Sumo Logic Makes Logs Fun

Ok that title may be a bit much but anything to make sifting through logs is a good thing in my book. I’m trying out Sumo Logic as my new log aggregator, not that I’ve had one before, but it’s been on my list of things to check out for a while now. So far… Read more »

Lambda deployed in VPC

Here’s another gotcha that I discovered for myself this week. When you deploy a lambda in your vpc it uses up an IP address whenever it runs. If your lambda runs more than one instance at the same time it will use up multiple IP addresses. As you can guess with a heavy used lambda… Read more »

Elasticsearch: Round Two

So round two of Elasticsearch fun, my previous attempt was to use users and roles to secure Elasticsearch but that didn’t work as I’d hoped…. My plan was to use nginx to proxy reqests to elasticsearch. I setup a nginx box with an elastic IP and then configured elasticsearch to only allow access from that IP…. Read more »

Securing AWS ElasticSearch

So this was a fun problem, ElasticSearch on AWS in it’s current form is completely public and not secured within my VPC. It appears that first you have to put in a deny statement to lock off access and then you add in the roles / users that have access. But once you do this you now… Read more »

The restaurant at the (other) end of the universe — Rusty Experiments

After a long day, there is nothing like a fun cocktail and this is a post I started last year and never posted. I’m a big fan of whisky and a friend of mine sent me his blog posting on a few of his favorite drinks. I’m finally posting this in hopes that I’ll actually… Read more »

Grovy Jenkins

So if you are like me you’ve been searching the web for how to write Jenkins DSL and you’ve realized this is a larger and more vague task then you realized. Jenkins DSL (Groovy) sucks, make peace with that now and the rest will be easier.  You may have stumbled across the Jenkins DSL Plugin and started messing… Read more »

RDS Aurora Scaling

This week we found ourselves in the wonderful but awful spot of having a lot of traffic hitting our DB servers. Its good because we are getting our customers moved over to AWS but bad since that means we need to scale up our RDS instances. After some panicked moments and a couple of hot fixes,… Read more »

Apache 2.4 + Opcache + APCu = 502?

So last week we had a puzzling bug relating to PHP and it’s modules. We have the following setup on AWS: Ext ELB -> Nginx (rate limiting, multiple SSL termination) -> internal ELB -> Apache / PHP We have multiple stores on these apache boxes along side our admin interface and what was puzzling was… Read more »

Zabbix Warning: Less than 25% free in the configuration cache

Because I always forget how to fix this issue and have to research it every time I come across it, I thought it was time to blog about it. So this morning I got the error on our new-ish zabbix server that our config cache was getting full. This didn’t surprise me since we’ve been adding… Read more »

Foreman 1.8 and Puppet Run

I’ve had a lot of trouble getting The Foreman to do a Puppet run when I click on the gui button. Finally figured it out and wanted to document it in case someone else is struggling with this issue too.   My /etc/foreman-proxy/settings.d/puppet.yml:

The biggest issue I finally realized was that when foreman tried to… Read more »

  • SSL’s from Name Cheap

    Name cheap is running a special on SSL certificates today:

  • Removing Ubuntu’s Desktop

    I have an old Mac pro that I use for our Opsview (nagios) monitoring system and because it’s an old mac pro I had to use a special Ubuntu build to get it up and running. This has to do with the 32bit EFI system I think… For those of you interested in doing this… Read more »

  • DNS Filtering with NxFilter

    For a while I’ve been working on the best way to filter our web traffic. Since the internet was installed in the building employees and guests have been able to do whatever they wanted with our connection. This includes downloading movies, viruses and other non-work related stuff. I’ve tried several solutions to get a handle… Read more »

  • OS Ticket 1.9

    We recently transitioned to OS Ticket 1.9 and I came across one issue that I struggled with during the upgrade. I haven’t ever done an upgrade before and so that could be part of my issue. Anyway I was using this guide except I downloaded the stable version of 1.9 that was recently released: Once… Read more »

  • URL Monitoring with NTOPNG

    I’ve been struggling to find a solution to monitor our network traffic, specifically what URL’s are our computers hitting in the building. I’ve tried building proxy servers using Squid and that worked ok but the problem is that more and more sites are using HTTPS and I really didn’t want to implement a man in… Read more »

  • Spiceworks Feature – Uneasy on Sunday Morning

    I was recently featured on Spiceworks’ Spotlight on IT about an event that happened at one of my previous jobs. I wanted to post it here as well: Here’s my story copied from the Spiceworks’ page: I got the call at 8 a.m. on Sunday. The office’s security alarm had been triggered and my… Read more »

  • Hello world!

    So this is a relaunch of my blog site. I wanted a place where I can post my adventures in IT. Everything from reviews of new toys I’ve gotten to play with to code snips to links to articles that have helped me through difficult problems. Hopefully the posts on this site will help others… Read more »