All posts by kobaan

Yihaa – Rancher

November 25, 2015 kobaan

I’m so amazed. Discovered Rancher today, a fully GUI enabled containerized platform to orchestrate other docker instances within docker masters on different hosts.

Although the GUI needs more work, the generel idea of having a docker based orchestration frontend, which by the way can be updated/replaced on the fly without disrupting
the other containers services.

Other worker docker nodes can be easily attached to the master orchestrator, as well as almost any known cloud technology/distributor private/non-private/public.

Definitely worth a look:
http://rancher.com

Uncategorized

Evaluating SELKS – Suricata Elasticsearch Logstash Kibana Scirius

October 6, 2015 kobaan

https://www.stamus-networks.com/open-source

Still thinking about mirroring my DSL traffic to Suricata.
But I might need some redesign first, as my fritzbox is serving Wifi users directly without the chance to mirror the traffic before it goes to the internal DSL modem.

Need to split up the modem/routing from the routing/wifi part.
Draytek Vigor in front of the fritzbox would be an idea, or lose the fritzbox completely, as vigor could do all by itself I guess.
Otherwise sending all the traffic to pfSense would also be nice…
…I can’t decide right now.

So much options so less time.

ROS

ROSCon 2015 – Hamburg

October 3, 2015 kobaan

This years ROSCon is held in Hamburg.

http://roscon.ros.org/2015/

https://vimeo.com/search?q=roscon+2015

https://www.youtube.com/results?search_query=roscon+2015

Uncategorized

OpenVAS Upgrade 7->8

September 21, 2015 kobaan

Been doing the OpenVAS Upgrade today.
http://www.openvas.org/

Experimenting with the new Postgres Database support but dropped the idea after some issues.
Hopefully this will work smoothly in the future as the file based sqlite DB is horribly slow.
https://svn.wald.intevation.org/svn/openvas/trunk/openvas-manager/ChangeLog

Uncategorized

Visiting SuperMUC today

June 10, 2015 kobaan

Got the great chance today to visit the SuperMUC in Garching today, during the Controlware Roadshow for Datacenter Trends in 2015.

https://www.lrz.de/services/compute/supermuc/

Nice Supercomputer, very interesting.

Uncategorized

Arduino Day 2015

April 8, 2015 kobaan

Today is Arduino Day !

https://blog.arduino.cc/2015/04/08/thanks-for-celebrating-arduino-day-around-the-world/

Uncategorized

OpenStack and OpenDaylight with Juju+MaaS

March 22, 2015 kobaan

I’m experimenting with OpenStack and OpenDaylight for 4 weeks now, and managed to crash the whole installation 4 times, when enabling OpenDaylight.

https://www.openstack.org
https://www.opendaylight.org
http://www.ubuntu.com/cloud/maas
http://www.ubuntu.com/cloud/juju

It’s really frustrating having to re-setup everything over and over again, even manually, so I decided to invest more time in setup automation via JuJu and freeze some snapshots before doing any further experiments.
But even automated setups keep hanging here and there and cost a lot of time.
Plus MaaS needs to be patched each time to be able to Wake On LAN my VM’s within Virtualbox.

Real hardware would be much easier, although I need at least 8 hosts with dual network cards, that’s out of reach for me at the moment.
My wife already complains about splashing VM windows on her iMac 😀

Uncategorized

Graphite based live bandwidth monitoring

February 19, 2015 kobaan

Inspired by sparklines and php weathermap, I wanted to be able to see actual bandwidth data on my network map, but couldn’t find something easy to implement.

http://omnipotent.net/jquery.sparkline/#s-about
http://network-weathermap.com/manual/0.97b/pages/main.html

Uncategorized

Ukraine Radiation around Zaporizhia

December 3, 2014 kobaan

Radiation sensors around #Zaporizhia #Ukraine showing normal levels.
http://energoatom.kiev.ua/en/ascro_zaes/

Uncategorized

Wrote a F5 Networks BigIP ASM Audit Tool

November 28, 2014 kobaan

https://devcentral.f5.com/articles/the-big-ip-application-security-manager-part-1-what-is-the-asm

Today I spent some time to write an automatic audit tool to
crosscheck various configuration parameters within F5’s
Application Security Manager on their BigIP Loadbalancer.

In addition to daily config change diffs which are monitored in subversion, now IPv6 typos will be reported, missing iRules for certain services detected, assigned ASM policies per vServer and assigned certificates checked.

Also expiration times of SSL certificates reported, amongst a few other things.

Very useful now.
This should have been done within the box itself.