Azure load balancer SNAT behavior explained - Annotations to tcp port numbers reused, ACK with wrong sequence number plus RST from 3-way handshake and SNAT port exhaustion
This article will address azure external load balancer and focus on SNAT, explains a few of behaviors seen from network trace, provides a few of suggestions for application when it is behind of load balancer and requires SNAT.
Ubuntu Generate Core Dump On Fly
systemctl disable apport.service /etc/security/limits.conf * soft core unlimited * hard core unlimited /etc/
Nginx Ingress Controller Debugging - Print Http Raw Header
kubectl exec YOUR_NGINX_INGRESS_CONTROLLER_POD -it -- cat /etc/nginx/template/nginx.tmpl
Useful Kubernetes Tricks
Find which RoleBinding/ClusterRoleBinding is related to a ServiceAccount kubectl get clusterrolebindings -o json | jq
Yet another way to troubleshoot K8S applications
There are plenty of articles explains how to debug K8S applications, for example Troubleshoot Applications
Flannel Networking Demystify
In my previous article Deploy a Ubuntu Based Flannel K8S Cluster in Azure with ARM
Persistent SSH Tunneling
Imaging the sitaution that we need to access services behind NAT/firewall, how to achieve
Docker Macvlan Demystify
In this article, we are going to disucss a little bit about Macvlan and setup
Using Lets Encrypt to Sign a Certificate
First of all, a private key is needed before genreate a signing request. Either use