • VOIP

Change und Dokumentation, Task Managment

  • Confluence/Jira
  • Wordpress, Twiki, SVN

Struktur

  • Team, Solo
  • Vorbereitete RunBook, Intuitives Agieren, Nachbewertung

Realisiere TLS Verbindungen und plane die Zertifikatsverteilung.

Virtualisierungsträger lokal sind VMWare und Proxmox. Ich arbeite in Docker Containern und bin kürzlich eingestiegen in die High Availability und Orchestration

Chapter 4..7

while true; do ls -la; sleep 1;done;

data

Why podman

Containerisierung möglichst nah am Kernel

Quellen zur Auswahl

https://developer.ibm.com/articles/templating-and-podman-openshift/

https://docs.oracle.com/en/operating-systems/oracle-linux/podman/podman-Preface.html#podman-preface

https://medium.com/devops-dudes/how-to-setup-root-less-podman-containers-efd109fa4e0d

Suse MicroOS Sun Nov 6 00:00:03 2022, transactional-server baremetal auf MacBook8.1 16GB Ram und 240G btrfs

oh-my-zsh

the better shell with useful plugins

transactional-update pkg install git zsh curl nfs-utils snapper xauth socat bcm43xx-firmware nano mlocate btop iftop iperf && reboot
sh -c "$(curl -fsSL https://raw.githubusercontent.com/robbyrussell/oh-my-zsh/master/tools/install.sh)"
git clone https://github.com/zsh-users/zsh-autosuggestions ${ZSH_CUSTOM:-~/.oh-my-zsh/custom}/plugins/zsh-autosuggestions && git clone https://github.com/zsh-users/zsh-syntax-highlighting.git ${ZSH_CUSTOM:-~/.oh-my-zsh/custom}/plugins/zsh-syntax-highlighting

configure .zshrc

plugins=(git zsh-syntax-highlighting zsh-autosuggestions)

MicroOS

podman onboard

podman info

Cockpit-WS

webfrontend zur Maschine, watt willste meer https://documentation.suse.com/sle-micro/5.3/pdf/article-cockpit-slemicro_color_en.pdf

zypper search cockpit
transactional-update pkg install cockpit-bridge cockpit-system cockpit-networkmanager cockpit-packagekit cockpit-storaged && reboot
podman container runlabel install registry.opensuse.org/suse/alp/workloads/tumbleweed_containerfiles/suse/alp/workloads/cockpit-ws:latest
systemctl enable --now cockpit.service
echo 'PasswordAuthentication yes' | tee /etc/ssh/sshd_config.d/02-enable-passwords.conf
useradd kaiilja
passwd kaiilja
usermod -a -G wheel kaiilja

configure /etc/containers/registries.conf

unqualified-search-registries = ["registry.opensuse.org", "docker.io", "quay.io", "alp.artific.ial:5000"]

!! root is not allowed log into cockpit-ws

root = epos15

echo 'PasswordAuthentication yes' | tee /etc/ssh/sshd_config.d/02-enable-passwords.conf systemctl try-restart sshd Run the Cockpit web service with a privileged container (as root): podman container runlabel --name cockpit-ws RUN docker.io/cockpit/ws

registry

DevOp software in a loop (SIL)

on the registry site, prepare...

podman pull quay.io/wildfly/wildfly
podman run -it --name wildfly-eewee -p 8888:8888 -p 9990:9990 -d quay.io/wildfly/wildfly /opt/jboss/wildfly/bin/standalone.sh -b 0.0.0.0 -bmanagement 0.0.0.0 -Djboss.management.http.port=8888
podman run -it --name wildfly-proppr -p 18888:8888 -p 19990:9990 -d quay.io/wildfly/wildfly /opt/jboss/wildfly/bin/standalone.sh -b 0.0.0.0 -bmanagement 0.0.0.0 -Djboss.management.http.port=8888

podman exec -it wildfly-eewee bash
podman exec -it wildfly-proppr bash

/opt/jboss/wildfly/bin/add-user.sh

choose admin, enable as PowerUser, password; admin = admin

!! Dont forget to commit NOW (cockpit-ws has buttons ;) !! and push them to your registry !!

podman commit wildfly-eewee alp.artific.ial:5000/wildfly-eewee
podman tag wildfly-eewee alp.artific.ial:5000/wildfly-eewee:latest
podman push wildfly-eewee alp.artific.ial:5000/wildfly-eewee

podman run -it --name wildfly-killme-latest -p 28888:8888 -p 29990:9990 -d alp.artific.ial:5000/wildfly-eewee /opt/jboss/wildfly/bin/standalone.sh -b 0.0.0.0 -bmanagement 0.0.0.0 -Djboss.management.http.port=8888

Run multiple containers from the image with a new name and by adapting ports.

handling tips 1

podman ps
podman logs -f wildfly-eewee
podman stop wildfly-eewee
podman start wildfly-eewee

registry

hostet eigene commit's

export REG_STORAGE=/var/lib/registry \
export REG_CERT=/etc/ssl/certs/alp.artific.ial_cert \
export REG_DOMAIN=alp.artific.ial

podman run --privileged -d --name registry -p 5000:5000 \
 -v $REG_STORAGE:$REG_STORAGE \
 -v $REG_CERT/$REG_DOMAIN'.fullchain.pem':/certs/fullchain.pem \
 -v $REG_CERT/$REG_DOMAIN'.key':/certs/privkey.pem \
 -e REGISTRY_HTTP_TLS_CERTIFICATE=/certs/fullchain.pem \
 -e REGISTRY_HTTP_TLS_KEY=/certs/privkey.pem \
 registry:2

run as a service

podman generate systemd --new --name wildfly-eewee-latest > /etc/systemd/system/wildfly-eewee-latest.service
podman generate systemd --new --name registry > /etc/systemd/system/registry.service
podman generate systemd --new --name wildfly-proppr-latest > /etc/systemd/system/wildfly-proppr-latest.service
systemctl enable --now wildfly-proppr.service
systemctl enable --now wildfly-eewee.service

handling tips 2

systemctl restart|start|stop wildfly-proppr.service

http://alp:8888/

./jboss-cli.sh --connect --controller=alp:8888

http://alp:18888/

./jboss-cli.sh --connect --controller=alp:18888

voilĂ .

maingoal

remember to loadbalance and dns those sluggers, my guess here: use pods and traefik as entry

Service/Appnamehostsub.tldsite
eeweealpartific.ialconsole
proppralpartific.ialconsole

tag and revision image/container

now pull from instance

consider

-e JBOSS_LOG_DIR=/opt/wildfly-eewee/logs jboss/wildfly

-v /path/file_host.json:/path/file_container.json

And now all logs will be saved to the /opt/wildfly-eewee/logs directory.

Note You can modify environment variables in Docker images too. Use the ENV instruction in Dockerfile. Explore the --env-file parameter of docker run if you want to set many environment variables.