Skip to content

Latest commit

 

History

History
84 lines (58 loc) · 2.51 KB

readme.md

File metadata and controls

84 lines (58 loc) · 2.51 KB
Raw

Demo project

Project requirements:

Virtual machine with installed OS from RedHat family (RHEL, CentOS, Fedora) with the following software installed:

  • python3
  • ansible
  • docker/podman
  • cockpit behind nginx reverse proxy

VM should be prepared and configured using IaaC tools (preferably Vagrant/Terraform, Ansible) - we should be able to recreate this VM with the same configuration in our environment by just using configuration files prepared by the candidate.

The project should have a simple README explaining how to set up the VM from scratch.

Usage

see prerequisites

/bin/bash runme.sh

Output

Cockipt page hidden behind nginx reverse proxy will be available at

https://<<VM_NAME>>.example.com

Certificate is self-signed, so web browsers have full right to complain!

Prerequsites

  1. Machine with Linux or Windows + Windows Subsystem for Linux enabled

  2. Installed and executables added to PATH:

    • vagrant
    • virtualbox
    • ansible

For Windows subsystem for Linux, vagrant and ansible are installed in WSL, Virtualbox on Windows - this means that Windows path to Virtualbox e.g. /c/Program\ Files/Oracle/Virtualbox needs to be in PATH.

  • For WSL2 additional plugin is required:
vagrant plugin install virtualbox_WSL2
  1. Place your public key in openssh format into files directory as key.pub
./demo/files/key.pub

Key will allow ssh connection to VM as user vagrant

  1. If you want, you can customize variables in variable file

  2. Add <<VM_NAME>>.example.com to /etc/hosts so it can be resolved to whatever IP address is assigned to VM i.e.:

 192.168.57.10	centos-demo.example.com www.centos-demo.example.com

known issues

  1. Windows Subsystem for Linux by default mounts C drive without 'metadata' flag - therefore setting proper permissions for private key is not possible. Please either clone repo in linux filesystem (eg. /home/user) or make sure metadata flag is present:
$ sudo vim /etc/wsl.conf
    [automount]
    enabled = true
    root = /
    options = "metadata"
    mountFsTab = true

and restart wsl.

reference: https://www.schakko.de/2020/01/10/fixing-unprotected-key-file-when-using-ssh-or-ansible-inside-wsl/

  1. Virtualbox enforces hostonly ip range to 192.168.56.0/21. Valid ranges can be modified in the /etc/vbox/networks.conf file. (For both WSL and Linux).

reference: https://www.virtualbox.org/manual/ch06.html#network_hostonly