Adding a WAF to your application can help protect against numerous threats including injections, cross-site scripting, ddos, etc. With Avi, the process to add the WAF protection is quite simple, and in this first blog post about the WAF, we’ll just demonstrate configuring the WAF on a virtual service.To learn more about what a WAF…
Avi – API Parameters and Filters
Avi’s platform is built on APIs. You can take a look at the official API guide here. It’s a pretty comprehensive list of all the APIs and the methods available, as well as some examples on how to use the API including authentication. Additionally, swagger is built into all the Avi controllers, so you can…
Avi – Advanced RBAC settings – Labels and Filters
In this guide, we’ll walk through some of the more advanced RBAC settings that can be applied to users and their roles. These additional settings can allow an Avi administrator to limit users with specific labels so they can only see applications they’re approved to see. The example we’ll use below is on the type…
Avi – Setup users and assign custom roles
In this tutorial I’ll demonstrate how easy it is to create new local users in Avi and apply custom RBAC settings to them.See the formal KB Software Versions used in this demo Software Version Avi Controller & Service Engines 22.1.5 Create Local Users in Avi With a new Avi install, navigate to Administration -> Accounts…
Upgrading to 10Gb links between the SuperMicros
Background Ok so I’ve had my home lab for a couple years at this point, and overall I’m impressed. I have had a ton of workloads on these things from vSphere, vSAN, vCenter, NSX-T, NSX ALB (Avi Networks), Tkgs (vCenter and Tanzu), and Tkgm (Standalone Tanzu). I’ve also installed various firewalls, and DNS tools like…
Upgrading the ESXi Node from vSphere7 to vSphere 8
It’s time to upgrade my physical ESXi hosts. They’re still running the older vSphere7 when I installed it last year. Honestly, vSphere 7 has been great, but it’s important to me to stay with the latest code, especially in lab environments. This will be a quick blog post, since the process is relatively easy. Downloading…
Setting up the Kubernetes Dashboard
It’s nice to be able to see the Kubernetes objects in a nice graphical interface. Setup the Dashboard There’s only a few steps required to deploy the dashboard into your kubernetes cluster.The following commands will set the latest released version to a variable and download and apply the kubernetes objects. Apply the Kubernetes Dashboard Config…
Running a DNS server in K3s
I’ve decided to move my DNS server from a VM in the physical ESXi, to some pods in my Raspberry Pi K3s cluster. If you have some Raspberry Pis laying around and want to setup a simple K8s cluster, checkout my guide: K3s on the Raspberry PiThe below guide will assume that you’ve setup a…
Raspberry Pi Kubernetes Cluster
Summary I have a few Raspberry Pi’s laying around from a cardano stake pool I used to run. So I decided to use them to build a simple K3s K8s cluster. I’ll likely move my DNS server here, and that’s about it. In any case, here is what i’m doing for the setup. Components Build…
Pod Routing: NodePort, ClusterIP, NodePortLocal
A short video to explain some of the similarities and differences between NodePort, ClusterIP, and NodePortLocal.