modifying systemd unit files

This is mainly for my reference, and will get updated from time to time. More systemd stuff via the systemd tag. Introduction On systems with init.d start scripts, if it was necessary to modify a boot script, updating the package would back out the change. Systemd provides a number of ways to change the behaviour […]

kvm: libvirt-guests and machined

Two main things covered off in this post: Getting libvirt-guests to work correctly, and machined/machinectl libvirt-guests This is configured via /etc/sysconfig/libvirt-guests and there’s a systemd service to enable: libvirt-guests.service Enabling it allows you to configure how guests start and stop with more flexibility. Some features libvirt-guests provides: On host shutdown, suspend the guests or shut […]

building or appending to an array using a lambda in Puppet

Tripped over a challenge shifting KVM guest definitions into hiera. I’m using the cirrax/libvirt module which offers up this way to define a guest.  (I’ve modified the example in the module documentation.) libvirt::domain { ‘my-domain’: max_memory => ‘2000’, cpus => 2, boot => ‘hd’, disks => [{‘type’ => ‘file’, ‘device’ => ‘disk’, ‘source’ => {‘dev’ […]

restart firewalld after installing tftp *client*

edit: the title of the post is wrong, and I’ll repost it when I’ve got around to crossing all the tees.  There’s a firewalld service called tftp-client;  the fix for machines with a tftp client is thus probably to enable that. This post covers off a number of other topics as well – turned out […]

AWOL Linux LVM volume group and physical volume

TL;DR Looks like there maybe a bug in lvm2-2.02.180-10.el7_6.3. Will raise a ticket for it with Centos. Update 2019-02-23 Ticket raised with Centos. Having tried to reproduce it on another machine, it takes more than just upgrading the package – as one would expect. No idea what the other variables might be. Update 2019-04-22 I […]

java – troubleshooting SSL/TLS truststores

Troubleshooting TLS issues involving a Java app can be difficult if the division of responsibility means that responsibility for the certs and truststores is not vested in a team with any Java skill.  This post is aimed at someone, like me, in that situation. SSLPoke Atlassian (JIRA/Confluence/Bitbucket) provide a simple program that does about as […]