How to Use X-Forwarded-For for IP Filtering in TraefikWhen deploying applications behind proxies or load balancers, it’s important to correctly handle client IP addresses. Traefik, a popular…Nov 6, 20241Nov 6, 20241
AWS Certified Solutions Architect — Professional Certification 準備心得(2024)這個月趁著找新工作的空擋,去考了 AWS Certified Solutions Architect — Professional 的認證,比起 associate 的考試,難度真得提升不少。即使是幾乎全力準備,也讀了將近三週的時間,如果是要邊工作邊準備,痛苦程度可能會三級跳。Feb 7, 20249Feb 7, 20249
Domain resolve error (“Name or service not known”) forAzure OpenAI Service domainRecently, our company subscribed to the Azure OpenAI service. According to the official documentation, we were supposed to replace the…Aug 3, 20236Aug 3, 20236
AWS Cloudwatch insight query to parse AWS Opensearch search logRecently, I wanted to analyze our OpenSearch cluster using AWS CloudWatch Logs Insights. However, I was unable to find any official…May 15, 20231May 15, 20231
Vault-agent-injector fetches secret twice when using dynamic secret with environment variable on…Recently, I was trying to integrate Hashicorp Vault into our Kubernetes environment. Since our applications use environment variable to…Jun 20, 20223Jun 20, 20223
Configure query base routing in AWS ALB ingress controllerAWS Application Load Balancer provides user with the ability to do advanced request routing using query parameter.Mar 14, 2022Mar 14, 2022
Upgrade EKS cluster from v1.18 to v1.19Managing cluster on EKS with managed nodes relieves lots of SRE engineers’ maintenance work when doing K8S version upgrade. However, it…Sep 29, 20212Sep 29, 20212
The connection to the server localhost 8080 was refused — did you specify the right host or port…I was trying to copy a kubectl config from other machine by hand yesterday to set up my new environment. However, I kept getting “The…Jul 24, 2021Jul 24, 2021
Hide confidential variables from Grafana viewerRecently, I was trying to add a new variable to Grafana dashboard from Postgres SQL query. However, the query result was a confidential…Jul 16, 2021Jul 16, 2021
SRE 面試相關問題紀錄因為最近正準備找新的工作,開始複習之前找到的 SRE 面試問題(忘記出處在哪了),答案都是憑筆者這兩年的工作實際經驗所回答,若有不詳盡或錯誤的地方,也歡迎大家指正討論Jun 27, 2021Jun 27, 2021
Getting password prompt in SSH connection even after setting public key in target host…Recently, I reinstalled an Ubuntu server due to corruption of its root file system. After the installation, I remounted the old home…Jun 20, 2021Jun 20, 2021
Access Denied for bucket: Please check S3bucket permission error when setting access log for NLBI was trying to enable the access log setting for NLB. At first, the S3 bucket policy setting I used was same as the one for ALB. However…Jan 11, 20212Jan 11, 20212
“Instances failed to join the kubernetes cluster” error when creating AWS EKS node-groupI was building AWS EKS cluster for our team these days. When I tried to create node group for EKS cluster, it took very long time (more…Dec 13, 20202Dec 13, 20202
Achieve zero downtime when upgrading Nomad clusterRecently our team is trying to upgrade our Nomad cluster version. To prevent downtime, we need to shutdown all running jobs gracefully on…Dec 6, 2020Dec 6, 2020
LPIC-2 Study materialsJust passed LPIC-2 exam today. I would like to share some study material when I prepared for the exam:Aug 27, 2020Aug 27, 2020
Setup Vault auto-unseal configuration with Azure key-vaultAs you may know, Hashicorp Vault is a secret management service with lots of other convenient functions. However, the initialization…Jul 3, 20201Jul 3, 20201
[Terraform] How to config multiple ec2 private_ips in aws_security_group resourceJun 26, 2020Jun 26, 2020
