Istio Sidecar injection principle

concept In short, Sidecar injection adds the configuration of additional containers to the Pod template. This refers to the Pod in which the Envoy container is applied. Currently, the containers required by Istio service grid are: Istio init is used to set iptables rules so that inbound / outbound traffic passes through the Sidecar agent. Initi ...

Posted by asparagus on Mon, 25 May 2020 05:12:54 -0700

3-7. iptables (firewall) & selinux

I. iptables 1) Check the status of the firewall The firewall service name in centos7 is firewalld, no longer iptables [root@localhost ~]# systemctl status firewalld firewalld.service - firewalld - dynamic firewall daemon Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled) Active: active (running) since One 2017-12 ...

Posted by Adam W on Sun, 10 May 2020 09:00:35 -0700

Nginx installation of Alibaba cloud server Centos7.0

Alibaba cloud server, operating system CentOS 7.0, installs nginx. 1. First, set alicloud's security group settings and open the 80 port limit: Open Alibaba cloud official website > console > ECS > Security Group > security group rules: Select any rule column, click "clone", select "HTTP(80)" for "protoco ...

Posted by mike760534211 on Mon, 04 May 2020 17:06:24 -0700

iptables persistence under CentOS

iptables rule persistence Set firewall rules iptables -A INPUT -s 1.1.1.1/32 -p tcp -m tcp --dport 22 -j DROP iptables -A INPUT -s 2.2.2.2/32 -p tcp -m tcp --dport 22 -j DROP iptables -A INPUT -s 3.3.3.3/32 -p tcp -m tcp --dport 22 -j DROP iptables -A INPUT -s 4.4.4.4/32 -p tcp -m tcp --dport 22 -j DROP Save firewall rules service iptabl ...

Posted by TechGuru on Sun, 03 May 2020 22:15:49 -0700

Redis installation + Remote Access + power on and self start under centos

1, Install redis 1. Download redis installation package Go to the official website http://redis.io , you can also use the wget command cd /usr/local/soft/ wget http://download.redis.io/releases/redis-4.0.6.tar.gz 2. Unzip tar xzf redis-4.0.6.tar.gz 3. Compile and install cd redis-4.0.6 make 2, Remote access ...

Posted by jonnym00 on Sun, 03 May 2020 17:08:40 -0700

CentOS 7.3 installation and configuration vsftp

1, Configure firewall and open the port required by FTP service Turn off the firewall of the system #Stop firewall [root@localhost ~]# systemctl stop firewalld.service #Disable startup of firewall [root@localhost ~]# systemctl disable firewalld.service Install iptables firewall #install [root@localhost ~]# yum in ...

Posted by Zangakat on Sun, 03 May 2020 14:51:12 -0700

< EOF in linux

1,EOF  In Shell, EOF is usually used in combination with < to indicate that the subsequent input is used as the input of subcommand or subshell, until EOF is encountered, and then returned to the calling Shell. EOF can be replaced by something else, meaning that content is passed to the program as standard input. Review the use of <. W ...

Posted by brij_theinvader on Sun, 03 May 2020 04:57:15 -0700

centos6\centos7 basic optimization

Optimization term 1. Close selinux, firewalld (centos7) / iptables (centos6) 2. Modify character set 3, Simplify startup items 4. Modify maximum file descriptor 5. Modify yum source and install common tools 6. Optimize system kernel 7. Optimize ssh login speed 8. Disable ctrl+alt+del restart 9. Set time synchronization 10. history opt ...

Posted by Cheers on Mon, 13 Apr 2020 09:50:36 -0700

centos 6.x install squid

Do not set user authentication install # install yum install squid yum install httpd #View version rpm -qa | grep squid #Here is the version I installed #squid-3.1.23-24.el6.i686 Modify profile Use vim to edit the / etc/squid/squid.conf file. As shown below #/etc/squid/squid.conf # The configuration file al ...

Posted by cheald on Sat, 04 Apr 2020 06:04:43 -0700

Record a journey of cc attack and modify it with ddos deflate

The beginning of the story, on March 30, is supposed to be a friendly business attack on the company's website. The attack starts at 4 p.m. on the attack website, there is also Alibaba cloud ip in it. Angry. I want to complain. Start to talk about how to solve it. First, use netstat -ntu | awk '{print $5}' | cut -d: -f1 | so ...

Posted by squizz on Fri, 03 Apr 2020 07:00:16 -0700