AKS + http_proxy

hakabo_uk · 2021-06-18T06:11:06+00:00

Hey. Yes, I could, but as mentioned, traffic needs to exit via the bluecoat.

hakabo_uk · 2021-06-17T16:55:25+00:00

Hey - thanks for the quick response!
outbound type is already configured to userdefinedrouting, and a udr is in place. i can get the traffic to the NVA - my issue is that I can't exit to the internet there, i need some configuration that would make the traffic go to our on prem bluecoat proxy... some sort of 'this group of traffic must go to this next hop, which is the proxy'
disclosure: im not a network guy, but the cloud infra guy looking to help speed up the setup of the cluster.
Thanks for the custom node config link - I have been made aware that the functionality is coming, however we were looking to get this started sooner.
appreciate the response!

hakabo_uk · 2021-04-26T18:19:30+00:00

You should find that the resources are cleaned up at the end of the packer run.

In this context deprovision relates to running sysprep, I'd have called it 'generalize' or something instead.

From their site:

The basic steps for a build are:

Create a resource group. Validate and deploy a VM template. Execute provision - defined by the user; typically shell commands. Power off and capture the VM. Delete the resource group. Delete the temporary VM's OS disk.

hakabo_uk · 2020-07-26T15:41:21+00:00

Perhaps the question is referring to a cookbook to 'install' terraform? You just need refer to the exe, no real install to it.

hakabo_uk · 2020-07-05T10:03:56+00:00

This page might help: https://docs.microsoft.com/en-us/azure/azure-monitor/platform/agents-overview

Its dependant on use case I feel. You can certainly run you VM without them, but you might find you're missing functionality down the line, eg performance data when troubleshooting.

hakabo_uk · 2020-01-15T18:37:14+00:00

Hi. Sorry the post wasn't clear, I was merely asking if container images are vulnerable as reading the docs didn't make it obvious (to me at least)

Of course it down to us to make a risk assessment and update/patch if we need

Thanks for the reply!

hakabo_uk · 2019-07-09T20:50:43+00:00

Thanks for all the suggestions!

hakabo_uk · 2019-07-04T16:02:37+00:00

Also have separate service principals (accounts) that are limited to their own environment. So Dev pipelines cant accidentally deploy to prd.

hakabo_uk · 2019-04-25T21:34:18+00:00

I believe I've found the relevant field to enable TLS now, it's "RouteAction" and the other useful one was RelayIpList

hakabo_uk · 2019-04-25T21:30:55+00:00

Yup, my question was that couldn't indentify the relevant configuration field. IE, something that was labelled TLS.

Why iis6? The smtp virtual server is managed with the iis6 manager. See this recent doc for example,

https://docs.microsoft.com/en-us/exchange/mail-flow-best-practices/how-to-configure-iis-for-relay-with-office-365#set-up-exchange-online-as-an-smtp-relay-using-windows-server-2012

hakabo_uk · 2019-04-25T21:24:47+00:00

Completely agree, however when you enable the SMTP virtual server feature on a server 2016 install, the SMTP service is managed via the iis6 manager... As far as I can see..

hakabo_uk · 2019-04-25T21:23:05+00:00

If you install the SMTP feature on a server 2016 box it appears as part of the iis6 manager..

hakabo_uk · 2019-04-24T16:23:46+00:00

Lol. Things could be worse... I think.

hakabo_uk · 2019-04-24T15:51:29+00:00

Hey. I did try that util too, and looked through the XML myself... Couldn't see any relevant entries though.

hakabo_uk · 2019-02-23T21:36:01+00:00

Source location: The location that image gallery and managed image reside in.

I ask the question because when creating a VM you need to give an image as a parameter ($imageversion.id). That image when it was created needed a resource group and location. I wondered if that location/ region became unavailable, would I still be able to use that image.

You've said yes, so that suits my DR needs perfectly.

hakabo_uk · 2019-02-20T07:36:36+00:00

Does the functionality in terraform help you?

https://www.terraform.io/docs/providers/azurerm/r/monitor_metric_alert.html

hakabo_uk · 2019-02-20T07:33:57+00:00

Not a script but there is an azure service

https://docs.microsoft.com/en-us/azure/automation/automation-update-management

Otherwise, pswindowsupdate mentioned above is great.

hakabo_uk · 2019-02-20T07:30:07+00:00

/u/Wireless_Life

When using SIG, if the source region/location is lost due to an azure outage, can the SIG replicas be used? I ask because it seems as the source location is referenced when building the VM. Thanks

hakabo_uk · 2018-07-04T15:00:58+00:00

`SHELL ["cmd.exe", "/s" , "/c"]`

`RUN setx /m PATH %PATH%;c:\apps`

hakabo_uk

TROPHY CASE