If you have read my previous post on Docker Swarm and HAProxy, this post will be more of the same, but with traefik instead of DockerCloud HAProxy serving as front end load-balancer and SSL termination. Also, instead of docker-compose scripts, I’ll be using docker command line to bring up the network and services. Prerequisite &…
Category: *Nix
Docker Swarm Load Balancing and SSL Termination with DockerCloud HAProxy
Prerequisite If you have internet facing VMs, particularly 2 of them, as a manager and a worker, and your own domain, that would be great. You can also do this with locally hosted VMs on internal network and self-signed certificate, but you would miss the Let’s Encrypt SSL configuration part. I’m using two Ubuntu 18.04…
Getting Tomcat ready for production
So you decide that the application is ready for prime time, it’s time to deploy them to production. Before that happens, let’s make sure everything is fine and dandy on the server side. 1. Secure the operating system Runaway services You can start by reviewing out services that are listening to incoming connection and which…
Enabling Hibernate on Ubuntu 19.04 Disco Dingo
So I decided to migrate my ThinkPad X230 from Ubuntu 18.04 to the newly released Ubuntu 19.04, codenamed “Disco Dingo”. To get Disco (or any recent, SystemD-ladden Ubuntu releases) to play nice with hibernate, you need to plan ahead. Prepare swap partition. In the installation process, prepare and create a swap partition as large as…
fail2ban, ufw, and sshd with custom port on Ubuntu
One of the tool we can use to secure our Ubuntu box from incoming attacks, if we can’t establish a whitelist for incoming connection is fail2ban. Point fail2ban to your “/var/log/auth.log” on debian-based, or “/var/log/secure” on Redhat-based distros to automatically add offending IPs to your firewall and stopping them from DDoS-ing the server. On Ubuntu,…
Installing Kie Server & Drools Workbench Part 1: WildFly Application Server
Red Hat Decision Manager (RHDM) is great BRMS platform. But as affordable as Red Hat subscription compared to its’ Oracle or IBM counterparts, it’s still not cheap. Alternatively, or if you think you’re too cool for enterprise support, you can start with Drools and when you or your organization decide the platform is essential enough…
How to setup SPF record for your domain
There will be time that you have to succumb to things that you’ve been avoiding for the longest of time.. Such as sending bulkmail, either for let say, sending billing infos to your customers, or -god forbid- spa..I mean advertisement. On the other hand, you, google, yahoo and any other email providers would prefer that…
WebRTC-based Video Conference with Jitsi
So the company i’m working for regularly held a grand meeting where participants from multiple cities Indonesia log into the meeting with Skype via crappy DSL lines. The result of course was far from satisfactory. So I searched around for a solution that I can deploy locally (since we do have stable, private connection to…
Java 1.7 64-bit on Solaris 11 and “java/lang/NoClassDefFoundError: java/lang/Object” error message
My Solaris 5.11 install came with java version 1.8. Surely the dev wants a specific, obscure version of java for his application, so I had to do the extra work on hunting for the installation package for that particular version, and install them on the box Update to Java 7 are no longer publicly available,…
Channel Bonding Guide on CentOS/RHEL
I’m recycling one of my old post regarding creating a channel bonding from multiple network interfaces with some updated instructions to make it work on modern linux distros. ..In a video format. Have look: As for the config files’ templates: /etc/sysconfig/modules/bonding.modules #!/bin/sh if [ ! -c /dev/input/uinput ] ; then exec /sbin/modprobe bonding >/dev/null…
Out Here In The Field : New Frontier! 