- Docker inserts iptables rules when it's started by default
- buster uses nftables by default
- let's make Docker use nftables instead
- PROFIT
Install Docker CE and nftables:
Ronaldo ronaldocherokee
ronaldocherokee
/ README.md
Created
December 8, 2023 18:51
— forked from goll/README.md
Docker nftables configuration for Debian 10
ronaldocherokee
/ nginx-tuning.md
Created
December 7, 2023 14:24
— forked from denji/nginx-tuning.md
NGINX tuning for best performance
Moved to git repository: https://github.com/denji/nginx-tuning
For this configuration you can use web server you like, i decided, because i work mostly with it to use nginx.
Generally, properly configured nginx can handle up to 400K to 500K requests per second (clustered), most what i saw is 50K to 80K (non-clustered) requests per second and 30% CPU load, course, this was 2 x Intel Xeon with HyperThreading enabled, but it can work without problem on slower machines.
You must understand that this config is used in testing environment and not in production so you will need to find a way to implement most of those features best possible for your servers.
ronaldocherokee
/ nginx-config-auth-cert-ssl.md
Created
October 20, 2023 19:05
— forked from alexishida/nginx-config-auth-cert-ssl.md
Tutorial to configure Nginx client-side SSL certificates.
For excessively paranoid client authentication.
Original: https://gist.github.com/mtigas/952344
openssl x509 -in server.crt -out server.der -outform DER
openssl x509 -in server.der -inform DER -out server.pem -outform PEM
ronaldocherokee
/ post-receive
Created
August 10, 2022 19:18
— forked from rafael-neri/post-receive
Git post-receive rsync to remote server
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| REPO=NAME_HERE | |
| # Dir paths on remote server | |
| # These are associated with branches within a git project | |
| LIVE_BRANCH="master" | |
| LIVE="git@host:/var/www/live/" | |
| STAGE_BRANCH="develop" | |
| STAGE="git@host:/var/www/stage/" |
ronaldocherokee
/ git-deployment.md
Created
August 10, 2022 14:28
— forked from noelboss/git-deployment.md
Simple automated GIT Deployment using Hooks
Here are the simple steps needed to create a deployment from your local GIT repository to a server based on this in-depth tutorial.
You are developing in a working-copy on your local machine, lets say on the master branch. Most of the time, people would push code to a remote server like github.com or gitlab.com and pull or export it to a production server. Or you use a service like deepl.io to act upon a Web-Hook that's triggered that service.